{ "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", "CVE_data_meta": { "ID": "CVE-2023-44320", "ASSIGNER": "productcert@siemens.com", "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", "value": "Affected devices do not properly validate the authentication when performing certain modifications in the web interface allowing an authenticated attacker to influence the user interface configured by an administrator." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-425: Direct Request ('Forced Browsing')", "cweId": "CWE-425" } ] } ] }, "affects": { "vendor": { "vendor_data": [ { "vendor_name": "Siemens", "product": { "product_data": [ { "product_name": "RUGGEDCOM RM1224 LTE(4G) EU", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "RUGGEDCOM RM1224 LTE(4G) NAM", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE M804PB", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE M812-1 ADSL-Router (Annex A)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE M812-1 ADSL-Router (Annex B)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE M816-1 ADSL-Router (Annex A)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE M816-1 ADSL-Router (Annex B)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE M826-2 SHDSL-Router", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE M874-2", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE M874-3", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE M876-3 (EVDO)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE M876-3 (ROK)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE M876-4", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE M876-4 (EU)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE M876-4 (NAM)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE MUM853-1 (EU)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE MUM856-1 (EU)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE MUM856-1 (RoW)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE S615", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE S615 EEC", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SCALANCE SC622-2C", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V3.1" } ] } }, { "product_name": "SCALANCE SC626-2C", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V3.1" } ] } }, { "product_name": "SCALANCE SC632-2C", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V3.1" } ] } }, { "product_name": "SCALANCE SC636-2C", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V3.1" } ] } }, { "product_name": "SCALANCE SC642-2C", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V3.1" } ] } }, { "product_name": "SCALANCE SC646-2C", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V3.1" } ] } }, { "product_name": "SCALANCE XB205-3 (SC, PN)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XB205-3 (ST, E/IP)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XB205-3 (ST, PN)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XB205-3LD (SC, E/IP)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XB205-3LD (SC, PN)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XB208 (E/IP)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XB208 (PN)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XB213-3 (SC, E/IP)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XB213-3 (SC, PN)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XB213-3 (ST, E/IP)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XB213-3 (ST, PN)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XB213-3LD (SC, E/IP)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XB213-3LD (SC, PN)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XB216 (E/IP)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XB216 (PN)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC206-2 (SC)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC206-2 (ST/BFOC)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC206-2G PoE", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC206-2G PoE (54 V DC)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC206-2G PoE EEC (54 V DC)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC206-2SFP", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC206-2SFP EEC", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC206-2SFP G", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC206-2SFP G (EIP DEF.)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC206-2SFP G EEC", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC208", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC208EEC", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC208G", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC208G (EIP def.)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC208G EEC", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC208G PoE", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC208G PoE (54 V DC)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC216", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC216-3G PoE", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC216-3G PoE (54 V DC)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC216-4C", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC216-4C G", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC216-4C G (EIP Def.)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC216-4C G EEC", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC216EEC", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC224", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC224-4C G", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC224-4C G (EIP Def.)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XC224-4C G EEC", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XF204", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XF204 DNA", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XF204-2BA", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XF204-2BA DNA", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XP208", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XP208 (Ethernet/IP)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XP208EEC", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XP208PoE EEC", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XP216", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XP216 (Ethernet/IP)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XP216EEC", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XP216POE EEC", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XR324WG (24 x FE, AC 230V)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XR324WG (24 X FE, DC 24V)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XR326-2C PoE WG", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XR326-2C PoE WG (without UL)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XR328-4C WG (24XFE, 4XGE, 24V)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XR328-4C WG (24xFE, 4xGE,DC24V)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XR328-4C WG (24xFE,4xGE,AC230V)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XR328-4C WG (28xGE, AC 230V)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SCALANCE XR328-4C WG (28xGE, DC 24V)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SIPLUS NET SCALANCE XC206-2", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SIPLUS NET SCALANCE XC206-2SFP", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SIPLUS NET SCALANCE XC208", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } }, { "product_name": "SIPLUS NET SCALANCE XC216-4C", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.5" } ] } } ] } } ] } }, "references": { "reference_data": [ { "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-699386.pdf", "refsource": "MISC", "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-699386.pdf" }, { "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-180704.pdf", "refsource": "MISC", "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-180704.pdf" }, { "url": "https://cert-portal.siemens.com/productcert/html/ssa-699386.html", "refsource": "MISC", "name": "https://cert-portal.siemens.com/productcert/html/ssa-699386.html" }, { "url": "https://cert-portal.siemens.com/productcert/html/ssa-180704.html", "refsource": "MISC", "name": "https://cert-portal.siemens.com/productcert/html/ssa-180704.html" }, { "url": "https://cert-portal.siemens.com/productcert/html/ssa-602936.html", "refsource": "MISC", "name": "https://cert-portal.siemens.com/productcert/html/ssa-602936.html" } ] }, "impact": { "cvss": [ { "version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C", "baseScore": 4.3, "baseSeverity": "MEDIUM" } ] } }