cvelistv5 - cve-2024-38879

CVE-2024-38879 (GCVE-0-2024-38879)

Vulnerability from cvelistv5 – Published: 2024-08-02 10:36 – Updated: 2025-11-03 21:55

Summary

A vulnerability has been identified in Omnivise T3000 Application Server R9.2 (All versions), Omnivise T3000 R8.2 SP3 (All versions), Omnivise T3000 R8.2 SP4 (All versions). The affected system exposes the port of an internal application on the public network interface allowing an attacker to circumvent authentication and directly access the exposed application.

Severity ?

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C

8.7 (High)


                        
                          CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

CWE

CWE-20 - Improper Input Validation

Assigner

siemens

References

URL

Tags

https://cert-portal.siemens.com/productcert/html/…

Impacted products

Vendor

Product

Version

Siemens

Omnivise T3000 Application Server R9.2

Affected: 0 , < * (custom)

	Siemens	Omnivise T3000 R8.2 SP3	Affected: 0 , < * (custom)
	Siemens	Omnivise T3000 R8.2 SP4	Affected: 0 , < * (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:siemens:omnivise_t3000_application_server:r9.2:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "omnivise_t3000_application_server",
            "vendor": "siemens",
            "versions": [
              {
                "lessThanOrEqual": "*",
                "status": "affected",
                "version": "r9.2",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:siemens:omnivise_t3000:r8.2_sp3:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "omnivise_t3000",
            "vendor": "siemens",
            "versions": [
              {
                "lessThanOrEqual": "*",
                "status": "affected",
                "version": "r8.2_sp3",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:siemens:omnivise_t3000:r8.2_sp4:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "omnivise_t3000",
            "vendor": "siemens",
            "versions": [
              {
                "lessThanOrEqual": "*",
                "status": "affected",
                "version": "r8.2_sp4",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-38879",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-08-02T13:22:29.346191Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-14T20:47:43.341Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T21:55:57.892Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "url": "http://seclists.org/fulldisclosure/2024/Nov/5"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "Omnivise T3000 Application Server R9.2",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Omnivise T3000 R8.2 SP3",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Omnivise T3000 R8.2 SP4",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability has been identified in Omnivise T3000 Application Server R9.2 (All versions), Omnivise T3000 R8.2 SP3 (All versions), Omnivise T3000 R8.2 SP4 (All versions). The affected system exposes the port of an internal application on the public network interface allowing an attacker to circumvent authentication and directly access the exposed application."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
            "version": "3.1"
          }
        },
        {
          "cvssV4_0": {
            "baseScore": 8.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N",
            "version": "4.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-20",
              "description": "CWE-20: Improper Input Validation",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-08-13T07:54:16.146Z",
        "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
        "shortName": "siemens"
      },
      "references": [
        {
          "url": "https://cert-portal.siemens.com/productcert/html/ssa-857368.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
    "assignerShortName": "siemens",
    "cveId": "CVE-2024-38879",
    "datePublished": "2024-08-02T10:36:20.639Z",
    "dateReserved": "2024-06-21T08:28:10.678Z",
    "dateUpdated": "2025-11-03T21:55:57.892Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:omnivise_t3000_application_server:8.2:sp3:*:*:*:*:*:*\", \"matchCriteriaId\": \"DAF50AB8-06BA-4CB7-AA0F-9BA908079FCA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:omnivise_t3000_application_server:8.2:sp4:*:*:*:*:*:*\", \"matchCriteriaId\": \"0B9DE993-8A95-47B5-B192-8985A9C718D0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:omnivise_t3000_application_server:9.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EAE3C15D-4E9D-4A7F-930A-938F43D1AAD5\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"A vulnerability has been identified in Omnivise T3000 Application Server R9.2 (All versions), Omnivise T3000 R8.2 SP3 (All versions), Omnivise T3000 R8.2 SP4 (All versions). The affected system exposes the port of an internal application on the public network interface allowing an attacker to circumvent authentication and directly access the exposed application.\"}, {\"lang\": \"es\", \"value\": \" Se ha identificado una vulnerabilidad en Omnivise T3000 Application Server (todas las versiones). El sistema afectado expone el puerto de una aplicaci\\u00f3n interna en la interfaz de la red p\\u00fablica, lo que permite a un atacante omitir la autenticaci\\u00f3n y acceder directamente a la aplicaci\\u00f3n expuesta.\"}]",
      "id": "CVE-2024-38879",
      "lastModified": "2024-09-20T23:26:28.767",
      "metrics": "{\"cvssMetricV40\": [{\"source\": \"productcert@siemens.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"4.0\", \"vectorString\": \"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\", \"baseScore\": 8.7, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"NONE\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"vulnerableSystemConfidentiality\": \"HIGH\", \"vulnerableSystemIntegrity\": \"NONE\", \"vulnerableSystemAvailability\": \"NONE\", \"subsequentSystemConfidentiality\": \"NONE\", \"subsequentSystemIntegrity\": \"NONE\", \"subsequentSystemAvailability\": \"NONE\", \"exploitMaturity\": \"NOT_DEFINED\", \"confidentialityRequirements\": \"NOT_DEFINED\", \"integrityRequirements\": \"NOT_DEFINED\", \"availabilityRequirements\": \"NOT_DEFINED\", \"modifiedAttackVector\": \"NOT_DEFINED\", \"modifiedAttackComplexity\": \"NOT_DEFINED\", \"modifiedAttackRequirements\": \"NOT_DEFINED\", \"modifiedPrivilegesRequired\": \"NOT_DEFINED\", \"modifiedUserInteraction\": \"NOT_DEFINED\", \"modifiedVulnerableSystemConfidentiality\": \"NOT_DEFINED\", \"modifiedVulnerableSystemIntegrity\": \"NOT_DEFINED\", \"modifiedVulnerableSystemAvailability\": \"NOT_DEFINED\", \"modifiedSubsequentSystemConfidentiality\": \"NOT_DEFINED\", \"modifiedSubsequentSystemIntegrity\": \"NOT_DEFINED\", \"modifiedSubsequentSystemAvailability\": \"NOT_DEFINED\", \"safety\": \"NOT_DEFINED\", \"automatable\": \"NOT_DEFINED\", \"recovery\": \"NOT_DEFINED\", \"valueDensity\": \"NOT_DEFINED\", \"vulnerabilityResponseEffort\": \"NOT_DEFINED\", \"providerUrgency\": \"NOT_DEFINED\"}}], \"cvssMetricV31\": [{\"source\": \"productcert@siemens.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}]}",
      "published": "2024-08-02T11:16:42.510",
      "references": "[{\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-857368.html\", \"source\": \"productcert@siemens.com\", \"tags\": [\"Mitigation\", \"Vendor Advisory\"]}]",
      "sourceIdentifier": "productcert@siemens.com",
      "vulnStatus": "Analyzed",
      "weaknesses": "[{\"source\": \"productcert@siemens.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-38879\",\"sourceIdentifier\":\"productcert@siemens.com\",\"published\":\"2024-08-02T11:16:42.510\",\"lastModified\":\"2025-11-03T22:17:03.430\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability has been identified in Omnivise T3000 Application Server R9.2 (All versions), Omnivise T3000 R8.2 SP3 (All versions), Omnivise T3000 R8.2 SP4 (All versions). The affected system exposes the port of an internal application on the public network interface allowing an attacker to circumvent authentication and directly access the exposed application.\"},{\"lang\":\"es\",\"value\":\" Se ha identificado una vulnerabilidad en Omnivise T3000 Application Server (todas las versiones). El sistema afectado expone el puerto de una aplicaci\u00f3n interna en la interfaz de la red p\u00fablica, lo que permite a un atacante omitir la autenticaci\u00f3n y acceder directamente a la aplicaci\u00f3n expuesta.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"productcert@siemens.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":8.7,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"HIGH\",\"vulnIntegrityImpact\":\"NONE\",\"vulnAvailabilityImpact\":\"NONE\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}],\"cvssMetricV31\":[{\"source\":\"productcert@siemens.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"productcert@siemens.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:omnivise_t3000_application_server:8.2:sp3:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAF50AB8-06BA-4CB7-AA0F-9BA908079FCA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:omnivise_t3000_application_server:8.2:sp4:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B9DE993-8A95-47B5-B192-8985A9C718D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:omnivise_t3000_application_server:9.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EAE3C15D-4E9D-4A7F-930A-938F43D1AAD5\"}]}]}],\"references\":[{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-857368.html\",\"source\":\"productcert@siemens.com\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"http://seclists.org/fulldisclosure/2024/Nov/5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-38879\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-08-02T13:22:29.346191Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:siemens:omnivise_t3000_application_server:r9.2:*:*:*:*:*:*:*\"], \"vendor\": \"siemens\", \"product\": \"omnivise_t3000_application_server\", \"versions\": [{\"status\": \"affected\", \"version\": \"r9.2\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"*\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:siemens:omnivise_t3000:r8.2_sp3:*:*:*:*:*:*:*\"], \"vendor\": \"siemens\", \"product\": \"omnivise_t3000\", \"versions\": [{\"status\": \"affected\", \"version\": \"r8.2_sp3\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"*\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:siemens:omnivise_t3000:r8.2_sp4:*:*:*:*:*:*:*\"], \"vendor\": \"siemens\", \"product\": \"omnivise_t3000\", \"versions\": [{\"status\": \"affected\", \"version\": \"r8.2_sp4\", \"versionType\": \"custom\", \"lessThanOrEqual\": \"*\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-08-02T13:35:44.023Z\"}}], \"cna\": {\"metrics\": [{\"cvssV3_1\": {\"version\": \"3.1\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C\"}}, {\"cvssV4_0\": {\"version\": \"4.0\", \"baseScore\": 8.7, \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N\"}}], \"affected\": [{\"vendor\": \"Siemens\", \"product\": \"Omnivise T3000 Application Server R9.2\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"Omnivise T3000 R8.2 SP3\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"Omnivise T3000 R8.2 SP4\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"references\": [{\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-857368.html\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A vulnerability has been identified in Omnivise T3000 Application Server R9.2 (All versions), Omnivise T3000 R8.2 SP3 (All versions), Omnivise T3000 R8.2 SP4 (All versions). The affected system exposes the port of an internal application on the public network interface allowing an attacker to circumvent authentication and directly access the exposed application.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-20\", \"description\": \"CWE-20: Improper Input Validation\"}]}], \"providerMetadata\": {\"orgId\": \"cec7a2ec-15b4-4faf-bd53-b40f371f3a77\", \"shortName\": \"siemens\", \"dateUpdated\": \"2024-08-13T07:54:16.146Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-38879\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-08-14T20:47:43.341Z\", \"dateReserved\": \"2024-06-21T08:28:10.678Z\", \"assignerOrgId\": \"cec7a2ec-15b4-4faf-bd53-b40f371f3a77\", \"datePublished\": \"2024-08-02T10:36:20.639Z\", \"assignerShortName\": \"siemens\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

GHSA-4H47-46M8-CX7G

Vulnerability from github – Published: 2024-08-02 12:31 – Updated: 2025-11-04 00:31

Details

A vulnerability has been identified in Omnivise T3000 Application Server (All versions). The affected system exposes the port of an internal application on the public network interface allowing an attacker to circumvent authentication and directly access the exposed application.

Severity ?

7.5 (High)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

8.7 (High)


                  
                    CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-38879"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-20"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-08-02T11:16:42Z",
    "severity": "HIGH"
  },
  "details": "A vulnerability has been identified in Omnivise\u00a0T3000 Application Server (All versions). The affected system exposes the port of an internal application on the public network interface allowing an attacker to circumvent authentication and directly access the exposed application.",
  "id": "GHSA-4h47-46m8-cx7g",
  "modified": "2025-11-04T00:31:10Z",
  "published": "2024-08-02T12:31:43Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-38879"
    },
    {
      "type": "WEB",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-857368.html"
    },
    {
      "type": "WEB",
      "url": "http://seclists.org/fulldisclosure/2024/Nov/5"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
      "type": "CVSS_V4"
    }
  ]
}

FKIE_CVE-2024-38879

Vulnerability from fkie_nvd - Published: 2024-08-02 11:16 - Updated: 2025-11-03 22:17

Severity ?

7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	productcert@siemens.com	https://cert-portal.siemens.com/productcert/html/ssa-857368.html	Mitigation, Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	http://seclists.org/fulldisclosure/2024/Nov/5

Impacted products

Vendor	Product	Version
siemens	omnivise_t3000_application_server	8.2
siemens	omnivise_t3000_application_server	8.2
siemens	omnivise_t3000_application_server	9.2

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:siemens:omnivise_t3000_application_server:8.2:sp3:*:*:*:*:*:*",
              "matchCriteriaId": "DAF50AB8-06BA-4CB7-AA0F-9BA908079FCA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:siemens:omnivise_t3000_application_server:8.2:sp4:*:*:*:*:*:*",
              "matchCriteriaId": "0B9DE993-8A95-47B5-B192-8985A9C718D0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:siemens:omnivise_t3000_application_server:9.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "EAE3C15D-4E9D-4A7F-930A-938F43D1AAD5",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability has been identified in Omnivise T3000 Application Server R9.2 (All versions), Omnivise T3000 R8.2 SP3 (All versions), Omnivise T3000 R8.2 SP4 (All versions). The affected system exposes the port of an internal application on the public network interface allowing an attacker to circumvent authentication and directly access the exposed application."
    },
    {
      "lang": "es",
      "value": " Se ha identificado una vulnerabilidad en Omnivise T3000 Application Server (todas las versiones). El sistema afectado expone el puerto de una aplicaci\u00f3n interna en la interfaz de la red p\u00fablica, lo que permite a un atacante omitir la autenticaci\u00f3n y acceder directamente a la aplicaci\u00f3n expuesta."
    }
  ],
  "id": "CVE-2024-38879",
  "lastModified": "2025-11-03T22:17:03.430",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "productcert@siemens.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ],
    "cvssMetricV40": [
      {
        "cvssData": {
          "Automatable": "NOT_DEFINED",
          "Recovery": "NOT_DEFINED",
          "Safety": "NOT_DEFINED",
          "attackComplexity": "LOW",
          "attackRequirements": "NONE",
          "attackVector": "NETWORK",
          "availabilityRequirement": "NOT_DEFINED",
          "baseScore": 8.7,
          "baseSeverity": "HIGH",
          "confidentialityRequirement": "NOT_DEFINED",
          "exploitMaturity": "NOT_DEFINED",
          "integrityRequirement": "NOT_DEFINED",
          "modifiedAttackComplexity": "NOT_DEFINED",
          "modifiedAttackRequirements": "NOT_DEFINED",
          "modifiedAttackVector": "NOT_DEFINED",
          "modifiedPrivilegesRequired": "NOT_DEFINED",
          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
          "modifiedSubIntegrityImpact": "NOT_DEFINED",
          "modifiedUserInteraction": "NOT_DEFINED",
          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
          "privilegesRequired": "NONE",
          "providerUrgency": "NOT_DEFINED",
          "subAvailabilityImpact": "NONE",
          "subConfidentialityImpact": "NONE",
          "subIntegrityImpact": "NONE",
          "userInteraction": "NONE",
          "valueDensity": "NOT_DEFINED",
          "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
          "version": "4.0",
          "vulnAvailabilityImpact": "NONE",
          "vulnConfidentialityImpact": "HIGH",
          "vulnIntegrityImpact": "NONE",
          "vulnerabilityResponseEffort": "NOT_DEFINED"
        },
        "source": "productcert@siemens.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2024-08-02T11:16:42.510",
  "references": [
    {
      "source": "productcert@siemens.com",
      "tags": [
        "Mitigation",
        "Vendor Advisory"
      ],
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-857368.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://seclists.org/fulldisclosure/2024/Nov/5"
    }
  ],
  "sourceIdentifier": "productcert@siemens.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "productcert@siemens.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

SSA-857368

Vulnerability from csaf_siemens - Published: 2024-08-02 00:00 - Updated: 2024-08-13 00:00

Summary

SSA-857368: Multiple Vulnerabilities in Omnivise T3000

Notes

Summary

Omnivise T3000 contains multiple vulnerabilities that could allow an attacker to escalate privileges. Siemens Energy has released patches for several affected products and recommends to apply the patches. Siemens Energy is preparing further fixes for versions still under maintenance and recommends countermeasures for products where fixes are not, or not yet available.

General Recommendations

As a general security measure Siemens Energy strongly recommends to protect network access to affected products with appropriate mechanisms. It is advised to follow recommended security practices in order to run the devices in a protected IT environment.

Additional Resources

For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories

Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter "License Terms"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter "Terms of Use"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)",
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Omnivise T3000 contains multiple vulnerabilities that could allow an attacker to escalate privileges.\n\nSiemens Energy has released patches for several affected products and recommends to apply the patches. Siemens Energy is preparing further fixes for versions still under maintenance and recommends countermeasures for products where fixes are not, or not yet available.",
        "title": "Summary"
      },
      {
        "category": "general",
        "text": "As a general security measure Siemens Energy strongly recommends to protect network access to affected products with appropriate mechanisms. It is advised to follow recommended security practices in order to run the devices in a protected IT environment.",
        "title": "General Recommendations"
      },
      {
        "category": "general",
        "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "productcert@siemens.com",
      "name": "Siemens ProductCERT",
      "namespace": "https://www.siemens.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "SSA-857368: Multiple Vulnerabilities in Omnivise T3000 - HTML Version",
        "url": "https://cert-portal.siemens.com/productcert/html/ssa-857368.html"
      },
      {
        "category": "self",
        "summary": "SSA-857368: Multiple Vulnerabilities in Omnivise T3000 - CSAF Version",
        "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-857368.json"
      }
    ],
    "title": "SSA-857368: Multiple Vulnerabilities in Omnivise T3000",
    "tracking": {
      "current_release_date": "2024-08-13T00:00:00Z",
      "generator": {
        "engine": {
          "name": "Siemens ProductCERT CSAF Generator",
          "version": "1"
        }
      },
      "id": "SSA-857368",
      "initial_release_date": "2024-08-02T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-08-02T00:00:00Z",
          "legacy_version": "1.0",
          "number": "1",
          "summary": "Publication Date"
        },
        {
          "date": "2024-08-13T00:00:00Z",
          "legacy_version": "1.1",
          "number": "2",
          "summary": "Added additional affected Omnivise T3000 Releases R8.2 SP3 and SP4, corrected inconsistent information, added reference to SE Controls Security Announcement 2024-01"
        }
      ],
      "status": "interim",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "Omnivise T3000 Application Server R9.2",
                  "product_id": "1"
                }
              }
            ],
            "category": "product_name",
            "name": "Omnivise T3000 Application Server R9.2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "Omnivise T3000 Domain Controller R9.2",
                  "product_id": "2"
                }
              }
            ],
            "category": "product_name",
            "name": "Omnivise T3000 Domain Controller R9.2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "Omnivise T3000 Network Intrusion Detection System (NIDS) R9.2",
                  "product_id": "3"
                }
              }
            ],
            "category": "product_name",
            "name": "Omnivise T3000 Network Intrusion Detection System (NIDS) R9.2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "Omnivise T3000 Product Data Management (PDM) R9.2",
                  "product_id": "4"
                }
              }
            ],
            "category": "product_name",
            "name": "Omnivise T3000 Product Data Management (PDM) R9.2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "Omnivise T3000 R8.2 SP3",
                  "product_id": "5"
                }
              }
            ],
            "category": "product_name",
            "name": "Omnivise T3000 R8.2 SP3"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "Omnivise T3000 R8.2 SP4",
                  "product_id": "6"
                }
              }
            ],
            "category": "product_name",
            "name": "Omnivise T3000 R8.2 SP4"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "Omnivise T3000 Security Server R9.2",
                  "product_id": "7"
                }
              }
            ],
            "category": "product_name",
            "name": "Omnivise T3000 Security Server R9.2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "Omnivise T3000 Terminal Server R9.2",
                  "product_id": "8"
                }
              }
            ],
            "category": "product_name",
            "name": "Omnivise T3000 Terminal Server R9.2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "Omnivise T3000 Thin Client R9.2",
                  "product_id": "9"
                }
              }
            ],
            "category": "product_name",
            "name": "Omnivise T3000 Thin Client R9.2"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "Omnivise T3000 Whitelisting Server R9.2",
                  "product_id": "10"
                }
              }
            ],
            "category": "product_name",
            "name": "Omnivise T3000 Whitelisting Server R9.2"
          }
        ],
        "category": "vendor",
        "name": "Siemens"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-38876",
      "cwe": {
        "id": "CWE-552",
        "name": "Files or Directories Accessible to External Parties"
      },
      "notes": [
        {
          "category": "summary",
          "text": "The affected application regularly executes user modifiable code as a privileged user. This could allow a local authenticated attacker to execute arbitrary code with elevated privileges.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "1",
          "2",
          "4",
          "5",
          "6",
          "8",
          "9",
          "10"
        ]
      },
      "remediations": [
        {
          "category": "no_fix_planned",
          "details": "Currently no fix is planned",
          "product_ids": [
            "5"
          ]
        },
        {
          "category": "none_available",
          "details": "Currently no fix is available",
          "product_ids": [
            "6"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Install System Software Patch 22.173.20 and System Software Patch 22.173.52; apply additional mitigations from Omnivise T3000 Technical News 2024-089",
          "product_ids": [
            "2",
            "4",
            "8",
            "9",
            "10"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Install System Software Patch 22.173.20 and System Software Patch 22.173.52 as well as Application Software Patch 09.0.19.06; apply additional mitigations from Omnivise T3000 Technical News 2024-089",
          "product_ids": [
            "1"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:T/RC:C",
            "version": "3.1"
          },
          "products": [
            "1",
            "2",
            "4",
            "5",
            "6",
            "8",
            "9",
            "10"
          ]
        }
      ],
      "title": "CVE-2024-38876"
    },
    {
      "cve": "CVE-2024-38877",
      "cwe": {
        "id": "CWE-312",
        "name": "Cleartext Storage of Sensitive Information"
      },
      "notes": [
        {
          "category": "summary",
          "text": "The affected devices stores initial system credentials without sufficient protection.  An attacker with remote shell access or physical access could retrieve the credentials leading to confidentiality loss allowing the attacker to laterally move within the affected network.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "1",
          "2",
          "3",
          "4",
          "5",
          "6",
          "7",
          "8",
          "9",
          "10"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "If the passwords are suspected to be compromised, change the Passwords for all computers and service accounts. In addition follow the instructions from Omnivise T3000 Technical News 2024-089 which is available through T3000 customer service and applies to releases (8.2 SP3/SP4 and 9.2).",
          "product_ids": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10"
          ]
        },
        {
          "category": "no_fix_planned",
          "details": "Currently no fix is planned",
          "product_ids": [
            "5"
          ]
        },
        {
          "category": "none_available",
          "details": "Currently no fix is available",
          "product_ids": [
            "6"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Install System Software Patch 22.173.20 and System Software Patch 22.173.52; apply additional mitigations from Omnivise T3000 Technical News 2024-089",
          "product_ids": [
            "2",
            "4",
            "8",
            "9",
            "10"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Apply mitigations from Omnivise T3000 Technical News 2024-089",
          "product_ids": [
            "3"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Install System Software Patch 22.173.52; apply additional mitigations from Omnivise T3000 Technical News 2024-089",
          "product_ids": [
            "7"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Install System Software Patch 22.173.20 and System Software Patch 22.173.52 as well as Application Software Patch 09.0.19.06; apply additional mitigations from Omnivise T3000 Technical News 2024-089",
          "product_ids": [
            "1"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10"
          ]
        }
      ],
      "title": "CVE-2024-38877"
    },
    {
      "cve": "CVE-2024-38878",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "notes": [
        {
          "category": "summary",
          "text": "Affected devices allow authenticated users to export diagnostics data. The corresponding API endpoint is susceptible to path traversal and could allow an authenticated attacker to download arbitrary files from the file system.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "1",
          "5",
          "6"
        ]
      },
      "remediations": [
        {
          "category": "no_fix_planned",
          "details": "Currently no fix is planned",
          "product_ids": [
            "5"
          ]
        },
        {
          "category": "none_available",
          "details": "Currently no fix is available",
          "product_ids": [
            "6"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Install System Software Patch 22.173.20 and System Software Patch 22.173.52 as well as Application Software Patch 09.0.19.06; apply additional mitigations from Omnivise T3000 Technical News 2024-089",
          "product_ids": [
            "1"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "1",
            "5",
            "6"
          ]
        }
      ],
      "title": "CVE-2024-38878"
    },
    {
      "cve": "CVE-2024-38879",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "summary",
          "text": "The affected system exposes the port of an internal application on the public network interface allowing an attacker to circumvent authentication and directly access the exposed application.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "1",
          "5",
          "6"
        ]
      },
      "remediations": [
        {
          "category": "no_fix_planned",
          "details": "Currently no fix is planned",
          "product_ids": [
            "5"
          ]
        },
        {
          "category": "none_available",
          "details": "Currently no fix is available",
          "product_ids": [
            "6"
          ]
        },
        {
          "category": "vendor_fix",
          "details": "Install System Software Patch 22.173.20 and System Software Patch 22.173.52 as well as Application Software Patch 09.0.19.06; apply additional mitigations from Omnivise T3000 Technical News 2024-089",
          "product_ids": [
            "1"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
            "version": "3.1"
          },
          "products": [
            "1",
            "5",
            "6"
          ]
        }
      ],
      "title": "CVE-2024-38879"
    }
  ]
}

NCSC-2024-0323

Vulnerability from csaf_ncscnl - Published: 2024-08-06 09:29 - Updated: 2024-08-06 09:29

Summary

Kwetsbaarheden verholpen in Siemens Omnivise

Notes

The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions: NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein. NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory. This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.

Feiten

Siemens Energy heeft kwetsbaarheden verholpen in Omnivise T3000.

Interpretaties

Een kwaadwillende kan de kwetsbaarheden misbruiken om zich verhoogde rechten toe te kennen op het kwetsbare systeem en daarmee willekeurige code uit te voeren, mogelijk met systeemrechten. Voor succesvol misbruik moet de kwaadwillende lokaal geautoriseerd zijn. Echter, omdat de kwetsbaarheid met kenmerk CVE-2024-38879 een poort van een intern proces beschikbaar stelt op het netwerk, is het mogelijk dat de kwaadwillende op afstand de kwetsbaarheden in keten kan misbruiken. Hiervoor dient te kwaadwillende wel toegang te hebben tot de productie-omgeving. Het is goed gebruik een dergelijke omgeving niet publiek toegankelijk te hebben.

Oplossingen

Siemens heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.

Kans

medium

Schade

high

CWE-20

Improper Input Validation

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

CWE-287

Improper Authentication

CWE-312

Cleartext Storage of Sensitive Information

CWE-552

Files or Directories Accessible to External Parties

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "nl",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n    NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n    NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n    This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
      },
      {
        "category": "description",
        "text": "Siemens Energy heeft kwetsbaarheden verholpen in Omnivise T3000.",
        "title": "Feiten"
      },
      {
        "category": "description",
        "text": "Een kwaadwillende kan de kwetsbaarheden misbruiken om zich verhoogde rechten toe te kennen op het kwetsbare systeem en daarmee willekeurige code uit te voeren, mogelijk met systeemrechten. \n\nVoor succesvol misbruik moet de kwaadwillende lokaal geautoriseerd zijn. Echter, omdat de kwetsbaarheid met kenmerk CVE-2024-38879 een poort van een intern proces beschikbaar stelt op het netwerk, is het mogelijk dat de kwaadwillende op afstand de kwetsbaarheden in keten kan misbruiken.\nHiervoor dient te kwaadwillende wel toegang te hebben tot de productie-omgeving. Het is goed gebruik een dergelijke omgeving niet publiek toegankelijk te hebben.",
        "title": "Interpretaties"
      },
      {
        "category": "description",
        "text": "Siemens heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
        "title": "Oplossingen"
      },
      {
        "category": "general",
        "text": "medium",
        "title": "Kans"
      },
      {
        "category": "general",
        "text": "high",
        "title": "Schade"
      },
      {
        "category": "general",
        "text": "Improper Input Validation",
        "title": "CWE-20"
      },
      {
        "category": "general",
        "text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
        "title": "CWE-22"
      },
      {
        "category": "general",
        "text": "Improper Authentication",
        "title": "CWE-287"
      },
      {
        "category": "general",
        "text": "Cleartext Storage of Sensitive Information",
        "title": "CWE-312"
      },
      {
        "category": "general",
        "text": "Files or Directories Accessible to External Parties",
        "title": "CWE-552"
      }
    ],
    "publisher": {
      "category": "coordinator",
      "contact_details": "cert@ncsc.nl",
      "name": "Nationaal Cyber Security Centrum",
      "namespace": "https://www.ncsc.nl/"
    },
    "references": [
      {
        "category": "external",
        "summary": "Reference - cveprojectv5; nvd",
        "url": "https://cert-portal.siemens.com/productcert/html/ssa-857368.html"
      }
    ],
    "title": "Kwetsbaarheden verholpen in Siemens Omnivise",
    "tracking": {
      "current_release_date": "2024-08-06T09:29:53.292433Z",
      "id": "NCSC-2024-0323",
      "initial_release_date": "2024-08-06T09:29:53.292433Z",
      "revision_history": [
        {
          "date": "2024-08-06T09:29:53.292433Z",
          "number": "0",
          "summary": "Initiele versie"
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "omnivise_t3000_application_server",
            "product": {
              "name": "omnivise_t3000_application_server",
              "product_id": "CSAFPID-1532010",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_application_server:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_application_server",
            "product": {
              "name": "omnivise_t3000_application_server",
              "product_id": "CSAFPID-1533376",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_application_server:0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_application_server",
            "product": {
              "name": "omnivise_t3000_application_server",
              "product_id": "CSAFPID-1531991",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_application_server:9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_application_server",
            "product": {
              "name": "omnivise_t3000_application_server",
              "product_id": "CSAFPID-1531992",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_application_server:9.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_application_server",
            "product": {
              "name": "omnivise_t3000_application_server",
              "product_id": "CSAFPID-1531993",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_application_server:9.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_application_server",
            "product": {
              "name": "omnivise_t3000_application_server",
              "product_id": "CSAFPID-1533070",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_application_server:r9.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_domain_controller",
            "product": {
              "name": "omnivise_t3000_domain_controller",
              "product_id": "CSAFPID-1532011",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_domain_controller:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_domain_controller",
            "product": {
              "name": "omnivise_t3000_domain_controller",
              "product_id": "CSAFPID-1536176",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_domain_controller:0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_domain_controller",
            "product": {
              "name": "omnivise_t3000_domain_controller",
              "product_id": "CSAFPID-1531994",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_domain_controller:9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_domain_controller",
            "product": {
              "name": "omnivise_t3000_domain_controller",
              "product_id": "CSAFPID-1531995",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_domain_controller:9.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_domain_controller",
            "product": {
              "name": "omnivise_t3000_domain_controller",
              "product_id": "CSAFPID-1531996",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_domain_controller:9.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_domain_controller",
            "product": {
              "name": "omnivise_t3000_domain_controller",
              "product_id": "CSAFPID-1533071",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_domain_controller:r9.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_network_intrusion_detection_system__nids_",
            "product": {
              "name": "omnivise_t3000_network_intrusion_detection_system__nids_",
              "product_id": "CSAFPID-1536177",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_network_intrusion_detection_system__nids_:0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_network_intrusion_detection_system_nids_",
            "product": {
              "name": "omnivise_t3000_network_intrusion_detection_system_nids_",
              "product_id": "CSAFPID-1532012",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_network_intrusion_detection_system_nids_:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_product_data_management__pdm_",
            "product": {
              "name": "omnivise_t3000_product_data_management__pdm_",
              "product_id": "CSAFPID-1536178",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_product_data_management__pdm_:0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_product_data_management__pdm_",
            "product": {
              "name": "omnivise_t3000_product_data_management__pdm_",
              "product_id": "CSAFPID-1533072",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_product_data_management__pdm_:r9.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_product_data_management_pdm_",
            "product": {
              "name": "omnivise_t3000_product_data_management_pdm_",
              "product_id": "CSAFPID-1532013",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_product_data_management_pdm_:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_product_data_management_pdm_",
            "product": {
              "name": "omnivise_t3000_product_data_management_pdm_",
              "product_id": "CSAFPID-1531997",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_product_data_management_pdm_:9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_product_data_management_pdm_",
            "product": {
              "name": "omnivise_t3000_product_data_management_pdm_",
              "product_id": "CSAFPID-1531998",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_product_data_management_pdm_:9.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_product_data_management_pdm_",
            "product": {
              "name": "omnivise_t3000_product_data_management_pdm_",
              "product_id": "CSAFPID-1531999",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_product_data_management_pdm_:9.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_security_server",
            "product": {
              "name": "omnivise_t3000_security_server",
              "product_id": "CSAFPID-1532014",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_security_server:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_security_server",
            "product": {
              "name": "omnivise_t3000_security_server",
              "product_id": "CSAFPID-1536179",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_security_server:0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_terminal_server",
            "product": {
              "name": "omnivise_t3000_terminal_server",
              "product_id": "CSAFPID-1532015",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_terminal_server:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_terminal_server",
            "product": {
              "name": "omnivise_t3000_terminal_server",
              "product_id": "CSAFPID-1536180",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_terminal_server:0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_terminal_server",
            "product": {
              "name": "omnivise_t3000_terminal_server",
              "product_id": "CSAFPID-1532000",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_terminal_server:9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_terminal_server",
            "product": {
              "name": "omnivise_t3000_terminal_server",
              "product_id": "CSAFPID-1532001",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_terminal_server:9.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_terminal_server",
            "product": {
              "name": "omnivise_t3000_terminal_server",
              "product_id": "CSAFPID-1532002",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_terminal_server:9.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_terminal_server",
            "product": {
              "name": "omnivise_t3000_terminal_server",
              "product_id": "CSAFPID-1533073",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_terminal_server:r9.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_thin_client",
            "product": {
              "name": "omnivise_t3000_thin_client",
              "product_id": "CSAFPID-1532016",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_thin_client:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_thin_client",
            "product": {
              "name": "omnivise_t3000_thin_client",
              "product_id": "CSAFPID-1536181",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_thin_client:0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_thin_client",
            "product": {
              "name": "omnivise_t3000_thin_client",
              "product_id": "CSAFPID-1532003",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_thin_client:9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_thin_client",
            "product": {
              "name": "omnivise_t3000_thin_client",
              "product_id": "CSAFPID-1532004",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_thin_client:9.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_thin_client",
            "product": {
              "name": "omnivise_t3000_thin_client",
              "product_id": "CSAFPID-1532005",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_thin_client:9.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_thin_client",
            "product": {
              "name": "omnivise_t3000_thin_client",
              "product_id": "CSAFPID-1533074",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_thin_client:r9.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_whitelisting_server",
            "product": {
              "name": "omnivise_t3000_whitelisting_server",
              "product_id": "CSAFPID-1532017",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_whitelisting_server:*:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_whitelisting_server",
            "product": {
              "name": "omnivise_t3000_whitelisting_server",
              "product_id": "CSAFPID-1536182",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_whitelisting_server:0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_whitelisting_server",
            "product": {
              "name": "omnivise_t3000_whitelisting_server",
              "product_id": "CSAFPID-1532006",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_whitelisting_server:9.0:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_whitelisting_server",
            "product": {
              "name": "omnivise_t3000_whitelisting_server",
              "product_id": "CSAFPID-1532007",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_whitelisting_server:9.1:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_whitelisting_server",
            "product": {
              "name": "omnivise_t3000_whitelisting_server",
              "product_id": "CSAFPID-1532008",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_whitelisting_server:9.2:*:*:*:*:*:*:*"
              }
            }
          },
          {
            "category": "product_name",
            "name": "omnivise_t3000_whitelisting_server",
            "product": {
              "name": "omnivise_t3000_whitelisting_server",
              "product_id": "CSAFPID-1533075",
              "product_identification_helper": {
                "cpe": "cpe:2.3:a:siemens:omnivise_t3000_whitelisting_server:r9.2:*:*:*:*:*:*:*"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "siemens"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-38876",
      "cwe": {
        "id": "CWE-552",
        "name": "Files or Directories Accessible to External Parties"
      },
      "notes": [
        {
          "category": "other",
          "text": "Files or Directories Accessible to External Parties",
          "title": "CWE-552"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1533070",
          "CSAFPID-1533071",
          "CSAFPID-1533072",
          "CSAFPID-1533073",
          "CSAFPID-1533074",
          "CSAFPID-1533075"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38876",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38876.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1533070",
            "CSAFPID-1533071",
            "CSAFPID-1533072",
            "CSAFPID-1533073",
            "CSAFPID-1533074",
            "CSAFPID-1533075"
          ]
        }
      ],
      "title": "CVE-2024-38876"
    },
    {
      "cve": "CVE-2024-38877",
      "cwe": {
        "id": "CWE-312",
        "name": "Cleartext Storage of Sensitive Information"
      },
      "notes": [
        {
          "category": "other",
          "text": "Cleartext Storage of Sensitive Information",
          "title": "CWE-312"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1533376",
          "CSAFPID-1536176",
          "CSAFPID-1536177",
          "CSAFPID-1536178",
          "CSAFPID-1536179",
          "CSAFPID-1536180",
          "CSAFPID-1536181",
          "CSAFPID-1536182"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38877",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38877.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1533376",
            "CSAFPID-1536176",
            "CSAFPID-1536177",
            "CSAFPID-1536178",
            "CSAFPID-1536179",
            "CSAFPID-1536180",
            "CSAFPID-1536181",
            "CSAFPID-1536182"
          ]
        }
      ],
      "title": "CVE-2024-38877"
    },
    {
      "cve": "CVE-2024-38878",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
          "title": "CWE-22"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1533376"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38878",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38878.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.2,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1533376"
          ]
        }
      ],
      "title": "CVE-2024-38878"
    },
    {
      "cve": "CVE-2024-38879",
      "cwe": {
        "id": "CWE-287",
        "name": "Improper Authentication"
      },
      "notes": [
        {
          "category": "other",
          "text": "Improper Authentication",
          "title": "CWE-287"
        },
        {
          "category": "other",
          "text": "Improper Input Validation",
          "title": "CWE-20"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-1533376"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2024-38879",
          "url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-38879.json"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-1533376"
          ]
        }
      ],
      "title": "CVE-2024-38879"
    }
  ]
}

CNVD-2024-35109

Vulnerability from cnvd - Published: 2024-08-12

Title

Siemens Omnivise T3000 Application Server输入验证不当漏洞

Description

Omnivise T3000是一种分布式控制系统，主要用于化石燃料和大型可再生能源发电厂。 Siemens Omnivise T3000 Application Server存在输入验证不当漏洞，该漏洞是由于受影响的系统在公共网络接口上暴露了内部应用程序的端口，攻击者可利用该漏洞绕过身份验证并直接访问暴露的应用程序。

Severity

高

Patch Name

Siemens Omnivise T3000 Application Server输入验证不当漏洞的补丁

Patch Description

Formal description

用户可参考如下供应商提供的安全公告获得补丁信息： https://cert-portal.siemens.com/productcert/html/ssa-857368.html

Reference

https://cert-portal.siemens.com/productcert/html/ssa-857368.html

Impacted products

Name
['Siemens Omnivise T3000 Application Server', 'Siemens Omnivise T3000 Domain Controller', 'Siemens Omnivise T3000 Product Data Management (PDM)', 'Siemens Omnivise T3000 Terminal Server', 'Siemens Omnivise T3000 Thin Client', 'Siemens Omnivise T3000 Whitelisting Server']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2024-38879"
    }
  },
  "description": "Omnivise T3000\u662f\u4e00\u79cd\u5206\u5e03\u5f0f\u63a7\u5236\u7cfb\u7edf\uff0c\u4e3b\u8981\u7528\u4e8e\u5316\u77f3\u71c3\u6599\u548c\u5927\u578b\u53ef\u518d\u751f\u80fd\u6e90\u53d1\u7535\u5382\u3002\n\nSiemens Omnivise T3000 Application Server\u5b58\u5728\u8f93\u5165\u9a8c\u8bc1\u4e0d\u5f53\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u662f\u7531\u4e8e\u53d7\u5f71\u54cd\u7684\u7cfb\u7edf\u5728\u516c\u5171\u7f51\u7edc\u63a5\u53e3\u4e0a\u66b4\u9732\u4e86\u5185\u90e8\u5e94\u7528\u7a0b\u5e8f\u7684\u7aef\u53e3\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u5e76\u76f4\u63a5\u8bbf\u95ee\u66b4\u9732\u7684\u5e94\u7528\u7a0b\u5e8f\u3002",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u4f9b\u5e94\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://cert-portal.siemens.com/productcert/html/ssa-857368.html",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2024-35109",
  "openTime": "2024-08-12",
  "patchDescription": "Omnivise T3000\u662f\u4e00\u79cd\u5206\u5e03\u5f0f\u63a7\u5236\u7cfb\u7edf\uff0c\u4e3b\u8981\u7528\u4e8e\u5316\u77f3\u71c3\u6599\u548c\u5927\u578b\u53ef\u518d\u751f\u80fd\u6e90\u53d1\u7535\u5382\u3002\r\n\r\nSiemens Omnivise T3000 Application Server\u5b58\u5728\u8f93\u5165\u9a8c\u8bc1\u4e0d\u5f53\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u662f\u7531\u4e8e\u53d7\u5f71\u54cd\u7684\u7cfb\u7edf\u5728\u516c\u5171\u7f51\u7edc\u63a5\u53e3\u4e0a\u66b4\u9732\u4e86\u5185\u90e8\u5e94\u7528\u7a0b\u5e8f\u7684\u7aef\u53e3\uff0c\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u5e76\u76f4\u63a5\u8bbf\u95ee\u66b4\u9732\u7684\u5e94\u7528\u7a0b\u5e8f\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Siemens Omnivise T3000 Application Server\u8f93\u5165\u9a8c\u8bc1\u4e0d\u5f53\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Siemens Omnivise T3000 Application Server",
      "Siemens Omnivise T3000 Domain Controller",
      "Siemens Omnivise T3000 Product Data Management (PDM)",
      "Siemens Omnivise T3000 Terminal Server",
      "Siemens Omnivise T3000 Thin Client",
      "Siemens Omnivise T3000 Whitelisting Server"
    ]
  },
  "referenceLink": "https://cert-portal.siemens.com/productcert/html/ssa-857368.html",
  "serverity": "\u9ad8",
  "submitTime": "2024-08-12",
  "title": "Siemens Omnivise T3000 Application Server\u8f93\u5165\u9a8c\u8bc1\u4e0d\u5f53\u6f0f\u6d1e"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-38879 (GCVE-0-2024-38879)

GHSA-4H47-46M8-CX7G

FKIE_CVE-2024-38879

SSA-857368

NCSC-2024-0323

CNVD-2024-35109

Tags

Sightings

Nomenclature