Vulnerability-Lookup

SSA-457702

Vulnerability from csaf_siemens - Published: 2023-11-14 00:00 - Updated: 2024-04-09 00:00

Summary

SSA-457702: Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W700 Product Family

Notes

Summary: The SCALANCE W700 devices are affected by Wi-Fi encryption bypass vulnerabilities ("Framing Frames") that could allow an attacker to disclose sensitive information, to steal the victims session or to execute denial-of-service attacks. Siemens recommends countermeasures for products where fixes are not, or not yet available.

General Recommendations: As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals. Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity

Additional Resources: For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories

Terms of Use: Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter "License Terms"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter "Terms of Use"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.

CVE-2024-30189

6.1 (Medium)


                        
                          CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N

CWE-290 - Authentication Bypass by Spoofing

Affected products

Known affected 49 products

Product	Identifier	Version	Remediation
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0) Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)	`6GK5721-1FC00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0) Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)	`6GK5721-1FC00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0) Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)	`6GK5722-1FC00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0) Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)	`6GK5722-1FC00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0) Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)	`6GK5722-1FC00-0AC0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0) Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)	`6GK5734-1FX00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6) Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)	`6GK5734-1FX00-0AA6`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0) Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)	`6GK5734-1FX00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6) Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)	`6GK5734-1FX00-0AB6`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0) Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)	`6GK5738-1GY00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0) Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)	`6GK5738-1GY00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0) Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)	`6GK5748-1GD00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0) Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)	`6GK5748-1GD00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0) Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)	`6GK5748-1FC00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0) Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)	`6GK5748-1FC00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0) Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)	`6GK5761-1FC00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0) Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)	`6GK5761-1FC00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0) Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)	`6GK5774-1FY00-0TA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0) Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)	`6GK5774-1FY00-0TB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0) Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)	`6GK5774-1FX00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6) Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)	`6GK5774-1FX00-0AA6`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0) Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)	`6GK5774-1FX00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0) Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)	`6GK5774-1FX00-0AC0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6) Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)	`6GK5774-1FX00-0AB6`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0) Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)	`6GK5778-1GY00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0) Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)	`6GK5778-1GY00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0) Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)	`6GK5778-1GY00-0TA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0) Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)	`6GK5778-1GY00-0TB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0) Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)	`6GK5786-1FC00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0) Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)	`6GK5786-1FC00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0) Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)	`6GK5786-2FC00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0) Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)	`6GK5786-2FC00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0) Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)	`6GK5786-2FC00-0AC0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0) Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)	`6GK5786-2FE00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0) Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)	`6GK5786-2FE00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0) Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)	`6GK5786-2HC00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0) Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)	`6GK5786-2HC00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0) Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)	`6GK5788-1GD00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0) Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)	`6GK5788-1GD00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0) Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)	`6GK5788-1FC00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0) Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)	`6GK5788-1FC00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0) Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)	`6GK5788-2GD00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0) Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)	`6GK5788-2GD00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0) Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)	`6GK5788-2GD00-0TA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0) Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)	`6GK5788-2GD00-0TB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0) Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)	`6GK5788-2GD00-0TC0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0) Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)	`6GK5788-2FC00-0AA0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0) Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)	`6GK5788-2FC00-0AB0`	vers:all/*	Mitigation Mitigation No Fix Planned
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0) Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)	`6GK5788-2FC00-0AC0`	vers:all/*	Mitigation Mitigation No Fix Planned

CVE-2024-30190

6.1 (Medium)


                        
                          CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H

CWE-290 - Authentication Bypass by Spoofing

Affected products

Known affected 64 products

Product	Identifier	Version	Remediation
SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0) Siemens / SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0)	`6GK5748-1GY01-0AA0`	vers:all/*	No Fix Planned
SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0) Siemens / SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0)	`6GK5748-1GY01-0TA0`	vers:all/*	No Fix Planned
SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0) Siemens / SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0)	`6GK5788-1GY01-0AA0`	vers:all/*	No Fix Planned
SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0) Siemens / SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0)	`6GK5788-2GY01-0TA0`	vers:all/*	No Fix Planned
SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0) Siemens / SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0)	`6GK5788-2GY01-0AA0`	vers:all/*	No Fix Planned
SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0) Siemens / SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0)	`6GK5788-2HY01-0AA0`	vers:all/*	No Fix Planned
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0) Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)	`6GK5721-1FC00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0) Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)	`6GK5721-1FC00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0) Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)	`6GK5722-1FC00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0) Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)	`6GK5722-1FC00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0) Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)	`6GK5722-1FC00-0AC0`	vers:all/*	No Fix Planned
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0) Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)	`6GK5734-1FX00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6) Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)	`6GK5734-1FX00-0AA6`	vers:all/*	No Fix Planned
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0) Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)	`6GK5734-1FX00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6) Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)	`6GK5734-1FX00-0AB6`	vers:all/*	No Fix Planned
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0) Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)	`6GK5738-1GY00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0) Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)	`6GK5738-1GY00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0) Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)	`6GK5748-1GD00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0) Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)	`6GK5748-1GD00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0) Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)	`6GK5748-1FC00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0) Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)	`6GK5748-1FC00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0) Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)	`6GK5761-1FC00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0) Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)	`6GK5761-1FC00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0) Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)	`6GK5774-1FY00-0TA0`	vers:all/*	No Fix Planned
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0) Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)	`6GK5774-1FY00-0TB0`	vers:all/*	No Fix Planned
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0) Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)	`6GK5774-1FX00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6) Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)	`6GK5774-1FX00-0AA6`	vers:all/*	No Fix Planned
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0) Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)	`6GK5774-1FX00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0) Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)	`6GK5774-1FX00-0AC0`	vers:all/*	No Fix Planned
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6) Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)	`6GK5774-1FX00-0AB6`	vers:all/*	No Fix Planned
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0) Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)	`6GK5778-1GY00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0) Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)	`6GK5778-1GY00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0) Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)	`6GK5778-1GY00-0TA0`	vers:all/*	No Fix Planned
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0) Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)	`6GK5778-1GY00-0TB0`	vers:all/*	No Fix Planned
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0) Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)	`6GK5786-1FC00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0) Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)	`6GK5786-1FC00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0) Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)	`6GK5786-2FC00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0) Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)	`6GK5786-2FC00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0) Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)	`6GK5786-2FC00-0AC0`	vers:all/*	No Fix Planned
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0) Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)	`6GK5786-2FE00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0) Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)	`6GK5786-2FE00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0) Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)	`6GK5786-2HC00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0) Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)	`6GK5786-2HC00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0) Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)	`6GK5788-1GD00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0) Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)	`6GK5788-1GD00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0) Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)	`6GK5788-1FC00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0) Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)	`6GK5788-1FC00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0) Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)	`6GK5788-2GD00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0) Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)	`6GK5788-2GD00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0) Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)	`6GK5788-2GD00-0TA0`	vers:all/*	No Fix Planned
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0) Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)	`6GK5788-2GD00-0TB0`	vers:all/*	No Fix Planned
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0) Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)	`6GK5788-2GD00-0TC0`	vers:all/*	No Fix Planned
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0) Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)	`6GK5788-2FC00-0AA0`	vers:all/*	No Fix Planned
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0) Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)	`6GK5788-2FC00-0AB0`	vers:all/*	No Fix Planned
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0) Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)	`6GK5788-2FC00-0AC0`	vers:all/*	No Fix Planned
SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) Siemens / SCALANCE WAM763-1 (6GK5763-1AL00-7DA0)	`6GK5763-1AL00-7DA0`	vers:all/*	No Fix Planned
SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0) Siemens / SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0)	`6GK5766-1GE00-7DA0`	vers:all/*	No Fix Planned
SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0) Siemens / SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0)	`6GK5766-1GE00-7DB0`	vers:all/*	No Fix Planned
SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0) Siemens / SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0)	`6GK5766-1GE00-7TA0`	vers:all/*	No Fix Planned
SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0) Siemens / SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0)	`6GK5766-1GE00-7TB0`	vers:all/*	No Fix Planned
SCALANCE WUM763-1 (6GK5763-1AL00-3AA0) Siemens / SCALANCE WUM763-1 (6GK5763-1AL00-3AA0)	`6GK5763-1AL00-3AA0`	vers:all/*	No Fix Planned
SCALANCE WUM763-1 (6GK5763-1AL00-3DA0) Siemens / SCALANCE WUM763-1 (6GK5763-1AL00-3DA0)	`6GK5763-1AL00-3DA0`	vers:all/*	No Fix Planned
SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0) Siemens / SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0)	`6GK5766-1GE00-3DA0`	vers:all/*	No Fix Planned
SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0) Siemens / SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0)	`6GK5766-1GE00-3DB0`	vers:all/*	No Fix Planned

CVE-2024-30191

8.4 (High)


                        
                          CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

CWE-290 - Authentication Bypass by Spoofing

Affected products

Known affected 64 products

Product	Identifier	Version	Remediation
SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0) Siemens / SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0)	`6GK5748-1GY01-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0) Siemens / SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0)	`6GK5748-1GY01-0TA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0) Siemens / SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0)	`6GK5788-1GY01-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0) Siemens / SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0)	`6GK5788-2GY01-0TA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0) Siemens / SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0)	`6GK5788-2GY01-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0) Siemens / SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0)	`6GK5788-2HY01-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0) Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)	`6GK5721-1FC00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0) Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)	`6GK5721-1FC00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0) Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)	`6GK5722-1FC00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0) Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)	`6GK5722-1FC00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0) Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)	`6GK5722-1FC00-0AC0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0) Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)	`6GK5734-1FX00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6) Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)	`6GK5734-1FX00-0AA6`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0) Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)	`6GK5734-1FX00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6) Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)	`6GK5734-1FX00-0AB6`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0) Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)	`6GK5738-1GY00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0) Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)	`6GK5738-1GY00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0) Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)	`6GK5748-1GD00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0) Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)	`6GK5748-1GD00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0) Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)	`6GK5748-1FC00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0) Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)	`6GK5748-1FC00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0) Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)	`6GK5761-1FC00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0) Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)	`6GK5761-1FC00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0) Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)	`6GK5774-1FY00-0TA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0) Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)	`6GK5774-1FY00-0TB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0) Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)	`6GK5774-1FX00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6) Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)	`6GK5774-1FX00-0AA6`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0) Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)	`6GK5774-1FX00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0) Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)	`6GK5774-1FX00-0AC0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6) Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)	`6GK5774-1FX00-0AB6`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0) Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)	`6GK5778-1GY00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0) Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)	`6GK5778-1GY00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0) Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)	`6GK5778-1GY00-0TA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0) Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)	`6GK5778-1GY00-0TB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0) Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)	`6GK5786-1FC00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0) Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)	`6GK5786-1FC00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0) Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)	`6GK5786-2FC00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0) Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)	`6GK5786-2FC00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0) Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)	`6GK5786-2FC00-0AC0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0) Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)	`6GK5786-2FE00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0) Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)	`6GK5786-2FE00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0) Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)	`6GK5786-2HC00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0) Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)	`6GK5786-2HC00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0) Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)	`6GK5788-1GD00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0) Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)	`6GK5788-1GD00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0) Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)	`6GK5788-1FC00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0) Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)	`6GK5788-1FC00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0) Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)	`6GK5788-2GD00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0) Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)	`6GK5788-2GD00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0) Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)	`6GK5788-2GD00-0TA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0) Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)	`6GK5788-2GD00-0TB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0) Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)	`6GK5788-2GD00-0TC0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0) Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)	`6GK5788-2FC00-0AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0) Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)	`6GK5788-2FC00-0AB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0) Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)	`6GK5788-2FC00-0AC0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) Siemens / SCALANCE WAM763-1 (6GK5763-1AL00-7DA0)	`6GK5763-1AL00-7DA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0) Siemens / SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0)	`6GK5766-1GE00-7DA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0) Siemens / SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0)	`6GK5766-1GE00-7DB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0) Siemens / SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0)	`6GK5766-1GE00-7TA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0) Siemens / SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0)	`6GK5766-1GE00-7TB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE WUM763-1 (6GK5763-1AL00-3AA0) Siemens / SCALANCE WUM763-1 (6GK5763-1AL00-3AA0)	`6GK5763-1AL00-3AA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE WUM763-1 (6GK5763-1AL00-3DA0) Siemens / SCALANCE WUM763-1 (6GK5763-1AL00-3DA0)	`6GK5763-1AL00-3DA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0) Siemens / SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0)	`6GK5766-1GE00-3DA0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned
SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0) Siemens / SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0)	`6GK5766-1GE00-3DB0`	vers:all/*	Mitigation Mitigation Mitigation Mitigation No Fix Planned

References

4 references

URL	Category
https://cert-portal.siemens.com/productcert/html/…	self
https://cert-portal.siemens.com/productcert/csaf/…	self
https://cert-portal.siemens.com/productcert/pdf/s…	self
https://cert-portal.siemens.com/productcert/txt/s…	self

JSON

To clipboard

{
  "document": {
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)",
      "tlp": {
        "label": "WHITE"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "The SCALANCE W700 devices are affected by Wi-Fi encryption bypass vulnerabilities (\"Framing Frames\") that could allow an attacker to disclose sensitive information, to steal the victims session or to execute denial-of-service attacks.\n\nSiemens recommends countermeasures for products where fixes are not, or not yet available.",
        "title": "Summary"
      },
      {
        "category": "general",
        "text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
        "title": "General Recommendations"
      },
      {
        "category": "general",
        "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "productcert@siemens.com",
      "name": "Siemens ProductCERT",
      "namespace": "https://www.siemens.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "SSA-457702: Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W700 Product Family - HTML Version",
        "url": "https://cert-portal.siemens.com/productcert/html/ssa-457702.html"
      },
      {
        "category": "self",
        "summary": "SSA-457702: Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W700 Product Family - CSAF Version",
        "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-457702.json"
      },
      {
        "category": "self",
        "summary": "SSA-457702: Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W700 Product Family - PDF Version",
        "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-457702.pdf"
      },
      {
        "category": "self",
        "summary": "SSA-457702: Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W700 Product Family - TXT Version",
        "url": "https://cert-portal.siemens.com/productcert/txt/ssa-457702.txt"
      }
    ],
    "title": "SSA-457702: Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W700 Product Family",
    "tracking": {
      "current_release_date": "2024-04-09T00:00:00Z",
      "generator": {
        "engine": {
          "name": "Siemens ProductCERT CSAF Generator",
          "version": "1"
        }
      },
      "id": "SSA-457702",
      "initial_release_date": "2023-11-14T00:00:00Z",
      "revision_history": [
        {
          "date": "2023-11-14T00:00:00Z",
          "legacy_version": "1.0",
          "number": "1",
          "summary": "Publication Date"
        },
        {
          "date": "2024-04-09T00:00:00Z",
          "legacy_version": "1.1",
          "number": "2",
          "summary": "Split CVE-2022-47522 in three separate CVE\u0027s: CVE-2024-30189 for Scenario 1, CVE-2024-30190 for Scenario 2, CVE-2024-30191 for Scenario 3"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)",
                  "product_id": "1",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5721-1FC00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)",
                  "product_id": "2",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5721-1FC00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)",
                  "product_id": "3",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5722-1FC00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)",
                  "product_id": "4",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5722-1FC00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)",
                  "product_id": "5",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5722-1FC00-0AC0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)",
                  "product_id": "6",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5734-1FX00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)",
                  "product_id": "7",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5734-1FX00-0AA6"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)",
                  "product_id": "8",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5734-1FX00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)",
                  "product_id": "9",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5734-1FX00-0AB6"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)",
                  "product_id": "10",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5738-1GY00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)",
                  "product_id": "11",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5738-1GY00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)",
                  "product_id": "12",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5748-1GD00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)",
                  "product_id": "13",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5748-1GD00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)",
                  "product_id": "14",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5748-1FC00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)",
                  "product_id": "15",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5748-1FC00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)",
                  "product_id": "16",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5761-1FC00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)",
                  "product_id": "17",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5761-1FC00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)",
                  "product_id": "18",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5774-1FY00-0TA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)",
                  "product_id": "19",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5774-1FY00-0TB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)",
                  "product_id": "20",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5774-1FX00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)",
                  "product_id": "21",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5774-1FX00-0AA6"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)",
                  "product_id": "22",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5774-1FX00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)",
                  "product_id": "23",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5774-1FX00-0AC0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)",
                  "product_id": "24",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5774-1FX00-0AB6"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)",
                  "product_id": "25",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5778-1GY00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)",
                  "product_id": "26",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5778-1GY00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)",
                  "product_id": "27",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5778-1GY00-0TA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)",
                  "product_id": "28",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5778-1GY00-0TB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)",
                  "product_id": "29",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5786-1FC00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)",
                  "product_id": "30",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5786-1FC00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)",
                  "product_id": "31",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5786-2FC00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)",
                  "product_id": "32",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5786-2FC00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)",
                  "product_id": "33",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5786-2FC00-0AC0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)",
                  "product_id": "34",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5786-2FE00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)",
                  "product_id": "35",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5786-2FE00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)",
                  "product_id": "36",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5786-2HC00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)",
                  "product_id": "37",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5786-2HC00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)",
                  "product_id": "38",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-1GD00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)",
                  "product_id": "39",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-1GD00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)",
                  "product_id": "40",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-1FC00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)",
                  "product_id": "41",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-1FC00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)",
                  "product_id": "42",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-2GD00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)",
                  "product_id": "43",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-2GD00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)",
                  "product_id": "44",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-2GD00-0TA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)",
                  "product_id": "45",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-2GD00-0TB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)",
                  "product_id": "46",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-2GD00-0TC0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)",
                  "product_id": "47",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-2FC00-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)",
                  "product_id": "48",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-2FC00-0AB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)",
                  "product_id": "49",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-2FC00-0AC0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0)",
                  "product_id": "50",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5748-1GY01-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0)",
                  "product_id": "51",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5748-1GY01-0TA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0)",
                  "product_id": "52",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-1GY01-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0)",
                  "product_id": "53",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-2GY01-0TA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0)",
                  "product_id": "54",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-2GY01-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0)",
                  "product_id": "55",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5788-2HY01-0AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE WAM763-1 (6GK5763-1AL00-7DA0)",
                  "product_id": "56",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5763-1AL00-7DA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE WAM763-1 (6GK5763-1AL00-7DA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0)",
                  "product_id": "57",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5766-1GE00-7DA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0)",
                  "product_id": "58",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5766-1GE00-7DB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0)",
                  "product_id": "59",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5766-1GE00-7TA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0)",
                  "product_id": "60",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5766-1GE00-7TB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE WUM763-1 (6GK5763-1AL00-3AA0)",
                  "product_id": "61",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5763-1AL00-3AA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE WUM763-1 (6GK5763-1AL00-3AA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE WUM763-1 (6GK5763-1AL00-3DA0)",
                  "product_id": "62",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5763-1AL00-3DA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE WUM763-1 (6GK5763-1AL00-3DA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0)",
                  "product_id": "63",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5766-1GE00-3DA0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0)"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:all/*",
                "product": {
                  "name": "SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0)",
                  "product_id": "64",
                  "product_identification_helper": {
                    "model_numbers": [
                      "6GK5766-1GE00-3DB0"
                    ]
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0)"
          }
        ],
        "category": "vendor",
        "name": "Siemens"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2024-30189",
      "cwe": {
        "id": "CWE-290",
        "name": "Authentication Bypass by Spoofing"
      },
      "notes": [
        {
          "category": "summary",
          "text": "This CVE refers to Scenario 1 \"Leak frames from the Wi-Fi queue\" of CVE-2022-47522.\r\n\r\nAffected devices queue frames in order to subsequently change the security context and leak the queued frames. This could allow a physically proximate attacker to intercept (possibly cleartext) target-destined frames.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "1",
          "2",
          "3",
          "4",
          "5",
          "6",
          "7",
          "8",
          "9",
          "10",
          "11",
          "12",
          "13",
          "14",
          "15",
          "16",
          "17",
          "18",
          "19",
          "20",
          "21",
          "22",
          "23",
          "24",
          "25",
          "26",
          "27",
          "28",
          "29",
          "30",
          "31",
          "32",
          "33",
          "34",
          "35",
          "36",
          "37",
          "38",
          "39",
          "40",
          "41",
          "42",
          "43",
          "44",
          "45",
          "46",
          "47",
          "48",
          "49"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Use TLS based communication",
          "product_ids": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26",
            "27",
            "28",
            "29",
            "30",
            "31",
            "32",
            "33",
            "34",
            "35",
            "36",
            "37",
            "38",
            "39",
            "40",
            "41",
            "42",
            "43",
            "44",
            "45",
            "46",
            "47",
            "48",
            "49"
          ]
        },
        {
          "category": "mitigation",
          "details": "Use VLAN based segregation of clients (802.1q)",
          "product_ids": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26",
            "27",
            "28",
            "29",
            "30",
            "31",
            "32",
            "33",
            "34",
            "35",
            "36",
            "37",
            "38",
            "39",
            "40",
            "41",
            "42",
            "43",
            "44",
            "45",
            "46",
            "47",
            "48",
            "49"
          ]
        },
        {
          "category": "no_fix_planned",
          "details": "Currently no fix is planned",
          "product_ids": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26",
            "27",
            "28",
            "29",
            "30",
            "31",
            "32",
            "33",
            "34",
            "35",
            "36",
            "37",
            "38",
            "39",
            "40",
            "41",
            "42",
            "43",
            "44",
            "45",
            "46",
            "47",
            "48",
            "49"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26",
            "27",
            "28",
            "29",
            "30",
            "31",
            "32",
            "33",
            "34",
            "35",
            "36",
            "37",
            "38",
            "39",
            "40",
            "41",
            "42",
            "43",
            "44",
            "45",
            "46",
            "47",
            "48",
            "49"
          ]
        }
      ],
      "title": "CVE-2024-30189"
    },
    {
      "cve": "CVE-2024-30190",
      "cwe": {
        "id": "CWE-290",
        "name": "Authentication Bypass by Spoofing"
      },
      "notes": [
        {
          "category": "summary",
          "text": "This CVE refers to Scenario 2 \"Abuse the queue for network disruptions\" of CVE-2022-47522.\r\n\r\nAffected devices can be tricked into enabling its power-saving mechanisms for a victim client. This could allow a physically proximate attacker to execute disconnection and denial-of-service attacks.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "50",
          "51",
          "52",
          "53",
          "54",
          "55",
          "1",
          "2",
          "3",
          "4",
          "5",
          "6",
          "7",
          "8",
          "9",
          "10",
          "11",
          "12",
          "13",
          "14",
          "15",
          "16",
          "17",
          "18",
          "19",
          "20",
          "21",
          "22",
          "23",
          "24",
          "25",
          "26",
          "27",
          "28",
          "29",
          "30",
          "31",
          "32",
          "33",
          "34",
          "35",
          "36",
          "37",
          "38",
          "39",
          "40",
          "41",
          "42",
          "43",
          "44",
          "45",
          "46",
          "47",
          "48",
          "49",
          "56",
          "57",
          "58",
          "59",
          "60",
          "61",
          "62",
          "63",
          "64"
        ]
      },
      "remediations": [
        {
          "category": "no_fix_planned",
          "details": "Currently no fix is planned",
          "product_ids": [
            "50",
            "51",
            "52",
            "53",
            "54",
            "55",
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26",
            "27",
            "28",
            "29",
            "30",
            "31",
            "32",
            "33",
            "34",
            "35",
            "36",
            "37",
            "38",
            "39",
            "40",
            "41",
            "42",
            "43",
            "44",
            "45",
            "46",
            "47",
            "48",
            "49",
            "56",
            "57",
            "58",
            "59",
            "60",
            "61",
            "62",
            "63",
            "64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "50",
            "51",
            "52",
            "53",
            "54",
            "55",
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26",
            "27",
            "28",
            "29",
            "30",
            "31",
            "32",
            "33",
            "34",
            "35",
            "36",
            "37",
            "38",
            "39",
            "40",
            "41",
            "42",
            "43",
            "44",
            "45",
            "46",
            "47",
            "48",
            "49",
            "56",
            "57",
            "58",
            "59",
            "60",
            "61",
            "62",
            "63",
            "64"
          ]
        }
      ],
      "title": "CVE-2024-30190"
    },
    {
      "cve": "CVE-2024-30191",
      "cwe": {
        "id": "CWE-290",
        "name": "Authentication Bypass by Spoofing"
      },
      "notes": [
        {
          "category": "summary",
          "text": "This CVE refers to Scenario 3 \"Override client\u2019s security context\" of CVE-2022-47522.\r\n\r\nAffected devices can be tricked into associating a newly negotiated, attacker-controlled, security context with frames belonging to a victim. This could allow a physically proximate attacker to decrypt frames meant for the victim.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "50",
          "51",
          "52",
          "53",
          "54",
          "55",
          "1",
          "2",
          "3",
          "4",
          "5",
          "6",
          "7",
          "8",
          "9",
          "10",
          "11",
          "12",
          "13",
          "14",
          "15",
          "16",
          "17",
          "18",
          "19",
          "20",
          "21",
          "22",
          "23",
          "24",
          "25",
          "26",
          "27",
          "28",
          "29",
          "30",
          "31",
          "32",
          "33",
          "34",
          "35",
          "36",
          "37",
          "38",
          "39",
          "40",
          "41",
          "42",
          "43",
          "44",
          "45",
          "46",
          "47",
          "48",
          "49",
          "56",
          "57",
          "58",
          "59",
          "60",
          "61",
          "62",
          "63",
          "64"
        ]
      },
      "remediations": [
        {
          "category": "mitigation",
          "details": "Use TLS based communication",
          "product_ids": [
            "50",
            "51",
            "52",
            "53",
            "54",
            "55",
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26",
            "27",
            "28",
            "29",
            "30",
            "31",
            "32",
            "33",
            "34",
            "35",
            "36",
            "37",
            "38",
            "39",
            "40",
            "41",
            "42",
            "43",
            "44",
            "45",
            "46",
            "47",
            "48",
            "49",
            "56",
            "57",
            "58",
            "59",
            "60",
            "61",
            "62",
            "63",
            "64"
          ]
        },
        {
          "category": "mitigation",
          "details": "Use VLAN based segregation of clients (802.1q)",
          "product_ids": [
            "50",
            "51",
            "52",
            "53",
            "54",
            "55",
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26",
            "27",
            "28",
            "29",
            "30",
            "31",
            "32",
            "33",
            "34",
            "35",
            "36",
            "37",
            "38",
            "39",
            "40",
            "41",
            "42",
            "43",
            "44",
            "45",
            "46",
            "47",
            "48",
            "49",
            "56",
            "57",
            "58",
            "59",
            "60",
            "61",
            "62",
            "63",
            "64"
          ]
        },
        {
          "category": "mitigation",
          "details": "Use Wi-Fi Management Frame Protection (802.11w)",
          "product_ids": [
            "50",
            "51",
            "52",
            "53",
            "54",
            "55",
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26",
            "27",
            "28",
            "29",
            "30",
            "31",
            "32",
            "33",
            "34",
            "35",
            "36",
            "37",
            "38",
            "39",
            "40",
            "41",
            "42",
            "43",
            "44",
            "45",
            "46",
            "47",
            "48",
            "49",
            "56",
            "57",
            "58",
            "59",
            "60",
            "61",
            "62",
            "63",
            "64"
          ]
        },
        {
          "category": "mitigation",
          "details": "Recommendation for upper layers: Do not allow associations to use MAC addresses that are duplicates used by internal services on the LAN",
          "product_ids": [
            "50",
            "51",
            "52",
            "53",
            "54",
            "55",
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26",
            "27",
            "28",
            "29",
            "30",
            "31",
            "32",
            "33",
            "34",
            "35",
            "36",
            "37",
            "38",
            "39",
            "40",
            "41",
            "42",
            "43",
            "44",
            "45",
            "46",
            "47",
            "48",
            "49",
            "56",
            "57",
            "58",
            "59",
            "60",
            "61",
            "62",
            "63",
            "64"
          ]
        },
        {
          "category": "no_fix_planned",
          "details": "Currently no fix is planned",
          "product_ids": [
            "50",
            "51",
            "52",
            "53",
            "54",
            "55",
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26",
            "27",
            "28",
            "29",
            "30",
            "31",
            "32",
            "33",
            "34",
            "35",
            "36",
            "37",
            "38",
            "39",
            "40",
            "41",
            "42",
            "43",
            "44",
            "45",
            "46",
            "47",
            "48",
            "49",
            "56",
            "57",
            "58",
            "59",
            "60",
            "61",
            "62",
            "63",
            "64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "50",
            "51",
            "52",
            "53",
            "54",
            "55",
            "1",
            "2",
            "3",
            "4",
            "5",
            "6",
            "7",
            "8",
            "9",
            "10",
            "11",
            "12",
            "13",
            "14",
            "15",
            "16",
            "17",
            "18",
            "19",
            "20",
            "21",
            "22",
            "23",
            "24",
            "25",
            "26",
            "27",
            "28",
            "29",
            "30",
            "31",
            "32",
            "33",
            "34",
            "35",
            "36",
            "37",
            "38",
            "39",
            "40",
            "41",
            "42",
            "43",
            "44",
            "45",
            "46",
            "47",
            "48",
            "49",
            "56",
            "57",
            "58",
            "59",
            "60",
            "61",
            "62",
            "63",
            "64"
          ]
        }
      ],
      "title": "CVE-2024-30191"
    }
  ]
}

BDU:2024-05306

Vulnerability from fstec - Published: 14.11.2023

Title

Уязвимость микропрограммного обеспечения промышленных коммутаторов Siemens SCALANCE, связанная с обходом аутентификации посредством спуфинга, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации

Description

Уязвимость микропрограммного обеспечения промышленных коммутаторов Siemens SCALANCE связана с обходом аутентификации посредством спуфинга. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, получить несанкционированный доступ к защищаемой информации

Severity


                    
                      AV:A/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H

Vendor

Siemens AG

Software Name

SCALANCE W721-1 RJ45, SCALANCE W722-1 RJ45, SCALANCE W734-1 RJ45, SCALANCE W738-1 M12, SCALANCE W748-1 M12, SCALANCE W748-1 RJ45, SCALANCE W761-1 RJ45, SCALANCE W774-1 M12 EEC, SCALANCE W774-1 RJ45, SCALANCE W778-1 M12, SCALANCE W786-1 RJ45, SCALANCE W786-2 RJ45, SCALANCE W786-2 SFP, SCALANCE W786-2IA RJ45, SCALANCE W788-1 M12, SCALANCE W788-1 RJ45, SCALANCE W788-2 M12, SCALANCE W788-2 RJ45, SCALANCE W778-1 M12 EEC, SCALANCE W788-2 M12 EEC

Software Version

- (SCALANCE W721-1 RJ45), - (SCALANCE W722-1 RJ45), - (SCALANCE W734-1 RJ45), - (SCALANCE W738-1 M12), - (SCALANCE W748-1 M12), - (SCALANCE W748-1 RJ45), - (SCALANCE W761-1 RJ45), - (SCALANCE W774-1 M12 EEC), - (SCALANCE W774-1 RJ45), - (SCALANCE W778-1 M12), - (SCALANCE W786-1 RJ45), - (SCALANCE W786-2 RJ45), - (SCALANCE W786-2 SFP), - (SCALANCE W786-2IA RJ45), - (SCALANCE W788-1 M12), - (SCALANCE W788-1 RJ45), - (SCALANCE W788-2 M12), - (SCALANCE W788-2 RJ45), - (SCALANCE W778-1 M12 EEC), - (SCALANCE W788-2 M12 EEC)

Possible Mitigations

Компенсирующие меры: - использование списков контроля доступа (ACL) для ограничения доступа к веб-серверу; - блокирование доступа к 443 и 80 TCP-портам; - сегментирование сетей для ограничения доступа к промышленному оборудованию из других подсетей; - использование виртуальных частных сетей для организации удаленного доступа (VPN); - использование протокола TLS для защищенной передачи данных; - использование разделения клиентов на основе VLAN (802.1q). Использование рекомендаций производителя: https://cert-portal.siemens.com/productcert/html/ssa-457702.html

Reference

https://cert-portal.siemens.com/productcert/html/ssa-457702.html

CWE

CWE-290

JSON

To clipboard

{
  "CVSS 2.0": "AV:A/AC:L/Au:S/C:N/I:N/A:C",
  "CVSS 3.0": "AV:A/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Siemens AG",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (SCALANCE W721-1 RJ45), - (SCALANCE W722-1 RJ45), - (SCALANCE W734-1 RJ45), - (SCALANCE W738-1 M12), - (SCALANCE W748-1 M12), - (SCALANCE W748-1 RJ45), - (SCALANCE W761-1 RJ45), - (SCALANCE W774-1 M12 EEC), - (SCALANCE W774-1 RJ45), - (SCALANCE W778-1 M12), - (SCALANCE W786-1 RJ45), - (SCALANCE W786-2 RJ45), - (SCALANCE W786-2 SFP), - (SCALANCE W786-2IA RJ45), - (SCALANCE W788-1 M12), - (SCALANCE W788-1 RJ45), - (SCALANCE W788-2 M12), - (SCALANCE W788-2 RJ45), - (SCALANCE W778-1 M12 EEC), - (SCALANCE W788-2 M12 EEC)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u041a\u043e\u043c\u043f\u0435\u043d\u0441\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u043c\u0435\u0440\u044b:\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u043f\u0438\u0441\u043a\u043e\u0432 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 (ACL) \u0434\u043b\u044f \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0432\u0435\u0431-\u0441\u0435\u0440\u0432\u0435\u0440\u0443;\n- \u0431\u043b\u043e\u043a\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a 443 \u0438 80 TCP-\u043f\u043e\u0440\u0442\u0430\u043c;\n- \u0441\u0435\u0433\u043c\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0435\u0442\u0435\u0439 \u0434\u043b\u044f \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u043e\u0431\u043e\u0440\u0443\u0434\u043e\u0432\u0430\u043d\u0438\u044e \u0438\u0437 \u0434\u0440\u0443\u0433\u0438\u0445 \u043f\u043e\u0434\u0441\u0435\u0442\u0435\u0439;\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0445 \u0447\u0430\u0441\u0442\u043d\u044b\u0445 \u0441\u0435\u0442\u0435\u0439 \u0434\u043b\u044f \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 (VPN);\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u0430 TLS \u0434\u043b\u044f \u0437\u0430\u0449\u0438\u0449\u0435\u043d\u043d\u043e\u0439 \u043f\u0435\u0440\u0435\u0434\u0430\u0447\u0438 \u0434\u0430\u043d\u043d\u044b\u0445;\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0430\u0437\u0434\u0435\u043b\u0435\u043d\u0438\u044f \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 \u043d\u0430 \u043e\u0441\u043d\u043e\u0432\u0435 VLAN (802.1q).\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://cert-portal.siemens.com/productcert/html/ssa-457702.html",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "14.11.2023",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "17.07.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "17.07.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-05306",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-30189, SSA-457702",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "SCALANCE W721-1 RJ45, SCALANCE W722-1 RJ45, SCALANCE W734-1 RJ45, SCALANCE W738-1 M12, SCALANCE W748-1 M12, SCALANCE W748-1 RJ45, SCALANCE W761-1 RJ45, SCALANCE W774-1 M12 EEC, SCALANCE W774-1 RJ45, SCALANCE W778-1 M12, SCALANCE W786-1 RJ45, SCALANCE W786-2 RJ45, SCALANCE W786-2 SFP, SCALANCE W786-2IA RJ45, SCALANCE W788-1 M12, SCALANCE W788-1 RJ45, SCALANCE W788-2 M12, SCALANCE W788-2 RJ45, SCALANCE W778-1 M12 EEC, SCALANCE W788-2 M12 EEC",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0445 \u043a\u043e\u043c\u043c\u0443\u0442\u0430\u0442\u043e\u0440\u043e\u0432 Siemens SCALANCE, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043e\u0431\u0445\u043e\u0434\u043e\u043c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u0441\u043f\u0443\u0444\u0438\u043d\u0433\u0430, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041e\u0431\u0445\u043e\u0434 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u0441\u043f\u0443\u0444\u0438\u043d\u0433\u0430 (CWE-290)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0445 \u043a\u043e\u043c\u043c\u0443\u0442\u0430\u0442\u043e\u0440\u043e\u0432 Siemens SCALANCE \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043e\u0431\u0445\u043e\u0434\u043e\u043c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u0441\u043f\u0443\u0444\u0438\u043d\u0433\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0437\u0430\u0449\u0438\u0449\u0430\u0435\u043c\u043e\u0439 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0435 \u043c\u0435\u0440\u044b",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041f\u043e\u0434\u043c\u0435\u043d\u0430 \u043f\u0440\u0438 \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://cert-portal.siemens.com/productcert/html/ssa-457702.html",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u041e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0410\u0421\u0423 \u0422\u041f, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e, \u041f\u041e \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-290",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,5)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,1)"
}

BDU:2024-05586

Vulnerability from fstec - Published: 09.04.2024

Title

Уязвимость промышленных коммутаторов Siemens SCALANCE, связанная с обходом аутентификации посредством спуфинга, позволяющая нарушителю вызвать отказ в обслуживании

Description

Уязвимость промышленных коммутаторов Siemens SCALANCE связана с обходом аутентификации посредством спуфинга. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, вызвать отказ в обслуживании

Severity


                    
                      AV:A/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H

Vendor

Siemens AG

Software Name

SCALANCE W721-1 RJ45, SCALANCE W722-1 RJ45, SCALANCE W734-1 RJ45, SCALANCE W738-1 M12, SCALANCE W748-1 M12, SCALANCE W761-1 RJ45, SCALANCE W774-1 M12 EEC, SCALANCE W774-1 RJ45, SCALANCE W778-1 M12, SCALANCE W786-1 RJ45, SCALANCE W786-2 RJ45, SCALANCE W786-2 SFP, SCALANCE W786-2IA RJ45, SCALANCE W788-1 M12, SCALANCE W788-1 RJ45, SCALANCE W788-2 M12, SCALANCE W788-2 RJ45, SCALANCE W1748-1 M12, SCALANCE W1788-1 M12, SCALANCE W1788-2 EEC M12, SCALANCE W1788-2 M12, SCALANCE W1788-2IA M12, SCALANCE WAM763-1, SCALANCE WAM766-1, SCALANCE WUM763-1, SCALANCE WUM766-1, SCALANCE W778-1 M12 EEC, SCALANCE W788-2 M12 EEC, SCALANCE WAM766-1 EEC

Software Version

- (SCALANCE W721-1 RJ45), - (SCALANCE W722-1 RJ45), - (SCALANCE W734-1 RJ45), - (SCALANCE W738-1 M12), - (SCALANCE W748-1 M12), - (SCALANCE W761-1 RJ45), - (SCALANCE W774-1 M12 EEC), - (SCALANCE W774-1 RJ45), - (SCALANCE W778-1 M12), - (SCALANCE W786-1 RJ45), - (SCALANCE W786-2 RJ45), - (SCALANCE W786-2 SFP), - (SCALANCE W786-2IA RJ45), - (SCALANCE W788-1 M12), - (SCALANCE W788-1 RJ45), - (SCALANCE W788-2 M12), - (SCALANCE W788-2 RJ45), - (SCALANCE W1748-1 M12), - (SCALANCE W1788-1 M12), - (SCALANCE W1788-2 EEC M12), - (SCALANCE W1788-2 M12), - (SCALANCE W1788-2IA M12), - (SCALANCE WAM763-1), - (SCALANCE WAM766-1), - (SCALANCE WUM763-1), - (SCALANCE WUM766-1), - (SCALANCE W778-1 M12 EEC), - (SCALANCE W788-2 M12 EEC), - (SCALANCE WAM766-1 EEC)

Possible Mitigations

Установка обновлений из доверенных источников. В связи со сложившейся обстановкой и введенными санкциями против Российской Федерации рекомендуется устанавливать обновления программного обеспечения только после оценки всех сопутствующих рисков. Компенсирующие меры: - использование списков контроля доступа (ACL) для ограничения доступа к веб-серверу; - блокирование доступа к 443 и 80 TCP-портам; - сегментирование сетей для ограничения доступа к промышленному оборудованию из других подсетей; - использование виртуальных частных сетей для организации удаленного доступа (VPN); - запретить ассоциациям использовать MAC-адреса, которые являются дубликатами и используются внутренними службами в локальной сети - использовать защиту фрейма управления Wi-Fi (802.11w). Использование рекомендаций производителя: https://cert-portal.siemens.com/productcert/html/ssa-457702.html

Reference

https://cert-portal.siemens.com/productcert/html/ssa-457702.html

CWE

CWE-290

JSON

To clipboard

{
  "CVSS 2.0": "AV:A/AC:L/Au:S/C:N/I:N/A:C",
  "CVSS 3.0": "AV:A/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Siemens AG",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (SCALANCE W721-1 RJ45), - (SCALANCE W722-1 RJ45), - (SCALANCE W734-1 RJ45), - (SCALANCE W738-1 M12), - (SCALANCE W748-1 M12), - (SCALANCE W761-1 RJ45), - (SCALANCE W774-1 M12 EEC), - (SCALANCE W774-1 RJ45), - (SCALANCE W778-1 M12), - (SCALANCE W786-1 RJ45), - (SCALANCE W786-2 RJ45), - (SCALANCE W786-2 SFP), - (SCALANCE W786-2IA RJ45), - (SCALANCE W788-1 M12), - (SCALANCE W788-1 RJ45), - (SCALANCE W788-2 M12), - (SCALANCE W788-2 RJ45), - (SCALANCE W1748-1 M12), - (SCALANCE W1788-1 M12), - (SCALANCE W1788-2 EEC M12), - (SCALANCE W1788-2 M12), - (SCALANCE W1788-2IA M12), - (SCALANCE WAM763-1), - (SCALANCE WAM766-1), - (SCALANCE WUM763-1), - (SCALANCE WUM766-1), - (SCALANCE W778-1 M12 EEC), - (SCALANCE W788-2 M12 EEC), - (SCALANCE WAM766-1 EEC)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0423\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0439 \u0438\u0437 \u0434\u043e\u0432\u0435\u0440\u0435\u043d\u043d\u044b\u0445 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u043e\u0432.\n\u0412 \u0441\u0432\u044f\u0437\u0438 \u0441\u043e \u0441\u043b\u043e\u0436\u0438\u0432\u0448\u0435\u0439\u0441\u044f \u043e\u0431\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u043e\u0439 \u0438 \u0432\u0432\u0435\u0434\u0435\u043d\u043d\u044b\u043c\u0438 \u0441\u0430\u043d\u043a\u0446\u0438\u044f\u043c\u0438 \u043f\u0440\u043e\u0442\u0438\u0432 \u0420\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u043e\u0439 \u0424\u0435\u0434\u0435\u0440\u0430\u0446\u0438\u0438 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0443\u0435\u0442\u0441\u044f \u0443\u0441\u0442\u0430\u043d\u0430\u0432\u043b\u0438\u0432\u0430\u0442\u044c \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u0442\u043e\u043b\u044c\u043a\u043e \u043f\u043e\u0441\u043b\u0435 \u043e\u0446\u0435\u043d\u043a\u0438 \u0432\u0441\u0435\u0445 \u0441\u043e\u043f\u0443\u0442\u0441\u0442\u0432\u0443\u044e\u0449\u0438\u0445 \u0440\u0438\u0441\u043a\u043e\u0432.\n\n\u041a\u043e\u043c\u043f\u0435\u043d\u0441\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u043c\u0435\u0440\u044b:\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u043f\u0438\u0441\u043a\u043e\u0432 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 (ACL) \u0434\u043b\u044f \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0432\u0435\u0431-\u0441\u0435\u0440\u0432\u0435\u0440\u0443;\n- \u0431\u043b\u043e\u043a\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a 443 \u0438 80 TCP-\u043f\u043e\u0440\u0442\u0430\u043c;\n- \u0441\u0435\u0433\u043c\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0435\u0442\u0435\u0439 \u0434\u043b\u044f \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u043e\u0431\u043e\u0440\u0443\u0434\u043e\u0432\u0430\u043d\u0438\u044e \u0438\u0437 \u0434\u0440\u0443\u0433\u0438\u0445 \u043f\u043e\u0434\u0441\u0435\u0442\u0435\u0439;\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0445 \u0447\u0430\u0441\u0442\u043d\u044b\u0445 \u0441\u0435\u0442\u0435\u0439 \u0434\u043b\u044f \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 (VPN);\n- \u0437\u0430\u043f\u0440\u0435\u0442\u0438\u0442\u044c \u0430\u0441\u0441\u043e\u0446\u0438\u0430\u0446\u0438\u044f\u043c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c MAC-\u0430\u0434\u0440\u0435\u0441\u0430, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u044f\u0432\u043b\u044f\u044e\u0442\u0441\u044f \u0434\u0443\u0431\u043b\u0438\u043a\u0430\u0442\u0430\u043c\u0438 \u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442\u0441\u044f \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u043c\u0438 \u0441\u043b\u0443\u0436\u0431\u0430\u043c\u0438 \u0432 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0435\u0442\u0438\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0437\u0430\u0449\u0438\u0442\u0443 \u0444\u0440\u0435\u0439\u043c\u0430 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f Wi-Fi (802.11w).\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://cert-portal.siemens.com/productcert/html/ssa-457702.html",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "09.04.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "23.07.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "23.07.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-05586",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-30190, SSA-457702",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0443\u0435\u0442",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "SCALANCE W721-1 RJ45, SCALANCE W722-1 RJ45, SCALANCE W734-1 RJ45, SCALANCE W738-1 M12, SCALANCE W748-1 M12, SCALANCE W761-1 RJ45, SCALANCE W774-1 M12 EEC, SCALANCE W774-1 RJ45, SCALANCE W778-1 M12, SCALANCE W786-1 RJ45, SCALANCE W786-2 RJ45, SCALANCE W786-2 SFP, SCALANCE W786-2IA RJ45, SCALANCE W788-1 M12, SCALANCE W788-1 RJ45, SCALANCE W788-2 M12, SCALANCE W788-2 RJ45, SCALANCE W1748-1 M12, SCALANCE W1788-1 M12, SCALANCE W1788-2 EEC M12, SCALANCE W1788-2 M12, SCALANCE W1788-2IA M12, SCALANCE WAM763-1, SCALANCE WAM766-1, SCALANCE WUM763-1, SCALANCE WUM766-1, SCALANCE W778-1 M12 EEC, SCALANCE W788-2 M12 EEC, SCALANCE WAM766-1 EEC",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0445 \u043a\u043e\u043c\u043c\u0443\u0442\u0430\u0442\u043e\u0440\u043e\u0432 Siemens SCALANCE, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043e\u0431\u0445\u043e\u0434\u043e\u043c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u0441\u043f\u0443\u0444\u0438\u043d\u0433\u0430, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041e\u0431\u0445\u043e\u0434 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u0441\u043f\u0443\u0444\u0438\u043d\u0433\u0430 (CWE-290)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0445 \u043a\u043e\u043c\u043c\u0443\u0442\u0430\u0442\u043e\u0440\u043e\u0432 Siemens SCALANCE \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043e\u0431\u0445\u043e\u0434\u043e\u043c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u0441\u043f\u0443\u0444\u0438\u043d\u0433\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041f\u043e\u0434\u043c\u0435\u043d\u0430 \u043f\u0440\u0438 \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://cert-portal.siemens.com/productcert/html/ssa-457702.html",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u041e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0410\u0421\u0423 \u0422\u041f, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e, \u041f\u041e \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-290",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 5,5)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,1)"
}

BDU:2024-05587

Vulnerability from fstec - Published: 09.04.2024

Title

Уязвимость промышленных коммутаторов Siemens SCALANCE, связанная с обходом аутентификации посредством спуфинга, позволяющая нарушителю повысить свои привилегии

Description

Severity


                    
                      AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Vendor

Siemens AG

Software Name

Software Version

Possible Mitigations

Компенсирующие меры: - использование списков контроля доступа (ACL) для ограничения доступа к веб-серверу; - блокирование доступа к 443 и 80 TCP-портам; - сегментирование сетей для ограничения доступа к промышленному оборудованию из других подсетей; - использование виртуальных частных сетей для организации удаленного доступа (VPN); - запретить ассоциациям использовать MAC-адреса, которые являются дубликатами и используются внутренними службами в локальной сети - использовать защиту фрейма управления Wi-Fi (802.11w). Использование рекомендаций производителя: https://cert-portal.siemens.com/productcert/html/ssa-457702.html

Reference

https://cert-portal.siemens.com/productcert/html/ssa-457702.html

CWE

CWE-290

JSON

To clipboard

{
  "CVSS 2.0": "AV:A/AC:L/Au:S/C:C/I:C/A:C",
  "CVSS 3.0": "AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Siemens AG",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (SCALANCE W721-1 RJ45), - (SCALANCE W722-1 RJ45), - (SCALANCE W734-1 RJ45), - (SCALANCE W738-1 M12), - (SCALANCE W748-1 M12), - (SCALANCE W761-1 RJ45), - (SCALANCE W774-1 M12 EEC), - (SCALANCE W774-1 RJ45), - (SCALANCE W778-1 M12), - (SCALANCE W786-1 RJ45), - (SCALANCE W786-2 RJ45), - (SCALANCE W786-2 SFP), - (SCALANCE W786-2IA RJ45), - (SCALANCE W788-1 M12), - (SCALANCE W788-1 RJ45), - (SCALANCE W788-2 M12), - (SCALANCE W788-2 RJ45), - (SCALANCE W1748-1 M12), - (SCALANCE W1788-1 M12), - (SCALANCE W1788-2 EEC M12), - (SCALANCE W1788-2 M12), - (SCALANCE W1788-2IA M12), - (SCALANCE WAM763-1), - (SCALANCE WAM766-1), - (SCALANCE WUM763-1), - (SCALANCE WUM766-1), - (SCALANCE W778-1 M12 EEC), - (SCALANCE W788-2 M12 EEC), - (SCALANCE WAM766-1 EEC)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u041a\u043e\u043c\u043f\u0435\u043d\u0441\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u043c\u0435\u0440\u044b:\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u043f\u0438\u0441\u043a\u043e\u0432 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 (ACL) \u0434\u043b\u044f \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0432\u0435\u0431-\u0441\u0435\u0440\u0432\u0435\u0440\u0443;\n- \u0431\u043b\u043e\u043a\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a 443 \u0438 80 TCP-\u043f\u043e\u0440\u0442\u0430\u043c;\n- \u0441\u0435\u0433\u043c\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0435\u0442\u0435\u0439 \u0434\u043b\u044f \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u043e\u043c\u0443 \u043e\u0431\u043e\u0440\u0443\u0434\u043e\u0432\u0430\u043d\u0438\u044e \u0438\u0437 \u0434\u0440\u0443\u0433\u0438\u0445 \u043f\u043e\u0434\u0441\u0435\u0442\u0435\u0439;\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0445 \u0447\u0430\u0441\u0442\u043d\u044b\u0445 \u0441\u0435\u0442\u0435\u0439 \u0434\u043b\u044f \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 (VPN);\n- \u0437\u0430\u043f\u0440\u0435\u0442\u0438\u0442\u044c \u0430\u0441\u0441\u043e\u0446\u0438\u0430\u0446\u0438\u044f\u043c \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c MAC-\u0430\u0434\u0440\u0435\u0441\u0430, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u044f\u0432\u043b\u044f\u044e\u0442\u0441\u044f \u0434\u0443\u0431\u043b\u0438\u043a\u0430\u0442\u0430\u043c\u0438 \u0438 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044e\u0442\u0441\u044f \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0438\u043c\u0438 \u0441\u043b\u0443\u0436\u0431\u0430\u043c\u0438 \u0432 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u043e\u0439 \u0441\u0435\u0442\u0438\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0437\u0430\u0449\u0438\u0442\u0443 \u0444\u0440\u0435\u0439\u043c\u0430 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f Wi-Fi (802.11w).\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://cert-portal.siemens.com/productcert/html/ssa-457702.html",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "09.04.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "23.07.2024",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "23.07.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-05587",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2024-30191, SSA-457702",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438 \u043e\u0442\u0441\u0443\u0442\u0441\u0442\u0432\u0443\u0435\u0442",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "SCALANCE W721-1 RJ45, SCALANCE W722-1 RJ45, SCALANCE W734-1 RJ45, SCALANCE W738-1 M12, SCALANCE W748-1 M12, SCALANCE W761-1 RJ45, SCALANCE W774-1 M12 EEC, SCALANCE W774-1 RJ45, SCALANCE W778-1 M12, SCALANCE W786-1 RJ45, SCALANCE W786-2 RJ45, SCALANCE W786-2 SFP, SCALANCE W786-2IA RJ45, SCALANCE W788-1 M12, SCALANCE W788-1 RJ45, SCALANCE W788-2 M12, SCALANCE W788-2 RJ45, SCALANCE W1748-1 M12, SCALANCE W1788-1 M12, SCALANCE W1788-2 EEC M12, SCALANCE W1788-2 M12, SCALANCE W1788-2IA M12, SCALANCE WAM763-1, SCALANCE WAM766-1, SCALANCE WUM763-1, SCALANCE WUM766-1, SCALANCE W778-1 M12 EEC, SCALANCE W788-2 M12 EEC, SCALANCE WAM766-1 EEC",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0445 \u043a\u043e\u043c\u043c\u0443\u0442\u0430\u0442\u043e\u0440\u043e\u0432 Siemens SCALANCE, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043e\u0431\u0445\u043e\u0434\u043e\u043c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u0441\u043f\u0443\u0444\u0438\u043d\u0433\u0430, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041e\u0431\u0445\u043e\u0434 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u0441\u043f\u0443\u0444\u0438\u043d\u0433\u0430 (CWE-290)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u043e\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u044b\u0445 \u043a\u043e\u043c\u043c\u0443\u0442\u0430\u0442\u043e\u0440\u043e\u0432 Siemens SCALANCE \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043e\u0431\u0445\u043e\u0434\u043e\u043c \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438 \u043f\u043e\u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e\u043c \u0441\u043f\u0443\u0444\u0438\u043d\u0433\u0430. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u0441\u0432\u043e\u0438 \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041f\u043e\u0434\u043c\u0435\u043d\u0430 \u043f\u0440\u0438 \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u0438, \u041d\u0430\u0440\u0443\u0448\u0435\u043d\u0438\u0435 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://cert-portal.siemens.com/productcert/html/ssa-457702.html",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u041e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0410\u0421\u0423 \u0422\u041f, \u0421\u0435\u0442\u0435\u0432\u043e\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e, \u041f\u041e \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-290",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,7)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 8,4)"
}

CVE-2024-30189 (GCVE-0-2024-30189)

Vulnerability from cvelistv5 – Published: 2024-04-09 08:34 – Updated: 2024-08-02 01:25

Summary

A vulnerability has been identified in SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0) (All versions), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0) (All versions), SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6) (All versions), SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0) (All versions), SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0) (All versions), SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0) (All versions), SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0) (All versions), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0) (All versions), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0) (All versions), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0) (All versions), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0) (All versions), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0) (All versions), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0) (All versions), SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6) (All versions), SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0) (All versions), SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0) (All versions), SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0) (All versions), SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0) (All versions), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0) (All versions), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0) (All versions), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0) (All versions), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0) (All versions), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0) (All versions), SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0) (All versions), SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0) (All versions), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0) (All versions), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0) (All versions), SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0) (All versions), SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0) (All versions), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0) (All versions), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0) (All versions), SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0) (All versions), SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0) (All versions), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0) (All versions), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0) (All versions), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0) (All versions), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0) (All versions), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0) (All versions), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0) (All versions). This CVE refers to Scenario 1 "Leak frames from the Wi-Fi queue" of CVE-2022-47522. Affected devices queue frames in order to subsequently change the security context and leak the queued frames. This could allow a physically proximate attacker to intercept (possibly cleartext) target-destined frames.

Severity

6.1 (Medium)


                        
                          CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N

CWE

CWE-290 - Authentication Bypass by Spoofing

Assigner

siemens

References

1 reference

URL	Tags
https://cert-portal.siemens.com/productcert/html/…

Impacted products

49 products

Vendor	Product	Version
Siemens	SCALANCE W721-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W721-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W722-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W722-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W722-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W734-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W734-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W734-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W734-1 RJ45 (USA)	Affected: 0 , < * (custom)
Siemens	SCALANCE W738-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W738-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W748-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W748-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W748-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W748-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W761-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W761-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45 (USA)	Affected: 0 , < * (custom)
Siemens	SCALANCE W778-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W778-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W778-1 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W778-1 M12 EEC (USA)	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 SFP	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 SFP	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2IA RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2IA RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 RJ45	Affected: 0 , < * (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-30189",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-07-29T16:06:10.437362Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-07-29T16:06:26.152Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T01:25:03.406Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-457702.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W721-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W721-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W722-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W722-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W722-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W734-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W734-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W734-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W734-1 RJ45 (USA)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W738-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W738-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W748-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W748-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W748-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W748-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W761-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W761-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45 (USA)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W778-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W778-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W778-1 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W778-1 M12 EEC (USA)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 SFP",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 SFP",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2IA RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2IA RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability has been identified in SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0) (All versions), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0) (All versions), SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6) (All versions), SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0) (All versions), SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0) (All versions), SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0) (All versions), SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0) (All versions), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0) (All versions), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0) (All versions), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0) (All versions), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0) (All versions), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0) (All versions), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0) (All versions), SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6) (All versions), SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0) (All versions), SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0) (All versions), SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0) (All versions), SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0) (All versions), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0) (All versions), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0) (All versions), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0) (All versions), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0) (All versions), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0) (All versions), SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0) (All versions), SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0) (All versions), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0) (All versions), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0) (All versions), SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0) (All versions), SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0) (All versions), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0) (All versions), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0) (All versions), SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0) (All versions), SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0) (All versions), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0) (All versions), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0) (All versions), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0) (All versions), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0) (All versions), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0) (All versions), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0) (All versions). This CVE refers to Scenario 1 \"Leak frames from the Wi-Fi queue\" of CVE-2022-47522.\r\n\r\nAffected devices queue frames in order to subsequently change the security context and leak the queued frames. This could allow a physically proximate attacker to intercept (possibly cleartext) target-destined frames."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-290",
              "description": "CWE-290: Authentication Bypass by Spoofing",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-04-09T08:34:40.217Z",
        "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
        "shortName": "siemens"
      },
      "references": [
        {
          "url": "https://cert-portal.siemens.com/productcert/html/ssa-457702.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
    "assignerShortName": "siemens",
    "cveId": "CVE-2024-30189",
    "datePublished": "2024-04-09T08:34:40.217Z",
    "dateReserved": "2024-03-25T10:25:29.901Z",
    "dateUpdated": "2024-08-02T01:25:03.406Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-30190 (GCVE-0-2024-30190)

Vulnerability from cvelistv5 – Published: 2024-04-09 08:34 – Updated: 2024-08-02 01:25

Summary

A vulnerability has been identified in SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0), SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0), SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0), SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0), SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0), SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0), SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6), SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0), SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0), SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0), SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0), SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6), SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0), SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0), SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0), SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0), SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0), SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0), SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0), SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0), SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0), SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0), SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0), SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0), SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0), SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0). This CVE refers to Scenario 2 "Abuse the queue for network disruptions" of CVE-2022-47522. Affected devices can be tricked into enabling its power-saving mechanisms for a victim client. This could allow a physically proximate attacker to execute disconnection and denial-of-service attacks.

Severity

6.1 (Medium)


                        
                          CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H

CWE

CWE-290 - Authentication Bypass by Spoofing

Assigner

siemens

References

1 reference

URL	Tags
https://cert-portal.siemens.com/productcert/html/…

Impacted products

64 products

Vendor	Product	Version
Siemens	SCALANCE W1748-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W1748-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W1788-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W1788-2 EEC M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W1788-2 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W1788-2IA M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W721-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W721-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W722-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W722-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W722-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W734-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W734-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W734-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W734-1 RJ45 (USA)	Affected: 0 , < * (custom)
Siemens	SCALANCE W738-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W738-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W748-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W748-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W748-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W748-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W761-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W761-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45 (USA)	Affected: 0 , < * (custom)
Siemens	SCALANCE W778-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W778-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W778-1 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W778-1 M12 EEC (USA)	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 SFP	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 SFP	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2IA RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2IA RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE WAM763-1	Affected: 0 , < * (custom)
Siemens	SCALANCE WAM766-1 (EU)	Affected: 0 , < * (custom)
Siemens	SCALANCE WAM766-1 (US)	Affected: 0 , < * (custom)
Siemens	SCALANCE WAM766-1 EEC (EU)	Affected: 0 , < * (custom)
Siemens	SCALANCE WAM766-1 EEC (US)	Affected: 0 , < * (custom)
Siemens	SCALANCE WUM763-1	Affected: 0 , < * (custom)
Siemens	SCALANCE WUM763-1	Affected: 0 , < * (custom)
Siemens	SCALANCE WUM766-1 (EU)	Affected: 0 , < * (custom)
Siemens	SCALANCE WUM766-1 (US)	Affected: 0 , < * (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-30190",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-12T18:59:59.427449Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-06-04T17:38:46.608Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T01:25:03.433Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-457702.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W1748-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W1748-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W1788-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W1788-2 EEC M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W1788-2 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W1788-2IA M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W721-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W721-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W722-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W722-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W722-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W734-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W734-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W734-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W734-1 RJ45 (USA)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W738-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W738-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W748-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W748-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W748-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W748-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W761-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W761-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45 (USA)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W778-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W778-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W778-1 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W778-1 M12 EEC (USA)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 SFP",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 SFP",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2IA RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2IA RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WAM763-1",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WAM766-1 (EU)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WAM766-1 (US)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WAM766-1 EEC (EU)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WAM766-1 EEC (US)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WUM763-1",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WUM763-1",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WUM766-1 (EU)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WUM766-1 (US)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability has been identified in SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0), SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0), SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0), SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0), SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0), SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0), SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6), SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0), SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0), SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0), SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0), SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6), SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0), SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0), SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0), SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0), SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0), SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0), SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0), SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0), SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0), SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0), SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0), SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0), SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0), SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0). This CVE refers to Scenario 2 \"Abuse the queue for network disruptions\" of CVE-2022-47522.\r\n\r\nAffected devices can be tricked into enabling its power-saving mechanisms for a victim client. This could allow a physically proximate attacker to execute disconnection and denial-of-service attacks."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-290",
              "description": "CWE-290: Authentication Bypass by Spoofing",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-04-09T08:34:41.545Z",
        "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
        "shortName": "siemens"
      },
      "references": [
        {
          "url": "https://cert-portal.siemens.com/productcert/html/ssa-457702.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
    "assignerShortName": "siemens",
    "cveId": "CVE-2024-30190",
    "datePublished": "2024-04-09T08:34:41.545Z",
    "dateReserved": "2024-03-25T10:25:29.901Z",
    "dateUpdated": "2024-08-02T01:25:03.433Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2024-30191 (GCVE-0-2024-30191)

Vulnerability from cvelistv5 – Published: 2024-04-09 08:34 – Updated: 2024-08-27 19:42

Summary

A vulnerability has been identified in SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0), SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0), SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0), SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0), SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0), SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0), SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6), SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0), SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0), SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0), SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0), SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6), SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0), SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0), SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0), SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0), SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0), SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0), SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0), SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0), SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0), SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0), SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0), SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0), SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0), SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0). This CVE refers to Scenario 3 "Override client’s security context" of CVE-2022-47522. Affected devices can be tricked into associating a newly negotiated, attacker-controlled, security context with frames belonging to a victim. This could allow a physically proximate attacker to decrypt frames meant for the victim.

Severity

8.4 (High)


                        
                          CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

CWE

CWE-290 - Authentication Bypass by Spoofing

Assigner

siemens

References

1 reference

URL	Tags
https://cert-portal.siemens.com/productcert/html/…

Impacted products

64 products

Vendor	Product	Version
Siemens	SCALANCE W1748-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W1748-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W1788-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W1788-2 EEC M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W1788-2 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W1788-2IA M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W721-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W721-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W722-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W722-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W722-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W734-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W734-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W734-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W734-1 RJ45 (USA)	Affected: 0 , < * (custom)
Siemens	SCALANCE W738-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W738-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W748-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W748-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W748-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W748-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W761-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W761-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W774-1 RJ45 (USA)	Affected: 0 , < * (custom)
Siemens	SCALANCE W778-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W778-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W778-1 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W778-1 M12 EEC (USA)	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 SFP	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2 SFP	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2IA RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W786-2IA RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-1 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-1 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 M12 EEC	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE W788-2 RJ45	Affected: 0 , < * (custom)
Siemens	SCALANCE WAM763-1	Affected: 0 , < * (custom)
Siemens	SCALANCE WAM766-1 (EU)	Affected: 0 , < * (custom)
Siemens	SCALANCE WAM766-1 (US)	Affected: 0 , < * (custom)
Siemens	SCALANCE WAM766-1 EEC (EU)	Affected: 0 , < * (custom)
Siemens	SCALANCE WAM766-1 EEC (US)	Affected: 0 , < * (custom)
Siemens	SCALANCE WUM763-1	Affected: 0 , < * (custom)
Siemens	SCALANCE WUM763-1	Affected: 0 , < * (custom)
Siemens	SCALANCE WUM766-1 (EU)	Affected: 0 , < * (custom)
Siemens	SCALANCE WUM766-1 (US)	Affected: 0 , < * (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T01:25:03.416Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-457702.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:o:siemens:scalance_w1748-1_m12_firmware:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "scalance_w1748-1_m12_firmware",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:siemens:scalance_w1748-1_m12_firmware:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "scalance_w1748-1_m12_firmware",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:siemens:scalance_w1788-1_m12_firmware:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "scalance_w1788-1_m12_firmware",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:siemens:scalance_w1788-2_eec_m12_firmware:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "scalance_w1788-2_eec_m12_firmware",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:siemens:scalance_w1788-2_m12_firmware:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "scalance_w1788-2_m12_firmware",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:o:siemens:scalance_w1788-2ia_m12_firmware:-:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "scalance_w1788-2ia_m12_firmware",
            "vendor": "siemens",
            "versions": [
              {
                "lessThan": "*",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-30191",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-04-09T19:49:06.194305Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-08-27T19:42:29.913Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W1748-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W1748-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W1788-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W1788-2 EEC M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W1788-2 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W1788-2IA M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W721-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W721-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W722-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W722-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W722-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W734-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W734-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W734-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W734-1 RJ45 (USA)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W738-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W738-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W748-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W748-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W748-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W748-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W761-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W761-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W774-1 RJ45 (USA)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W778-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W778-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W778-1 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W778-1 M12 EEC (USA)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 SFP",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2 SFP",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2IA RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W786-2IA RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-1 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-1 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 M12 EEC",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE W788-2 RJ45",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WAM763-1",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WAM766-1 (EU)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WAM766-1 (US)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WAM766-1 EEC (EU)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WAM766-1 EEC (US)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WUM763-1",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WUM763-1",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WUM766-1 (EU)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SCALANCE WUM766-1 (US)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability has been identified in SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0), SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0), SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0), SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0), SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0), SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0), SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6), SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0), SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0), SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0), SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0), SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6), SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0), SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0), SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0), SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0), SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0), SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0), SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0), SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0), SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0), SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0), SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0), SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0), SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0), SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0). This CVE refers to Scenario 3 \"Override client\u2019s security context\" of CVE-2022-47522.\r\n\r\nAffected devices can be tricked into associating a newly negotiated, attacker-controlled, security context with frames belonging to a victim. This could allow a physically proximate attacker to decrypt frames meant for the victim."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 8.4,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-290",
              "description": "CWE-290: Authentication Bypass by Spoofing",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-04-09T08:34:42.970Z",
        "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
        "shortName": "siemens"
      },
      "references": [
        {
          "url": "https://cert-portal.siemens.com/productcert/html/ssa-457702.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
    "assignerShortName": "siemens",
    "cveId": "CVE-2024-30191",
    "datePublished": "2024-04-09T08:34:42.970Z",
    "dateReserved": "2024-03-25T10:25:29.901Z",
    "dateUpdated": "2024-08-27T19:42:29.913Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

SSA-457702

BDU:2024-05306

BDU:2024-05586

BDU:2024-05587

CVE-2024-30189 (GCVE-0-2024-30189)

CVE-2024-30190 (GCVE-0-2024-30190)

CVE-2024-30191 (GCVE-0-2024-30191)

Tags

Sightings

Nomenclature