SB2024011014 - Multiple vulnerabilities in Siemens SIMATIC CN 4100

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2024011014

SB2024011014 - Multiple vulnerabilities in Siemens SIMATIC CN 4100

Published: January 10, 2024

Security Bulletin ID SB2024011014
Severity
High
Patch available
YES
Number of vulnerabilities 3
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 33% Medium 67%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 3 secuirty vulnerabilities.


1) Authorization bypass through user-controlled key (CVE-ID: CVE-2023-49251)

The vulnerability allows a remote attacker to bypass authentication process.

The vulnerability exists due to authentication bypass in the "intermediate installation" system. A remote user can login as root and take control of the device even after the affected device is fully set up.


2) Input validation error (CVE-ID: CVE-2023-49252)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to the IP configuration change without authentication to the device. A remote attacker can pass specially crafted input to the application and perform a denial of service (DoS) attack.


3) Use of default credentials (CVE-ID: CVE-2023-49621)

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to the usage of default passwords in the "intermediate installation" system state. A remote attacker can use the credentials to gain complete control of the target device.


Remediation

Install update from vendor's website.

References