June 27, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
CISA Warns of Attacks Targeting NextGen Healthcare Mirth Connect
May 22, 2024
North Korean APT Kimsuky Aka Black Banshee – Active IOCs
May 23, 2024
CISA Warns of Attacks Targeting NextGen Healthcare Mirth Connect
May 22, 2024
North Korean APT Kimsuky Aka Black Banshee – Active IOCs
May 23, 2024
Severity
High
Analysis Summary
CVE-2024-31486 CVSS:5.3
Siemens OPUPI0 AMQP/MQTT Products could allow a remote authenticated attacker to obtain sensitive information, caused by the storage of MQTT client passwords without sufficient protection. By sending a specially crafted request, an attacker could exploit this vulnerability to obtain credentials information, and use this information to launch further attacks against the affected system.
CVE-2024-32636 CVSS:7.8
Siemens Parasolid could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds read flaw. By persuading a victim to parse a specially crafted X_T file, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2024-33647 CVSS:6.5
Siemens Polarion ALM could allow a remote authenticated attacker to obtain sensitive information, caused by improper access controls. By sending a specially crafted request, a remote attacker could exploit this vulnerability to obtain sensitive information.
CVE-2024-33493 CVSS:7.8
Siemens Solid Edge could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds read. By persuading a victim to parse specially crafted PAR files, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2024-32062 CVSS:7.8
Siemens PS/IGES Parasolid Translator Component could allow a remote attacker to execute arbitrary code on the system, caused by a type confusion flaw. By persuading a victim to open a specially crafted IGS file, an attacker could exploit this vulnerability to execute arbitrary code in the context of the current process.
CVE-2024-32060 CVSS:7.8
Siemens PS/IGES Parasolid Translator Component could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds read flaw. By persuading a victim to open a specially crafted IGS file, an attacker could exploit this vulnerability to execute arbitrary code in the context of the current process.
CVE-2024-27945 CVSS:7.2
Siemens RUGGEDCOM CROSSBOW could allow a remote authenticated attacker to bypass security restrictions, caused by improper access control by the bulk import feature. By replacing specific files, an attacker could exploit this vulnerability to tamper specific files or execute arbitrary code on the system
CVE-2024-27946 CVSS:6.5
Siemens RUGGEDCOM CROSSBOW could allow a remote authenticated attacker to traverse directories on the system, caused by improper validation of user request. An attacker could send a specially crafted URL request containing "dot dot" sequences to overwrite arbitrary files on the system.
CVE-2024-32063 CVSS:7.8
Siemens PS/IGES Parasolid Translator Component could allow a remote attacker to execute arbitrary code on the system, caused by a type confusion flaw. By persuading a victim to open a specially crafted IGS file, an attacker could exploit this vulnerability to execute arbitrary code in the context of the current process.
CVE-2024-34772 CVSS:7.8
Siemens Solid Edge could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds read. By persuading a victim to parse specially crafted PAR files, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2024-33490 CVSS:7.8
Siemens Solid Edge could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds read. By persuading a victim to parse specially crafted PAR files, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2024-27943 CVSS:7.2
Siemens RUGGEDCOM CROSSBOW could allow a remote authenticated attacker to bypass security restrictions, caused by improper access control. By replacing specific files, an attacker could exploit this vulnerability to tamper specific files or execute arbitrary code on the system
CVE-2024-31484 CVSS:7.8
Multiple Siemens SICAM Products could allow a remote attacker to execute arbitrary code on the system, caused by an improper null termination flaw when parsing a specific HTTP header. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code in the context of the current process or cause a denial of service condition.
CVE-2024-34773 CVSS:7.8
Siemens Solid Edge is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. By persuading a victim to parse specially crafted PAR files, a remote attacker could overflow a buffer and execute arbitrary code on the system.
CVE-2024-34086 CVSS:7.8
Siemens Teamcenter Visualization and JT2Go could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds write flaw. By persuading a victim to parse a specially crafted XML file, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2024-32065 CVSS:7.8
Siemens PS/IGES Parasolid Translator Component could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds read flaw. By persuading a victim to open a specially crafted IGS file, an attacker could exploit this vulnerability to execute arbitrary code in the context of the current process.
CVE-2024-32066 CVSS:7.8
Siemens PS/IGES Parasolid Translator Component could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds read flaw. By persuading a victim to open a specially crafted IGS file, an attacker could exploit this vulnerability to execute arbitrary code in the context of the current process.
CVE-2024-32064 CVSS:7.8
Siemens PS/IGES Parasolid Translator Component could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds read flaw. By persuading a victim to open a specially crafted IGS file, an attacker could exploit this vulnerability to execute arbitrary code in the context of the current process.
CVE-2024-32057 CVSS:7.8
Siemens PS/IGES Parasolid Translator Component could allow a remote attacker to execute arbitrary code on the system, caused by a type confusion flaw. By persuading a victim to open a specially crafted IGS file, an attacker could exploit this vulnerability to execute arbitrary code in the context of the current process.
CVE-2024-27944 CVSS:7.2
Siemens RUGGEDCOM CROSSBOW could allow a remote authenticated attacker to bypass security restrictions, caused by improper access control. By replacing specific files, an attacker could exploit this vulnerability to tamper specific files or execute arbitrary code on the system
CVE-2024-27939 CVSS:9.8
Siemens RUGGEDCOM CROSSBOW could allow a remote attacker to upload arbitrary files, caused by the improper validation of file extensions. By sending a specially crafted HTTP request, a remote attacker could exploit this vulnerability to upload a malicious file, which could allow the attacker to execute arbitrary code with system privileges.
Impact
- Gain Access
- Security Bypass
- Buffer Overflow
- Code Execution
- Information Disclosure
Indicators of Compromise
CVE
- CVE-2024-31486
- CVE-2024-32636
- CVE-2024-33647
- CVE-2024-33493
- CVE-2024-32062
- CVE-2024-32060
- CVE-2024-27945
- CVE-2024-27946
- CVE-2024-32063
- CVE-2024-34772
- CVE-2024-33490
- CVE-2024-27943
- CVE-2024-31484
- CVE-2024-34773
- CVE-2024-34086
- CVE-2024-32065
- CVE-2024-32066
- CVE-2024-32064
- CVE-2024-32057
- CVE-2024-27944
- CVE-2024-27939
Affected Vendors
Siemens
Affected Products
- Siemens PS/IGES Parasolid Translator Component 27.1
- Siemens Solid Edge 0
- Siemens Parasolid V35.1 0
- Siemens Parasolid V36.0 0
- Siemens Parasolid V36.1 0
- Siemens RUGGEDCOM CROSSBOW 5.4
- Siemens JT2Go 0
- Siemens Teamcenter Visualization V14.1 0
- Siemens Teamcenter Visualization V14.2 0
- Siemens Teamcenter Visualization V14.3 0
- Siemens Teamcenter Visualization V2312 0
- Siemens CPCI85 Central Processing/Communication 5.20
- Siemens OPUPI0 AMQP/MQTT 5.20
- Siemens Polarion ALM 0
- Siemens CPC80 Central Processing/Communication 16.40
Remediation
Refer to Siemens Security Advisory for patch, upgrade or suggested workaround information.