April 18, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – Multiple Microsoft Windows Products Vulnerabilities Exploit in the Wild
February 14, 2024Rewterz Threat Advisory – ICS: Mitsubishi Electric MELSEC iQ-R CPU Modules Vulnerability
February 14, 2024Rewterz Threat Advisory – Multiple Microsoft Windows Products Vulnerabilities Exploit in the Wild
February 14, 2024Rewterz Threat Advisory – ICS: Mitsubishi Electric MELSEC iQ-R CPU Modules Vulnerability
February 14, 2024
Severity
High
Analysis Summary
CVE-2024-23812 CVSS: 8.0
Siemens SINEC NMS could allow a remote authenticated attacker within the local network to execute arbitrary commands on the system, caused by an OS command injection vulnerability when creating reports. An attacker could exploit this vulnerability to execute arbitrary commands on the system.
CVE-2024-23810 CVSS: 8.8
Siemens SINEC NMS is vulnerable to SQL injection. A remote attacker within the local network could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database.
CVE-2024-23811 CVSS: 8.8
Siemens SINEC NMS could allow a remote attacker within the local network to upload arbitrary files, caused by improper validation of file extensions. An attacker could exploit this vulnerability to upload a malicious firmware image, which could allow the attacker to execute arbitrary code on the vulnerable system.
Impact
- Gain Access
- Data Manipulation
Indicators Of Compromise
CVE
- CVE-2024-23812
- CVE-2024-23810
- CVE-2024-23811
Affected Vendors
Siemens
Affected Products
- Siemens SINEC NMS 1.0
- Siemens SINEC NMS 1.0 SP1
Remediation
Refer to Siemens Security Advisory for patch, upgrade or suggested workaround information.
