February 17, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Rewterz Threat Advisory – CVE-2022-47508 – SolarWinds Server and Application Monitor Vulnerability
February 17, 2023Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs
February 17, 2023Rewterz Threat Advisory – CVE-2022-47508 – SolarWinds Server and Application Monitor Vulnerability
February 17, 2023Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs
February 17, 2023
Severity
High
Analysis Summary
CVE-2022-31808
Siemens SiPass integrated AC5102, ACC-G2 and ACC-AP devices could allow a local authenticated attacker to gain elevated privileges on the system, caused by improper input on the telnet command line interface. By sending specially-crafted commands, an authenticated attacker could exploit this vulnerability to execute arbitrary commands with root privileges.
Impact
- Privilege Escalation
Indicators Of Compromise
CVE
- CVE-2022-31808
Affected Vendors
Siemens
Affected Products
- Siemens SiPass integrated ACC-AP
- Siemens SiPass integrated AC5200
- Siemens SiPass integrated AC5102
- Siemens SiPass integrated AC5100
Remediation
Refer to Siemens Security Advisory for patch, upgrade or suggested workaround information.