ICS: Multiple Siemens Products Vulnerabilities

Severity

High

Analysis Summary

CVE-2024-50572 CVSS:7.2

Siemens SCALANCE M-800 family could allow a remote authenticated attacker to execute arbitrary code on the system, caused by improper input validation. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code or spawn a system root shell.

CVE-2024-50557 CVSS:7.2

Siemens SCALANCE M-800 family could allow a remote authenticated attacker to execute arbitrary code on the system, caused by improper validation of configuration fields in the iperf function. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.

CVE-2024-50313 CVSS:6.9

Siemens Mendix Runtime could allow a remote attacker to bypass security restrictions, caused by a race condition vulnerability. By sending a specially crafted request, an attacker could exploit this vulnerability to circumvent default account lockout measures.

CVE-2024-50310 CVSS:8.7

Siemens SIMATIC CP 1543-1 could allow a remote attacker to obtain sensitive information, caused by an Incorrect Authorization vulnerability. By sending a specially crafted request, an attacker could exploit this vulnerability to gain access to the filesystem.

CVE-2024-47940 CVSS:7.8

Siemens Solid Edge could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds read. By persuading a victim to open a specially-crafted PSM file, an attacker could exploit this vulnerability to execute arbitrary code on the system.

CVE-2024-46890 CVSS:9.4

Siemens SINEC INS could allow a remote authenticated attacker to execute arbitrary commands on the system, caused by a flaw in web API. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary commands on the system.

CVE-2024-46891 CVSS:6.9

Siemens SINEC INS is vulnerable to a denial of service, caused by failing to restrict the size of generated log files. By sending a specially crafted request, a remote attacker could exploit this vulnerability to exhaust the system's resources and create a denial of service condition.

CVE-2024-44102 CVSS:10

Siemens TeleControl Server Basic could allow a remote attacker to execute arbitrary code on the system, caused by a deserialization vulnerability. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.

CVE-2024-32736 CVSS:7

Siemens Engineering Platforms could allow a local authenticated attacker to execute arbitrary code on the system, caused by a deserialization flaw. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary code on the system.

CVE-2024-47783 CVSS:8.5

Siemens SIPORT could allow a local authenticated attacker to gain elevated privileges on the system. By sending a specially crafted request, an attacker could exploit this vulnerability to override or modify the service executable and subsequently gain elevated privileges.

CVE-2024-47941 CVSS:7.8

Siemens Solid Edge could allow a remote attacker to execute arbitrary code on the system, caused by an out-of-bounds read. By persuading a victim to open a specially-crafted PAR file, an attacker could exploit this vulnerability to execute arbitrary code on the system.

Impact