CVE-2024-30189

EPSS 0.09%
Veröffentlicht 09.04.2024 09:15:24
Zuletzt bearbeitet 21.11.2024 09:11:23
Quelle productcert@siemens.com
Teams Watchlist Login
Unerledigt Login

A vulnerability has been identified in SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0) (All versions), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0) (All versions), SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6) (All versions), SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0) (All versions), SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0) (All versions), SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0) (All versions), SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0) (All versions), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0) (All versions), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0) (All versions), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0) (All versions), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0) (All versions), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0) (All versions), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0) (All versions), SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6) (All versions), SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0) (All versions), SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0) (All versions), SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0) (All versions), SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0) (All versions), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0) (All versions), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0) (All versions), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0) (All versions), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0) (All versions), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0) (All versions), SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0) (All versions), SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0) (All versions), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0) (All versions), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0) (All versions), SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0) (All versions), SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0) (All versions), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0) (All versions), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0) (All versions), SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0) (All versions), SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0) (All versions), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0) (All versions), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0) (All versions), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0) (All versions), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0) (All versions), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0) (All versions), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0) (All versions). This CVE refers to Scenario 1 "Leak frames from the Wi-Fi queue" of CVE-2022-47522.

Affected devices queue frames in order to subsequently change the security context and leak the queued frames. This could allow a physically proximate attacker to intercept (possibly cleartext) target-destined frames.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerSiemens

≫

Produkt SCALANCE W721-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W721-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W722-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W722-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W722-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W734-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W734-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W734-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W734-1 RJ45 (USA)

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W738-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W738-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W748-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W748-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W748-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W748-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W761-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W761-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W774-1 M12 EEC

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W774-1 M12 EEC

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W774-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W774-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W774-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W774-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W774-1 RJ45 (USA)

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W778-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W778-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W778-1 M12 EEC

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W778-1 M12 EEC (USA)

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W786-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W786-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W786-2 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W786-2 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W786-2 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W786-2 SFP

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W786-2 SFP

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W786-2IA RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W786-2IA RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W788-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W788-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W788-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W788-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W788-2 M12

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W788-2 M12

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W788-2 M12 EEC

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W788-2 M12 EEC

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W788-2 M12 EEC

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W788-2 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W788-2 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

HerstellerSiemens

≫

Produkt SCALANCE W788-2 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.09%	0.266

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
productcert@siemens.com	6.1	1.7	4	CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N

CWE-290 Authentication Bypass by Spoofing

This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.

https://cert-portal.siemens.com/productcert/html/ssa-457702.html

https://nvd.nist.gov/vuln/detail/CVE-2024-30189

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-30189

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-30189

EUVD