CVE-2024-30189

EPSS 0.09%
Published 09.04.2024 09:15:24
Last modified 21.11.2024 09:11:23
Source productcert@siemens.com
Teams watchlist Login
Open Login

A vulnerability has been identified in SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0) (All versions), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0) (All versions), SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6) (All versions), SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0) (All versions), SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0) (All versions), SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0) (All versions), SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0) (All versions), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0) (All versions), SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0) (All versions), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0) (All versions), SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0) (All versions), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0) (All versions), SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0) (All versions), SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0) (All versions), SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6) (All versions), SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0) (All versions), SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0) (All versions), SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0) (All versions), SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0) (All versions), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0) (All versions), SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0) (All versions), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0) (All versions), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0) (All versions), SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0) (All versions), SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0) (All versions), SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0) (All versions), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0) (All versions), SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0) (All versions), SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0) (All versions), SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0) (All versions), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0) (All versions), SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0) (All versions), SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0) (All versions), SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0) (All versions), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0) (All versions), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0) (All versions), SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0) (All versions), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0) (All versions), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0) (All versions), SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0) (All versions). This CVE refers to Scenario 1 "Leak frames from the Wi-Fi queue" of CVE-2022-47522.

Affected devices queue frames in order to subsequently change the security context and leak the queued frames. This could allow a physically proximate attacker to intercept (possibly cleartext) target-destined frames.

Affected products Warnungen 0 Metrics 2 CWE 1 References 4

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

VendorSiemens

≫

Product SCALANCE W721-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W721-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W722-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W722-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W722-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W734-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W734-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W734-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W734-1 RJ45 (USA)

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W738-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W738-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W748-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W748-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W748-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W748-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W761-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W761-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W774-1 M12 EEC

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W774-1 M12 EEC

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W774-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W774-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W774-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W774-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W774-1 RJ45 (USA)

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W778-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W778-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W778-1 M12 EEC

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W778-1 M12 EEC (USA)

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W786-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W786-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W786-2 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W786-2 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W786-2 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W786-2 SFP

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W786-2 SFP

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W786-2IA RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W786-2IA RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W788-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W788-1 M12

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W788-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W788-1 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W788-2 M12

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W788-2 M12

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W788-2 M12 EEC

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W788-2 M12 EEC

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W788-2 M12 EEC

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W788-2 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W788-2 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

VendorSiemens

≫

Product SCALANCE W788-2 RJ45

Default Statusunknown

Version < *

Version 0

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.09%	0.266

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
productcert@siemens.com	6.1	1.7	4	CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N

CWE-290 Authentication Bypass by Spoofing

This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.

https://cert-portal.siemens.com/productcert/html/ssa-457702.html

https://nvd.nist.gov/vuln/detail/CVE-2024-30189

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-30189

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-30189

EUVD