← volver
CVE-2023-44319

CVE-2023-44319

CVSS 6.9 MEDIUMEPSS 0.4%CWE-328
En resumen

Estos dispositivos de red industrial utilizan algoritmos de cifrado débil para proteger las comunicaciones, permitiendo que atacantes intercepten o descifren datos sensibles. Afecta routers y puertas de enlace usados en infraestructura crítica, permitiendo potencialmente acceso no autorizado a sistemas industriales.

Detalle técnico

La vulnerabilidad identifica el uso de algoritmos criptográficos insuficientemente fuertes en dispositivos Siemens RUGGEDCOM y SCALANCE (versiones de firmware anteriores a V8.0 y V3.0.0). Un atacante con acceso a la red puede interceptar comunicaciones cifradas y recuperar potencialmente datos en texto plano debido a implementaciones débiles de cifrado; requiere proximidad al tráfico de red pero no requiere autenticación.

Resumen generado y traducido por IA a partir de la descripción oficial.
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.0), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.0), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.0), SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2) (All versions < V8.0), SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2) (All versions < V8.0), SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2) (All versions < V8.0), SCALANCE M816-1 ADSL-Router (6GK5816-1BA00-2AA2) (All versions < V8.0), SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2) (All versions < V8.0), SCALANCE M874-2 (6GK5874-2AA00-2AA2) (All versions < V8.0), SCALANCE M874-3 (6GK5874-3AA00-2AA2) (All versions < V8.0), SCALANCE M876-3 (6GK5876-3AA02-2BA2) (All versions < V8.0), SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2) (All versions < V8.0), SCALANCE M876-4 (6GK5876-4AA10-2BA2) (All versions < V8.0), SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2) (All versions < V8.0), SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2) (All versions < V8.0), SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1) (All versions < V8.0), SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1) (All versions < V8.0), SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1) (All versions < V8.0), SCALANCE S615 EEC LAN-Router (6GK5615-0AA01-2AA2) (All versions < V8.0), SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2) (All versions < V8.0), SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions < V3.0.0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions < V3.0.0), SCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0) (All versions < V3.0.0), SCALANCE WAM763-1 (US) (6GK5763-1AL00-7DB0) (All versions < V3.0.0), SCALANCE WAM766-1 (6GK5766-1GE00-7DA0) (All versions < V3.0.0), SCALANCE WAM766-1 (ME) (6GK5766-1GE00-7DC0) (All versions < V3.0.0), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (6GK5766-1GE00-7TA0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (ME) (6GK5766-1GE00-7TC0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0) (All versions < V3.0.0), SCALANCE WUB762-1 (6GK5762-1AJ00-1AA0) (All versions < V3.0.0), SCALANCE WUB762-1 iFeatures (6GK5762-1AJ00-2AA0) (All versions < V3.0.0), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0) (All versions < V3.0.0), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0) (All versions < V3.0.0), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3AB0) (All versions < V3.0.0), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3DB0) (All versions < V3.0.0), SCALANCE WUM766-1 (6GK5766-1GE00-3DA0) (All versions < V3.0.0), SCALANCE WUM766-1 (ME) (6GK5766-1GE00-3DC0) (All versions < V3.0.0), SCALANCE WUM766-1 (USA) (6GK5766-1GE00-3DB0) (All versions < V3.0.0). Affected devices use a weak checksum algorithm to protect the configuration backup that an administrator can export from the device. This could allow an authenticated attacker with administrative privileges or an attacker that tricks a legitimate administrator to upload a modified configuration file to change the configuration of an affected device.
CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N
Productos afectados
Siemens · RUGGEDCOM RM1224 LTE(4G) EUSiemens · RUGGEDCOM RM1224 LTE(4G) NAMSiemens · SCALANCE M804PBSiemens · SCALANCE M812-1 ADSL-RouterSiemens · SCALANCE M816-1 ADSL-RouterSiemens · SCALANCE M826-2 SHDSL-RouterSiemens · SCALANCE M874-2Siemens · SCALANCE M874-3Siemens · SCALANCE M876-3Siemens · SCALANCE M876-3 (ROK)Siemens · SCALANCE M876-4Siemens · SCALANCE M876-4 (EU)Siemens · SCALANCE M876-4 (NAM)Siemens · SCALANCE MUM853-1 (EU)Siemens · SCALANCE MUM856-1 (EU)Siemens · SCALANCE MUM856-1 (RoW)Siemens · SCALANCE S615 EEC LAN-RouterSiemens · SCALANCE S615 LAN-RouterSiemens · SCALANCE WAB762-1Siemens · SCALANCE WAM763-1Siemens · SCALANCE WAM763-1 (ME)Siemens · SCALANCE WAM763-1 (US)Siemens · SCALANCE WAM766-1Siemens · SCALANCE WAM766-1 EECSiemens · SCALANCE WAM766-1 EEC (ME)Siemens · SCALANCE WAM766-1 EEC (US)Siemens · SCALANCE WAM766-1 (ME)Siemens · SCALANCE WAM766-1 (US)Siemens · SCALANCE WUB762-1Siemens · SCALANCE WUB762-1 iFeaturesSiemens · SCALANCE WUM763-1Siemens · SCALANCE WUM763-1 (US)Siemens · SCALANCE WUM766-1Siemens · SCALANCE WUM766-1 (ME)Siemens · SCALANCE WUM766-1 (USA)

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://cert-portal.siemens.com/productcert/html/ssa-180704.htmlhttps://cert-portal.siemens.com/productcert/html/ssa-602936.htmlhttps://cert-portal.siemens.com/productcert/html/ssa-690517.htmlhttps://cert-portal.siemens.com/productcert/html/ssa-699386.htmlhttps://cert-portal.siemens.com/productcert/pdf/ssa-180704.pdfhttps://cert-portal.siemens.com/productcert/pdf/ssa-699386.pdf