cvelistv5 - CVE-2023-24980

CVE-2023-24980 (GCVE-0-2023-24980)

Vulnerability from cvelistv5

Published

2023-02-14 10:36

Modified

2025-03-19 19:23

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

CWE

CWE-787 - Out-of-bounds Write

Summary

References

URL

	Vendor	Product	Version
	Siemens	Tecnomatix Plant Simulation	Version: All versions < V2201.0006

CERTFR-2023-AVI-0121

Vulnerability from certfr_avis

De multiples vulnérabilités ont été corrigées dans les produits Siemens. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Siemens	N/A	JT Utilities versions antérieures à V13.2.3.0
Siemens	N/A	Parasolid V35.0 versions antérieures à V35.0.170
Siemens	N/A	TIA Project-Server versions antérieures à V1.1
Siemens	N/A	COMOS V10.3.3.4 versions antérieures à V10.3.3.4.6
Siemens	N/A	SCALANCE X204IRT (6GK5204-0BA00-2BA3) versions antérieures à V5.5.0
Siemens	N/A	Parasolid V34.1 versions antérieures à V34.1.242
Siemens	N/A	TIA Multiuser Server V16 toutes les versions
Siemens	N/A	COMOS V10.2 toutes les versions
Siemens	N/A	Simcenter Femap versions antérieures à V2023.1
Siemens	N/A	Applications utilisant Mendix versions 9 (V9.12) antérieures à V9.12.10
Siemens	N/A	Parasolid V35.1 versions antérieures à V35.1.150
Siemens	N/A	COMOS V10.3.3.3 versions antérieures à V10.3.3.3.9
Siemens	N/A	SCALANCE XF204IRT (6GK5204-0BA00-2BF2) versions antérieures à V5.5.0
Siemens	N/A	Brownfield Connectivity - Client versions antérieures à V2.15
Siemens	N/A	COMOS V10.4.2.0 versions antérieures à V10.4.2.0.25
Siemens	N/A	TIA Multiuser Server V14 toutes les versions
Siemens	N/A	COMOS V10.3.3.1 versions antérieures à V10.3.3.1.45
Siemens	N/A	Parasolid V34.0 versions antérieures à V34.0.254
Siemens	N/A	SiPass integrated AC5102 (ACC-G2) versions antérieures à V2.85.44
Siemens	N/A	Solid Edge SE2023 versions antérieures à V2023Update2
Siemens	N/A	SiPass integrated ACC-AP versions antérieures à V2.85.43
Siemens	N/A	SCALANCE XF204-2BA IRT (6GK5204-2AA00-2BD2) versions antérieures à V5.5.0
Siemens	N/A	COMOS V10.4.0.0 versions antérieures à V10.4.0.0.31
Siemens	N/A	Applications utilisant Mendix versions 7 antérieures à V7.23.34
Siemens	N/A	Applications utilisant Mendix versions 9 (V9.18) antérieures à V9.18.4
Siemens	N/A	SCALANCE X202-2P IRT PRO (6GK5202-2JR00-2BA6) versions antérieures à V5.5.0
Siemens	N/A	SCALANCE X204IRT PRO (6GK5204-0JA00-2BA6) versions antérieures à V5.5.0
Siemens	N/A	SIPLUS NET SCALANCE X202-2P IRT (6AG1202-2BH00-2BA3) versions antérieures à V5.5.0
Siemens	N/A	SCALANCE XF201-3P IRT (6GK5201-3BH00-2BD2) versions antérieures à V5.5.0
Siemens	N/A	TIA Multiuser Server V15 versions antérieures à V15.1 Update 8
Siemens	N/A	SCALANCE X201-3P IRT PRO (6GK5201-3JR00-2BA6) versions antérieures à V5.5.0
Siemens	N/A	SCALANCE X202-2IRT (6GK5202-2BB00-2BA3) versions antérieures à V5.5.0
Siemens	N/A	Applications utilisant Mendix versions 8 antérieures à V8.18.23
Siemens	N/A	Famille de produits SIMATIC Field PG, SIMATIC IPC et SIMATIC ITP toutes les versions
Siemens	N/A	SCALANCE X200-4P IRT (6GK5200-4AH00-2BA3) versions antérieures à V5.5.0
Siemens	N/A	Brownfield Connectivity - Gateway versions antérieures à V1.11
Siemens	N/A	SCALANCE X201-3P IRT (6GK5201-3BH00-2BA3) versions antérieures à V5.5.0
Siemens	N/A	TIA Multiuser Server V17 toutes les versions
Siemens	N/A	Famille de produits RUGGEDCOM APE1808 toutes les versions
Siemens	N/A	SCALANCE X202-2P IRT (6GK5202-2BH00-2BA3) versions antérieures à V5.5.0
Siemens	N/A	Applications utilisant Mendix versions 9 (V9.6) antérieures à V9.6.15
Siemens	N/A	COMOS V10.4.1.0 versions antérieures à V10.4.1.0.32
Siemens	N/A	SCALANCE XF202-2P IRT (6GK5202-2BH00-2BD2) versions antérieures à V5.5.0
Siemens	N/A	COMOS V10.3.3.2 versions antérieures à V10.3.3.2.33
Siemens	N/A	Tecnomatix Plant Simulation versions antérieures à V2201.0006
Siemens	N/A	JT Open versions antérieures à V11.2.3.0
Siemens	N/A	Applications utilisant Mendix versions 9 antérieures à V9.22.0

References

Title

Publication Time

Tags

Bulletin de sécurité [SCADA] Siemens SSA-847261 du 14 février 2023	None	vendor-advisory
Bulletin de sécurité [SCADA] Siemens SSA-693110 du 14 février 2023	None	vendor-advisory
Bulletin de sécurité [SCADA] Siemens SSA-953464 du 14 février 2023	None	vendor-advisory
Bulletin de sécurité [SCADA] Siemens SSA-744259 du 14 février 2023	None	vendor-advisory
Bulletin de sécurité [SCADA] Siemens SSA-617755 du 14 février 2023	None	vendor-advisory
Bulletin de sécurité [SCADA] Siemens SSA-658793 du 14 février 2023	None	vendor-advisory
Bulletin de sécurité [SCADA] Siemens SSA-450613 du 14 février 2023	None	vendor-advisory
Bulletin de sécurité [SCADA] Siemens SSA-491245 du 14 février 2023	None	vendor-advisory
Bulletin de sécurité [SCADA] Siemens SSA-686975 du 14 février 2023	None	vendor-advisory
Bulletin de sécurité [SCADA] Siemens SSA-836777 du 14 février 2023	None	vendor-advisory
Bulletin de sécurité [SCADA] Siemens SSA-565356 du 14 février 2023	None	vendor-advisory
Bulletin de sécurité [SCADA] Siemens SSA-252808 du 14 février 2023	None	vendor-advisory
Bulletin de sécurité [SCADA] Siemens SSA-640968 du 14 février 2023	None	vendor-advisory
Bulletin de sécurité [SCADA] Siemens du 14 février 2023	-	other
Bulletin de sécurité [SCADA] Siemens du 14 février 2023	-	other
Bulletin de sécurité [SCADA] Siemens du 14 février 2023	-	other
Bulletin de sécurité [SCADA] Siemens du 14 février 2023	-	other
Bulletin de sécurité [SCADA] Siemens du 14 février 2023	-	other
Bulletin de sécurité [SCADA] Siemens du 14 février 2023	-	other
Bulletin de sécurité [SCADA] Siemens du 14 février 2023	-	other
Bulletin de sécurité [SCADA] Siemens du 14 février 2023	-	other
Bulletin de sécurité [SCADA] Siemens du 14 février 2023	-	other
Bulletin de sécurité [SCADA] Siemens du 14 février 2023	-	other
Bulletin de sécurité [SCADA] Siemens du 14 février 2023	-	other
Bulletin de sécurité [SCADA] Siemens du 14 février 2023	-	other
Bulletin de sécurité [SCADA] Siemens du 14 février 2023	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "JT Utilities versions ant\u00e9rieures \u00e0 V13.2.3.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Parasolid V35.0 versions ant\u00e9rieures \u00e0 V35.0.170",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Project-Server versions ant\u00e9rieures \u00e0 V1.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "COMOS V10.3.3.4 versions ant\u00e9rieures \u00e0 V10.3.3.4.6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204IRT (6GK5204-0BA00-2BA3) versions ant\u00e9rieures \u00e0 V5.5.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Parasolid V34.1 versions ant\u00e9rieures \u00e0 V34.1.242",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Multiuser Server V16 toutes les versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "COMOS V10.2 toutes les versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Simcenter Femap versions ant\u00e9rieures \u00e0 V2023.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Applications utilisant Mendix versions 9 (V9.12) ant\u00e9rieures \u00e0 V9.12.10",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Parasolid V35.1 versions ant\u00e9rieures \u00e0 V35.1.150",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "COMOS V10.3.3.3 versions ant\u00e9rieures \u00e0 V10.3.3.3.9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF204IRT (6GK5204-0BA00-2BF2) versions ant\u00e9rieures \u00e0 V5.5.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Brownfield Connectivity - Client versions ant\u00e9rieures \u00e0 V2.15",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "COMOS V10.4.2.0 versions ant\u00e9rieures \u00e0 V10.4.2.0.25",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Multiuser Server V14 toutes les versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "COMOS V10.3.3.1 versions ant\u00e9rieures \u00e0 V10.3.3.1.45",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Parasolid V34.0 versions ant\u00e9rieures \u00e0 V34.0.254",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SiPass integrated AC5102 (ACC-G2) versions ant\u00e9rieures \u00e0 V2.85.44",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Solid Edge SE2023 versions ant\u00e9rieures \u00e0 V2023Update2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SiPass integrated ACC-AP versions ant\u00e9rieures \u00e0 V2.85.43",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF204-2BA IRT (6GK5204-2AA00-2BD2) versions ant\u00e9rieures \u00e0 V5.5.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "COMOS V10.4.0.0 versions ant\u00e9rieures \u00e0 V10.4.0.0.31",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Applications utilisant Mendix versions 7 ant\u00e9rieures \u00e0 V7.23.34",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Applications utilisant Mendix versions 9 (V9.18) ant\u00e9rieures \u00e0 V9.18.4",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X202-2P IRT PRO (6GK5202-2JR00-2BA6) versions ant\u00e9rieures \u00e0 V5.5.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X204IRT PRO (6GK5204-0JA00-2BA6) versions ant\u00e9rieures \u00e0 V5.5.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SIPLUS NET SCALANCE X202-2P IRT (6AG1202-2BH00-2BA3) versions ant\u00e9rieures \u00e0 V5.5.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF201-3P IRT (6GK5201-3BH00-2BD2) versions ant\u00e9rieures \u00e0 V5.5.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Multiuser Server V15 versions ant\u00e9rieures \u00e0 V15.1 Update 8",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X201-3P IRT PRO (6GK5201-3JR00-2BA6) versions ant\u00e9rieures \u00e0 V5.5.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X202-2IRT (6GK5202-2BB00-2BA3) versions ant\u00e9rieures \u00e0 V5.5.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Applications utilisant Mendix versions 8 ant\u00e9rieures \u00e0 V8.18.23",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Famille de produits SIMATIC Field PG, SIMATIC IPC et SIMATIC ITP toutes les versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X200-4P IRT (6GK5200-4AH00-2BA3) versions ant\u00e9rieures \u00e0 V5.5.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Brownfield Connectivity - Gateway versions ant\u00e9rieures \u00e0 V1.11",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X201-3P IRT (6GK5201-3BH00-2BA3) versions ant\u00e9rieures \u00e0 V5.5.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "TIA Multiuser Server V17 toutes les versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Famille de produits RUGGEDCOM APE1808 toutes les versions",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE X202-2P IRT (6GK5202-2BH00-2BA3) versions ant\u00e9rieures \u00e0 V5.5.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Applications utilisant Mendix versions 9 (V9.6) ant\u00e9rieures \u00e0 V9.6.15",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "COMOS V10.4.1.0 versions ant\u00e9rieures \u00e0 V10.4.1.0.32",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "SCALANCE XF202-2P IRT (6GK5202-2BH00-2BD2) versions ant\u00e9rieures \u00e0 V5.5.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "COMOS V10.3.3.2 versions ant\u00e9rieures \u00e0 V10.3.3.2.33",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Tecnomatix Plant Simulation versions ant\u00e9rieures \u00e0 V2201.0006",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "JT Open versions ant\u00e9rieures \u00e0 V11.2.3.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Applications utilisant Mendix versions 9 ant\u00e9rieures \u00e0 V9.22.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2023-24556",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24556"
    },
    {
      "name": "CVE-2022-1343",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-1343"
    },
    {
      "name": "CVE-2022-1473",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-1473"
    },
    {
      "name": "CVE-2023-24990",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24990"
    },
    {
      "name": "CVE-2022-39157",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-39157"
    },
    {
      "name": "CVE-2022-46345",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-46345"
    },
    {
      "name": "CVE-2023-22669",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-22669"
    },
    {
      "name": "CVE-2023-24549",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24549"
    },
    {
      "name": "CVE-2023-24560",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24560"
    },
    {
      "name": "CVE-2022-31808",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-31808"
    },
    {
      "name": "CVE-2022-46347",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-46347"
    },
    {
      "name": "CVE-2022-27536",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-27536"
    },
    {
      "name": "CVE-2022-46349",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-46349"
    },
    {
      "name": "CVE-2022-24921",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-24921"
    },
    {
      "name": "CVE-2022-28327",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-28327"
    },
    {
      "name": "CVE-2022-1292",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-1292"
    },
    {
      "name": "CVE-2023-24552",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24552"
    },
    {
      "name": "CVE-2021-43391",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-43391"
    },
    {
      "name": "CVE-2023-24980",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24980"
    },
    {
      "name": "CVE-2021-32936",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-32936"
    },
    {
      "name": "CVE-2022-33984",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-33984"
    },
    {
      "name": "CVE-2023-24551",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24551"
    },
    {
      "name": "CVE-2022-46346",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-46346"
    },
    {
      "name": "CVE-2023-24992",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24992"
    },
    {
      "name": "CVE-2022-21198",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-21198"
    },
    {
      "name": "CVE-2007-5846",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-5846"
    },
    {
      "name": "CVE-2022-33906",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-33906"
    },
    {
      "name": "CVE-2023-24562",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24562"
    },
    {
      "name": "CVE-2023-24482",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24482"
    },
    {
      "name": "CVE-2023-24994",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24994"
    },
    {
      "name": "CVE-2021-41771",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-41771"
    },
    {
      "name": "CVE-2022-43397",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-43397"
    },
    {
      "name": "CVE-2023-24561",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24561"
    },
    {
      "name": "CVE-2023-24995",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24995"
    },
    {
      "name": "CVE-2022-30774",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-30774"
    },
    {
      "name": "CVE-2023-24553",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24553"
    },
    {
      "name": "CVE-2023-24984",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24984"
    },
    {
      "name": "CVE-2021-32938",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-32938"
    },
    {
      "name": "CVE-2023-24993",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24993"
    },
    {
      "name": "CVE-2023-24558",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24558"
    },
    {
      "name": "CVE-2022-46348",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-46348"
    },
    {
      "name": "CVE-2023-22295",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-22295"
    },
    {
      "name": "CVE-2021-32948",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-32948"
    },
    {
      "name": "CVE-2022-33982",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-33982"
    },
    {
      "name": "CVE-2023-22846",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-22846"
    },
    {
      "name": "CVE-2023-24983",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24983"
    },
    {
      "name": "CVE-2022-47936",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-47936"
    },
    {
      "name": "CVE-2022-47977",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-47977"
    },
    {
      "name": "CVE-2023-24550",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24550"
    },
    {
      "name": "CVE-2023-24565",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24565"
    },
    {
      "name": "CVE-2023-25140",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-25140"
    },
    {
      "name": "CVE-2023-24988",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24988"
    },
    {
      "name": "CVE-2022-35868",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-35868"
    },
    {
      "name": "CVE-2023-24554",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24554"
    },
    {
      "name": "CVE-2022-33907",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-33907"
    },
    {
      "name": "CVE-2021-43336",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-43336"
    },
    {
      "name": "CVE-2023-24581",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24581"
    },
    {
      "name": "CVE-2023-22321",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-22321"
    },
    {
      "name": "CVE-2022-24675",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-24675"
    },
    {
      "name": "CVE-2023-24557",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24557"
    },
    {
      "name": "CVE-2023-24566",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24566"
    },
    {
      "name": "CVE-2023-24978",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24978"
    },
    {
      "name": "CVE-2023-24555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24555"
    },
    {
      "name": "CVE-2023-24979",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24979"
    },
    {
      "name": "CVE-2023-22354",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-22354"
    },
    {
      "name": "CVE-2021-41772",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-41772"
    },
    {
      "name": "CVE-2023-24987",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24987"
    },
    {
      "name": "CVE-2023-24986",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24986"
    },
    {
      "name": "CVE-2021-44716",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-44716"
    },
    {
      "name": "CVE-2023-23579",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-23579"
    },
    {
      "name": "CVE-2023-24564",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24564"
    },
    {
      "name": "CVE-2023-24982",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24982"
    },
    {
      "name": "CVE-2023-24996",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24996"
    },
    {
      "name": "CVE-2022-31243",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-31243"
    },
    {
      "name": "CVE-2023-24563",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24563"
    },
    {
      "name": "CVE-2023-24985",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24985"
    },
    {
      "name": "CVE-2023-24991",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24991"
    },
    {
      "name": "CVE-2023-24981",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24981"
    },
    {
      "name": "CVE-2021-44717",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-44717"
    },
    {
      "name": "CVE-2022-1434",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-1434"
    },
    {
      "name": "CVE-2022-33908",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-33908"
    },
    {
      "name": "CVE-2023-23835",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-23835"
    },
    {
      "name": "CVE-2023-24559",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24559"
    },
    {
      "name": "CVE-2023-24989",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-24989"
    },
    {
      "name": "CVE-2023-22670",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-22670"
    }
  ],
  "initial_release_date": "2023-02-14T00:00:00",
  "last_revision_date": "2023-02-14T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens du 14 f\u00e9vrier 2023",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-836777.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens du 14 f\u00e9vrier 2023",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-953464.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens du 14 f\u00e9vrier 2023",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-617755.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens du 14 f\u00e9vrier 2023",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-658793.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens du 14 f\u00e9vrier 2023",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-686975.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens du 14 f\u00e9vrier 2023",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-491245.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens du 14 f\u00e9vrier 2023",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-744259.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens du 14 f\u00e9vrier 2023",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-693110.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens du 14 f\u00e9vrier 2023",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-565356.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens du 14 f\u00e9vrier 2023",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-640968.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens du 14 f\u00e9vrier 2023",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens du 14 f\u00e9vrier 2023",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-450613.pdf"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens du 14 f\u00e9vrier 2023",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-252808.pdf"
    }
  ],
  "reference": "CERTFR-2023-AVI-0121",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2023-02-14T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eles produits Siemens\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un\nd\u00e9ni de service \u00e0 distance et un contournement de la politique de\ns\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Siemens",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens SSA-847261 du 14 f\u00e9vrier 2023",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens SSA-693110 du 14 f\u00e9vrier 2023",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens SSA-953464 du 14 f\u00e9vrier 2023",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens SSA-744259 du 14 f\u00e9vrier 2023",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens SSA-617755 du 14 f\u00e9vrier 2023",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens SSA-658793 du 14 f\u00e9vrier 2023",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens SSA-450613 du 14 f\u00e9vrier 2023",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens SSA-491245 du 14 f\u00e9vrier 2023",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens SSA-686975 du 14 f\u00e9vrier 2023",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens SSA-836777 du 14 f\u00e9vrier 2023",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens SSA-565356 du 14 f\u00e9vrier 2023",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens SSA-252808 du 14 f\u00e9vrier 2023",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 [SCADA] Siemens SSA-640968 du 14 f\u00e9vrier 2023",
      "url": null
    }
  ]
}

fkie_cve-2023-24980

Vulnerability from fkie_nvd

Published

2023-02-14 11:15

Modified

2024-11-21 07:48

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	productcert@siemens.com	https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf	Vendor Advisory

Impacted products

	Vendor	Product	Version
	siemens	tecnomatix_plant_simulation	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:siemens:tecnomatix_plant_simulation:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "149B6D61-2362-4E99-944C-54F47658992B",
              "versionEndExcluding": "2201.0006",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability has been identified in Tecnomatix Plant Simulation (All versions \u003c V2201.0006). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-19790)"
    }
  ],
  "id": "CVE-2023-24980",
  "lastModified": "2024-11-21T07:48:52.130",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "productcert@siemens.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2023-02-14T11:15:16.623",
  "references": [
    {
      "source": "productcert@siemens.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf"
    }
  ],
  "sourceIdentifier": "productcert@siemens.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "productcert@siemens.com",
      "type": "Primary"
    }
  ]
}

var-202302-0938

Vulnerability from variot

A vulnerability has been identified in Tecnomatix Plant Simulation (All versions < V2201.0006). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-19790). This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of SPP files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated data structure

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-202302-0938",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "tecnomatix plant simulation",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "siemens",
        "version": "2201.0006"
      },
      {
        "model": "tecnomatix plant simulation",
        "scope": null,
        "trust": 0.7,
        "vendor": "siemens",
        "version": null
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-23-188"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-24980"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Simon Janz (@esj4y)",
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-23-188"
      }
    ],
    "trust": 0.7
  },
  "cve": "CVE-2023-24980",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "author": "nvd@nist.gov",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 1.8,
            "id": "CVE-2023-24980",
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 2.0,
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "author": "ZDI",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 1.8,
            "id": "CVE-2023-24980",
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 0.7,
            "userInteraction": "REQUIRED",
            "vectorString": "AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2023-24980",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "productcert@siemens.com",
            "id": "CVE-2023-24980",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "ZDI",
            "id": "CVE-2023-24980",
            "trust": 0.7,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-202302-1054",
            "trust": 0.6,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-23-188"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202302-1054"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-24980"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-24980"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "A vulnerability has been identified in Tecnomatix Plant Simulation (All versions \u003c V2201.0006). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-19790). This vulnerability allows remote attackers to execute arbitrary code on affected installations of Siemens Tecnomatix Plant Simulation. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file.The specific flaw exists within the parsing of SPP files. The issue results from the lack of proper validation of user-supplied data, which can result in a write past the end of an allocated data structure",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2023-24980"
      },
      {
        "db": "ZDI",
        "id": "ZDI-23-188"
      },
      {
        "db": "VULMON",
        "id": "CVE-2023-24980"
      }
    ],
    "trust": 1.62
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2023-24980",
        "trust": 2.4
      },
      {
        "db": "SIEMENS",
        "id": "SSA-847261",
        "trust": 1.7
      },
      {
        "db": "ZDI_CAN",
        "id": "ZDI-CAN-19790",
        "trust": 0.7
      },
      {
        "db": "ZDI",
        "id": "ZDI-23-188",
        "trust": 0.7
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202302-1054",
        "trust": 0.6
      },
      {
        "db": "VULMON",
        "id": "CVE-2023-24980",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-23-188"
      },
      {
        "db": "VULMON",
        "id": "CVE-2023-24980"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202302-1054"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-24980"
      }
    ]
  },
  "id": "VAR-202302-0938",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VARIoT devices database",
        "id": null
      }
    ],
    "trust": 0.2690208
  },
  "last_update_date": "2024-08-14T12:57:33.461000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "Siemens has issued an update to correct this vulnerability.",
        "trust": 0.7,
        "url": "https://cert-portal.siemens.com/productcert/html/ssa-847261.html"
      },
      {
        "title": "Tecnomatix Plant Simulation Buffer error vulnerability fix",
        "trust": 0.6,
        "url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=226466"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-23-188"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202302-1054"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-787",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2023-24980"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.7,
        "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf"
      },
      {
        "trust": 0.7,
        "url": "https://cert-portal.siemens.com/productcert/html/ssa-847261.html"
      },
      {
        "trust": 0.6,
        "url": "https://cxsecurity.com/cveshow/cve-2023-24980/"
      },
      {
        "trust": 0.1,
        "url": "https://cwe.mitre.org/data/definitions/787.html"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov"
      }
    ],
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-23-188"
      },
      {
        "db": "VULMON",
        "id": "CVE-2023-24980"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202302-1054"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-24980"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "ZDI",
        "id": "ZDI-23-188"
      },
      {
        "db": "VULMON",
        "id": "CVE-2023-24980"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-202302-1054"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-24980"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2023-02-24T00:00:00",
        "db": "ZDI",
        "id": "ZDI-23-188"
      },
      {
        "date": "2023-02-14T00:00:00",
        "db": "VULMON",
        "id": "CVE-2023-24980"
      },
      {
        "date": "2023-02-14T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202302-1054"
      },
      {
        "date": "2023-02-14T11:15:16.623000",
        "db": "NVD",
        "id": "CVE-2023-24980"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2023-02-24T00:00:00",
        "db": "ZDI",
        "id": "ZDI-23-188"
      },
      {
        "date": "2023-02-14T00:00:00",
        "db": "VULMON",
        "id": "CVE-2023-24980"
      },
      {
        "date": "2023-02-23T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-202302-1054"
      },
      {
        "date": "2023-02-22T20:00:23.133000",
        "db": "NVD",
        "id": "CVE-2023-24980"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "local",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-202302-1054"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Siemens Tecnomatix Plant Simulation  SPP File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability",
    "sources": [
      {
        "db": "ZDI",
        "id": "ZDI-23-188"
      }
    ],
    "trust": 0.7
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "buffer error",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-202302-1054"
      }
    ],
    "trust": 0.6
  }
}

cnvd-2023-15418

Vulnerability from cnvd

Title

Siemens Tecnomatix Plant Simulation越界写入漏洞（CNVD-2023-15418）

Description

Siemens Tecnomatix Plant Simulation是面向对象的、图形化的、集成的建模、仿真工具。 Siemens Tecnomatix Plant Simulation存在越界写入漏洞。攻击者可利用该漏洞在当前进程的上下文中执行代码。

Severity

高

Patch Name

Siemens Tecnomatix Plant Simulation越界写入漏洞（CNVD-2023-15418）的补丁

Patch Description

Siemens Tecnomatix Plant Simulation是面向对象的、图形化的、集成的建模、仿真工具。 Siemens Tecnomatix Plant Simulation存在越界写入漏洞。攻击者可利用该漏洞在当前进程的上下文中执行代码。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf

Reference

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24980

Impacted products

Name
SIEMENS Tecnomatix Plant Simulation <2201.0006

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2023-24980",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2023-24980"
    }
  },
  "description": "Siemens Tecnomatix Plant Simulation\u662f\u9762\u5411\u5bf9\u8c61\u7684\u3001\u56fe\u5f62\u5316\u7684\u3001\u96c6\u6210\u7684\u5efa\u6a21\u3001\u4eff\u771f\u5de5\u5177\u3002\n\nSiemens Tecnomatix Plant Simulation\u5b58\u5728\u8d8a\u754c\u5199\u5165\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u5f53\u524d\u8fdb\u7a0b\u7684\u4e0a\u4e0b\u6587\u4e2d\u6267\u884c\u4ee3\u7801\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\nhttps://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2023-15418",
  "openTime": "2023-03-07",
  "patchDescription": "Siemens Tecnomatix Plant Simulation\u662f\u9762\u5411\u5bf9\u8c61\u7684\u3001\u56fe\u5f62\u5316\u7684\u3001\u96c6\u6210\u7684\u5efa\u6a21\u3001\u4eff\u771f\u5de5\u5177\u3002\r\n\r\nSiemens Tecnomatix Plant Simulation\u5b58\u5728\u8d8a\u754c\u5199\u5165\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u5728\u5f53\u524d\u8fdb\u7a0b\u7684\u4e0a\u4e0b\u6587\u4e2d\u6267\u884c\u4ee3\u7801\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Siemens Tecnomatix Plant Simulation\u8d8a\u754c\u5199\u5165\u6f0f\u6d1e\uff08CNVD-2023-15418\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "SIEMENS Tecnomatix Plant Simulation \u003c2201.0006"
  },
  "referenceLink": "http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24980",
  "serverity": "\u9ad8",
  "submitTime": "2023-02-17",
  "title": "Siemens Tecnomatix Plant Simulation\u8d8a\u754c\u5199\u5165\u6f0f\u6d1e\uff08CNVD-2023-15418\uff09"
}

ghsa-g2hh-f779-27g3

Vulnerability from github

Published

2023-02-14 12:30

Modified

2023-02-22 21:30

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-24980"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-787"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2023-02-14T11:15:00Z",
    "severity": "HIGH"
  },
  "details": "A vulnerability has been identified in Tecnomatix Plant Simulation (All versions \u003c V2201.0006). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-19790)",
  "id": "GHSA-g2hh-f779-27g3",
  "modified": "2023-02-22T21:30:39Z",
  "published": "2023-02-14T12:30:26Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24980"
    },
    {
      "type": "WEB",
      "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

gsd-2023-24980

Vulnerability from gsd

Modified

2023-12-13 01:20

Details

Aliases

CVE-2023-24980

Aliases

CVE-2023-24980

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-24980",
    "id": "GSD-2023-24980"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-24980"
      ],
      "details": "A vulnerability has been identified in Tecnomatix Plant Simulation (All versions \u003c V2201.0006). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-19790)",
      "id": "GSD-2023-24980",
      "modified": "2023-12-13T01:20:58.312453Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "productcert@siemens.com",
        "ID": "CVE-2023-24980",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Tecnomatix Plant Simulation",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "All versions \u003c V2201.0006"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Siemens"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A vulnerability has been identified in Tecnomatix Plant Simulation (All versions \u003c V2201.0006). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-19790)"
          }
        ]
      },
      "impact": {
        "cvss": [
          {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "cweId": "CWE-787",
                "lang": "eng",
                "value": "CWE-787: Out-of-bounds Write"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf",
            "refsource": "MISC",
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:siemens:tecnomatix_plant_simulation:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "2201.0006",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "productcert@siemens.com",
          "ID": "CVE-2023-24980"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A vulnerability has been identified in Tecnomatix Plant Simulation (All versions \u003c V2201.0006). The affected application contains an out of bounds write past the end of an allocated buffer while parsing a specially crafted SPP file. This could allow an attacker to execute code in the context of the current process. (ZDI-CAN-19790)"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-787"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-847261.pdf"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 1.8,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2023-02-22T20:00Z",
      "publishedDate": "2023-02-14T11:15Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2023-24980 (GCVE-0-2023-24980)

Vulnerability from cvelistv5

CERTFR-2023-AVI-0121

Vulnerability from certfr_avis

Solution

fkie_cve-2023-24980

Vulnerability from fkie_nvd

var-202302-0938

Vulnerability from variot

cnvd-2023-15418

Vulnerability from cnvd

ghsa-g2hh-f779-27g3

Vulnerability from github

gsd-2023-24980

Vulnerability from gsd

Tags

Sightings

Nomenclature