Siemens SIMATIC Reader RF610R CMIIT up to 4.1 SNMP improper check or handling of exceptional conditions
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 5.7 | $0-$5k | 0.00 |
Summary
A vulnerability was found in Siemens SIMATIC Reader RF610R CMIIT, SIMATIC Reader RF610R ETSI, SIMATIC Reader RF610R FCC, SIMATIC Reader RF615R CMIIT, SIMATIC Reader RF615R ETSI, SIMATIC Reader RF615R FCC, SIMATIC Reader RF650R ARIB, SIMATIC Reader RF650R CMIIT, SIMATIC Reader RF650R ETSI, SIMATIC Reader RF650R FCC, SIMATIC Reader RF680R ARIB, SIMATIC Reader RF680R CMIIT, SIMATIC Reader RF680R ETSI, SIMATIC Reader RF680R FCC, SIMATIC Reader RF685R ARIB, SIMATIC Reader RF685R CMIIT, SIMATIC Reader RF685R ETSI, SIMATIC Reader RF685R FCC, SIMATIC RF1140R, SIMATIC RF1170R, SIMATIC RF166C, SIMATIC RF185C, SIMATIC RF186C, SIMATIC RF186CI, SIMATIC RF188C, SIMATIC RF188CI and SIMATIC RF360R up to 4.1. It has been classified as problematic. The affected element is an unknown function of the component SNMP Handler. The manipulation leads to improper check or handling of exceptional conditions. This vulnerability is listed as CVE-2024-37992. The attack may be initiated remotely. There is no available exploit. Upgrading the affected component is recommended.
Details
A vulnerability was found in Siemens SIMATIC Reader RF610R CMIIT, SIMATIC Reader RF610R ETSI, SIMATIC Reader RF610R FCC, SIMATIC Reader RF615R CMIIT, SIMATIC Reader RF615R ETSI, SIMATIC Reader RF615R FCC, SIMATIC Reader RF650R ARIB, SIMATIC Reader RF650R CMIIT, SIMATIC Reader RF650R ETSI, SIMATIC Reader RF650R FCC, SIMATIC Reader RF680R ARIB, SIMATIC Reader RF680R CMIIT, SIMATIC Reader RF680R ETSI, SIMATIC Reader RF680R FCC, SIMATIC Reader RF685R ARIB, SIMATIC Reader RF685R CMIIT, SIMATIC Reader RF685R ETSI, SIMATIC Reader RF685R FCC, SIMATIC RF1140R, SIMATIC RF1170R, SIMATIC RF166C, SIMATIC RF185C, SIMATIC RF186C, SIMATIC RF186CI, SIMATIC RF188C, SIMATIC RF188CI and SIMATIC RF360R up to 4.1 and classified as problematic. This issue affects an unknown code block of the component SNMP Handler. The manipulation with an unknown input leads to a improper check or handling of exceptional conditions vulnerability. Using CWE to declare the problem leads to CWE-703. The product does not properly anticipate or handle exceptional conditions that rarely occur during normal operation of the product. Impacted is availability. The summary by CVE is:
A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versions < V4.2), SIMATIC Reader RF615R CMIIT (6GT2811-6CC10-2AA0) (All versions < V4.2), SIMATIC Reader RF615R ETSI (6GT2811-6CC10-0AA0) (All versions < V4.2), SIMATIC Reader RF615R FCC (6GT2811-6CC10-1AA0) (All versions < V4.2), SIMATIC Reader RF650R ARIB (6GT2811-6AB20-4AA0) (All versions < V4.2), SIMATIC Reader RF650R CMIIT (6GT2811-6AB20-2AA0) (All versions < V4.2), SIMATIC Reader RF650R ETSI (6GT2811-6AB20-0AA0) (All versions < V4.2), SIMATIC Reader RF650R FCC (6GT2811-6AB20-1AA0) (All versions < V4.2), SIMATIC Reader RF680R ARIB (6GT2811-6AA10-4AA0) (All versions < V4.2), SIMATIC Reader RF680R CMIIT (6GT2811-6AA10-2AA0) (All versions < V4.2), SIMATIC Reader RF680R ETSI (6GT2811-6AA10-0AA0) (All versions < V4.2), SIMATIC Reader RF680R FCC (6GT2811-6AA10-1AA0) (All versions < V4.2), SIMATIC Reader RF685R ARIB (6GT2811-6CA10-4AA0) (All versions < V4.2), SIMATIC Reader RF685R CMIIT (6GT2811-6CA10-2AA0) (All versions < V4.2), SIMATIC Reader RF685R ETSI (6GT2811-6CA10-0AA0) (All versions < V4.2), SIMATIC Reader RF685R FCC (6GT2811-6CA10-1AA0) (All versions < V4.2), SIMATIC RF1140R (6GT2831-6CB00) (All versions < V1.1), SIMATIC RF1170R (6GT2831-6BB00) (All versions < V1.1), SIMATIC RF166C (6GT2002-0EE20) (All versions < V2.2), SIMATIC RF185C (6GT2002-0JE10) (All versions < V2.2), SIMATIC RF186C (6GT2002-0JE20) (All versions < V2.2), SIMATIC RF186CI (6GT2002-0JE50) (All versions < V2.2), SIMATIC RF188C (6GT2002-0JE40) (All versions < V2.2), SIMATIC RF188CI (6GT2002-0JE60) (All versions < V2.2), SIMATIC RF360R (6GT2801-5BA30) (All versions < V2.2). The affected devices does not properly handle the error in case of exceeding characters while setting SNMP leading to the restart of the application.
The advisory is shared at cert-portal.siemens.com. The identification of this vulnerability is CVE-2024-37992 since 06/11/2024. The exploitation is known to be easy. The attack may be initiated remotely. Additional levels of successful authentication are necessary for exploitation. Neither technical details nor an exploit are publicly available.
Upgrading to version 4.2 eliminates this vulnerability.
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
Product
Type
Vendor
Name
- SIMATIC Reader RF610R CMIIT
- SIMATIC Reader RF610R ETSI
- SIMATIC Reader RF610R FCC
- SIMATIC Reader RF615R CMIIT
- SIMATIC Reader RF615R ETSI
- SIMATIC Reader RF615R FCC
- SIMATIC Reader RF650R ARIB
- SIMATIC Reader RF650R CMIIT
- SIMATIC Reader RF650R ETSI
- SIMATIC Reader RF650R FCC
- SIMATIC Reader RF680R ARIB
- SIMATIC Reader RF680R CMIIT
- SIMATIC Reader RF680R ETSI
- SIMATIC Reader RF680R FCC
- SIMATIC Reader RF685R ARIB
- SIMATIC Reader RF685R CMIIT
- SIMATIC Reader RF685R ETSI
- SIMATIC Reader RF685R FCC
- SIMATIC RF166C
- SIMATIC RF185C
- SIMATIC RF186C
- SIMATIC RF186CI
- SIMATIC RF188C
- SIMATIC RF188CI
- SIMATIC RF360R
- SIMATIC RF1140R
- SIMATIC RF1170R
Version
License
Website
- Vendor: https://www.siemens.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CNA CVSS-B Score: 🔍
CNA CVSS-BT Score: 🔍
CNA Vector: 🔍
CVSSv3
VulDB Meta Base Score: 5.8VulDB Meta Temp Score: 5.7
VulDB Base Score: 4.9
VulDB Temp Score: 4.7
VulDB Vector: 🔍
VulDB Reliability: 🔍
NVD Base Score: 7.5
NVD Vector: 🔍
CNA Base Score: 4.9
CNA Vector (siemens): 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
Exploiting
Class: Improper check or handling of exceptional conditionsCWE: CWE-703
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Upgrade: SIMATIC Reader RF610R CMIIT/SIMATIC Reader RF610R ETSI/SIMATIC Reader RF610R FCC/SIMATIC Reader RF615R CMIIT/SIMATIC Reader RF615R ETSI/SIMATIC Reader RF615R FCC/SIMATIC Reader RF650R ARIB/SIMATIC Reader RF650R CMIIT/SIMATIC Reader RF650R ETSI/SIMATIC Reader RF650R FCC/SIMATIC Reader RF680R ARIB/SIMATIC Reader RF680R CMIIT/SIMATIC Reader RF680R ETSI/SIMATIC Reader RF680R FCC/SIMATIC Reader RF685R ARIB/SIMATIC Reader RF685R CMIIT/SIMATIC Reader RF685R ETSI/SIMATIC Reader RF685R FCC/SIMATIC RF1140R/SIMATIC RF1170R/SIMATIC RF166C/SIMATIC RF185C/SIMATIC RF186C/SIMATIC RF186CI/SIMATIC RF188C/SIMATIC RF188CI/SIMATIC RF360R 4.2
Timeline
06/11/2024 🔍09/10/2024 🔍
09/10/2024 🔍
09/18/2024 🔍
Sources
Vendor: siemens.comAdvisory: ssa-765405
Status: Confirmed
CVE: CVE-2024-37992 (🔍)
GCVE (CVE): GCVE-0-2024-37992
GCVE (VulDB): GCVE-100-276953
Entry
Created: 09/10/2024 14:05Updated: 09/18/2024 17:48
Changes: 09/10/2024 14:05 (77), 09/11/2024 12:58 (1), 09/18/2024 17:48 (11)
Complete: 🔍
Cache ID: 216::103
Several companies clearly confirm that VulDB is the primary source for best vulnerability data.
No comments yet. Languages: en.
Please log in to comment.