ID
VAR-202305-0430
CVE
CVE-2023-28832
TITLE
Siemens' 6gk1411-1ac00 firmware and 6gk1411-5ac00 Command injection vulnerability in firmware
Trust: 0.8
DESCRIPTION
A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 (All versions >= V2.0 < V2.1), SIMATIC Cloud Connect 7 CC716 (All versions >= V2.0 < V2.1). The web based management of affected devices does not properly validate user input, making it susceptible to command injection. This could allow an authenticated privileged remote attacker to execute arbitrary code with root privileges. Siemens' 6gk1411-1ac00 firmware and 6gk1411-5ac00 Firmware contains a command injection vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. SIMATIC Cloud Connect 7 is an IoT gateway for connecting programmable logic controllers to cloud services and allows field devices to be interfaced with OPC UA servers as OPC UA clients
Trust: 2.25
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | siemens | model: | 6gk1411-1ac00 | scope: | eq | version: | 2.0 | Trust: 1.0 |
| vendor: | siemens | model: | 6gk1411-5ac00 | scope: | eq | version: | 2.0 | Trust: 1.0 |
| vendor: | シーメンス | model: | 6gk1411-5ac00 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | シーメンス | model: | 6gk1411-1ac00 | scope: | - | version: | - | Trust: 0.8 |
| vendor: | siemens | model: | simatic cloud connect cc716 | scope: | eq | version: | 7>=v2.0,<v2.1 | Trust: 0.6 |
| vendor: | siemens | model: | simatic cloud connect cc712 | scope: | eq | version: | 7>=v2.0,<v2.1 | Trust: 0.6 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-77 | Trust: 1.0 |
| problemtype: | Command injection (CWE-77) [ others ] | Trust: 0.8 |
THREAT TYPE
remote
Trust: 0.6
TYPE
command injection
Trust: 0.6
PATCH
| title: | Patch for Siemens SIMATIC Cloud Connect 7 Command Injection Vulnerability | url: | https://www.cnvd.org.cn/patchInfo/show/424686 | Trust: 0.6 |
| title: | Siemens SIMATIC Cloud Connect Fixes for command injection vulnerabilities | url: | http://123.124.177.30/web/xxk/bdxqById.tag?id=237051 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2023-28832 | Trust: 3.9 |
| db: | SIEMENS | id: | SSA-555292 | Trust: 3.1 |
| db: | JVN | id: | JVNVU98195668 | Trust: 0.8 |
| db: | ICS CERT | id: | ICSA-23-131-04 | Trust: 0.8 |
| db: | JVNDB | id: | JVNDB-2023-009653 | Trust: 0.8 |
| db: | CNVD | id: | CNVD-2023-35774 | Trust: 0.6 |
| db: | CNNVD | id: | CNNVD-202305-650 | Trust: 0.6 |
| db: | VULMON | id: | CVE-2023-28832 | Trust: 0.1 |
REFERENCES
| url: | https://cert-portal.siemens.com/productcert/pdf/ssa-555292.pdf | Trust: 2.5 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2023-28832 | Trust: 1.4 |
| url: | https://jvn.jp/vu/jvnvu98195668/ | Trust: 0.8 |
| url: | https://www.cisa.gov/news-events/ics-advisories/icsa-23-131-04 | Trust: 0.8 |
| url: | https://cert-portal.siemens.com/productcert/html/ssa-555292.html | Trust: 0.6 |
| url: | https://cxsecurity.com/cveshow/cve-2023-28832/ | Trust: 0.6 |
| url: | https://cwe.mitre.org/data/definitions/77.html | Trust: 0.1 |
| url: | https://nvd.nist.gov | Trust: 0.1 |
SOURCES
| db: | CNVD | id: | CNVD-2023-35774 |
| db: | VULMON | id: | CVE-2023-28832 |
| db: | JVNDB | id: | JVNDB-2023-009653 |
| db: | CNNVD | id: | CNNVD-202305-650 |
| db: | NVD | id: | CVE-2023-28832 |
LAST UPDATE DATE
2024-08-14T12:04:34.126000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2023-35774 | date: | 2023-05-10T00:00:00 |
| db: | VULMON | id: | CVE-2023-28832 | date: | 2023-05-09T00:00:00 |
| db: | JVNDB | id: | JVNDB-2023-009653 | date: | 2023-12-06T05:17:00 |
| db: | CNNVD | id: | CNNVD-202305-650 | date: | 2023-05-11T00:00:00 |
| db: | NVD | id: | CVE-2023-28832 | date: | 2023-05-15T18:49:38.067 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2023-35774 | date: | 2023-05-10T00:00:00 |
| db: | VULMON | id: | CVE-2023-28832 | date: | 2023-05-09T00:00:00 |
| db: | JVNDB | id: | JVNDB-2023-009653 | date: | 2023-12-06T00:00:00 |
| db: | CNNVD | id: | CNNVD-202305-650 | date: | 2023-05-09T00:00:00 |
| db: | NVD | id: | CVE-2023-28832 | date: | 2023-05-09T13:15:17.373 |