Details of VAR-202407-0135

ID

VAR-202407-0135

CVE

CVE-2024-39874

TITLE

Siemens' SINEMA Remote Connect Server Vulnerability in improperly limiting excessive authentication attempts in

Trust: 0.8

sources: JVNDB: JVNDB-2024-007643

DESCRIPTION

A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.2 SP1). The affected application does not properly implement brute force protection against user credentials in its Client Communication component. This could allow an attacker to learn user credentials that are vulnerable to brute force attacks. The platform is mainly used for remote access, maintenance, control and diagnosis of underlying networks

Trust: 2.16

sources: NVD: CVE-2024-39874 // JVNDB: JVNDB-2024-007643 // CNVD: CNVD-2024-31247

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2024-31247

AFFECTED PRODUCTS

vendor:	siemens	model:	sinema remote connect server	scope:	lt	version:	3.2	Trust: 1.0
vendor:	siemens	model:	sinema remote connect server	scope:	eq	version:	3.2	Trust: 1.0
vendor:	シーメンス	model:	sinema remote connect server	scope:	-	version:	-	Trust: 0.8
vendor:	シーメンス	model:	sinema remote connect server	scope:	eq	version:	-	Trust: 0.8
vendor:	シーメンス	model:	sinema remote connect server	scope:	eq	version:	3.2	Trust: 0.8
vendor:	siemens	model:	sinema remote connect server sp1	scope:	lt	version:	v3.2	Trust: 0.6

sources: CNVD: CNVD-2024-31247 // JVNDB: JVNDB-2024-007643 // NVD: CVE-2024-39874

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2024-39874
value:	HIGH
Trust: 1.0
productcert@siemens.com:	CVE-2024-39874
value:	HIGH
Trust: 1.0
NVD:	CVE-2024-39874
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2024-31247
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2024-31247
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:C/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2024-39874
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.1
Trust: 2.0
NVD:	CVE-2024-39874
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: CNVD: CNVD-2024-31247 // JVNDB: JVNDB-2024-007643 // NVD: CVE-2024-39874 // NVD: CVE-2024-39874

PROBLEMTYPE DATA

problemtype:	CWE-307	Trust: 1.0
problemtype:	Inappropriate limitation of excessive authentication attempts (CWE-307) [ others ]	Trust: 0.8

sources: JVNDB: JVNDB-2024-007643 // NVD: CVE-2024-39874

PATCH

title:

Patch for Siemens SINEMA Remote Connect Server has an unspecified vulnerability (CNVD-2024-31247)

url:

https://www.cnvd.org.cn/patchInfo/show/567806

Trust: 0.6

sources: CNVD: CNVD-2024-31247

EXTERNAL IDS

db:	NVD	id:	CVE-2024-39874	Trust: 3.2
db:	SIEMENS	id:	SSA-381581	Trust: 2.4
db:	ICS CERT	id:	ICSA-24-193-01	Trust: 0.8
db:	JVN	id:	JVNVU99298639	Trust: 0.8
db:	JVNDB	id:	JVNDB-2024-007643	Trust: 0.8
db:	CNVD	id:	CNVD-2024-31247	Trust: 0.6

sources: CNVD: CNVD-2024-31247 // JVNDB: JVNDB-2024-007643 // NVD: CVE-2024-39874

REFERENCES

url:	https://cert-portal.siemens.com/productcert/html/ssa-381581.html	Trust: 2.4
url:	https://jvn.jp/vu/jvnvu99298639/	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2024-39874	Trust: 0.8
url:	https://www.cisa.gov/news-events/ics-advisories/icsa-24-193-01	Trust: 0.8

sources: CNVD: CNVD-2024-31247 // JVNDB: JVNDB-2024-007643 // NVD: CVE-2024-39874

SOURCES

db:	CNVD	id:	CNVD-2024-31247
db:	JVNDB	id:	JVNDB-2024-007643
db:	NVD	id:	CVE-2024-39874

LAST UPDATE DATE

2024-09-11T22:13:10.334000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2024-31247	date:	2024-07-10T00:00:00
db:	JVNDB	id:	JVNDB-2024-007643	date:	2024-09-10T00:49:00
db:	NVD	id:	CVE-2024-39874	date:	2024-09-09T15:25:33.577

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2024-31247	date:	2024-07-11T00:00:00
db:	JVNDB	id:	JVNDB-2024-007643	date:	2024-09-10T00:00:00
db:	NVD	id:	CVE-2024-39874	date:	2024-07-09T12:15:19.560