Detections
Analytics
Siemens SINEC NMS TFTP File Upload (CVE-2024-23811)
high Nessus Plugin ID 193685
Synopsis
An OT application is affected by a file upload vulnerability.Description
The Siemens SINEC NMS running on the remote host is affected by a file upload vulnerability. An unauthenticated, remote attacker can exploit this, via a specially crafted TFTP message, to upload malicious files that could potentially lead to remote code execution.Solution
Upgrade to V2.0 SP1 or later.See Also
https://cert-portal.siemens.com/productcert/html/ssa-943925.html
Plugin Details
Severity: High
ID: 193685
File Name: siemens_sinecnms_cve-2024-23811.nbin
Version: 1.1
Type: remote
Family: SCADA
Published: 4/22/2024
Updated: 4/23/2024
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: High
Base Score: 8.3
Temporal Score: 6.5
Vector: CVSS2#AV:A/AC:L/Au:N/C:C/I:C/A:C
CVSS Score Source: CVE-2024-23811
CVSS v3
Risk Factor: High
Base Score: 8.8
Temporal Score: 7.9
Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:siemens:sinec_nms
Required KB Items: Services/udp/tftp
Exploit Available: true
Exploit Ease: Exploits are available
Exploited by Nessus: true
Patch Publication Date: 2/13/2024
Vulnerability Publication Date: 2/13/2024
Reference Information
CVE: CVE-2024-23811