Detections
Analytics

Network Mirroring in Siemens RUGGEDCOM Incorrect Provision of Specified Functionality (CVE-2023-24845)

critical Tenable OT Security Plugin ID 504804

Synopsis

The remote OT asset is affected by a vulnerability.

Description

The affected products insufficiently block data from being forwarded over the mirror port into the mirrored network. An attacker could use this behavior to transmit malicious packets to systems in the mirrored network, possibly influencing their configuration and runtime behavior.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

Solution

The following text was originally created by the Cybersecurity and Infrastructure Security Agency (CISA). The original can be found at CISA.gov.

Siemens has released updates for several affected products and recommends updating to the latest versions. Siemens is preparing further updates and recommends specific countermeasures for products where updates are not, or not yet available:

- RUGGEDCOM i800: Update to V4.3.8 or later version
- RUGGEDCOM i800NC: Update to V4.3.8 or later version
- RUGGEDCOM i801: Update to V4.3.8 or later version
- RUGGEDCOM i801NC: Update to V4.3.8 or later version
- RUGGEDCOM i802: Update to V4.3.8 or later version
- RUGGEDCOM i802NC: Update to V4.3.8 or later version
- RUGGEDCOM i803: Update to V4.3.8 or later version
- RUGGEDCOM i803NC: Update to V4.3.8 or later version
- RUGGEDCOM M2100: Update to V4.3.8 or later version
- RUGGEDCOM M2100F: Currently no fix is planned.
- RUGGEDCOM M2100NC: Update to V4.3.8 or later version
- RUGGEDCOM M2200: Update to V4.3.8 or later version
- RUGGEDCOM M2200F: Currently no fix is planned.
- RUGGEDCOM M2200NC: Update to V4.3.8 or later version
- RUGGEDCOM M969: Update to V4.3.8 or later version
- RUGGEDCOM M969F: Currently no fix is planned.
- RUGGEDCOM M969NC: Update to V4.3.8 or later version
- RUGGEDCOM RMC30: Update to V4.3.8 or later version
- RUGGEDCOM RMC30NC: Update to V4.3.8 or later version
- RUGGEDCOM RMC8388 V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RMC8388 V5.X: Currently no fix is available.
- RUGGEDCOM RMC8388NC V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RMC8388NC V5.X: Currently no fix is available.
- RUGGEDCOM RP110: Update to V4.3.8 or later version
- RUGGEDCOM RP110NC: Update to V4.3.8 or later version
- RUGGEDCOM RS1600: Currently no fix is planned.
- RUGGEDCOM RS1600F: Currently no fix is planned.
- RUGGEDCOM RS1600FNC: Currently no fix is planned.
- RUGGEDCOM RS1600NC: Currently no fix is planned.
- RUGGEDCOM RS1600T: Currently no fix is planned.
- RUGGEDCOM RS1600TNC: Currently no fix is planned.
- RUGGEDCOM RS400: Currently no fix is planned.
- RUGGEDCOM RS400F: Currently no fix is planned.
- RUGGEDCOM RS400NC: Currently no fix is planned.
- RUGGEDCOM RS401: Currently no fix is planned.
- RUGGEDCOM RS401NC: Currently no fix is planned.
- RUGGEDCOM RS416: Update to V4.3.8 or later version
- RUGGEDCOM RS416F: Currently no fix is planned.
- RUGGEDCOM RS416NC: Update to V4.3.8 or later version
- RUGGEDCOM RS416NC v2: Currently no fix is available.
- RUGGEDCOM RS416P: Update to V4.3.8 or later version
- RUGGEDCOM RS416PF: Currently no fix is planned.
- RUGGEDCOM RS416PNC: Update to V4.3.8 or later version
- RUGGEDCOM RS416PNC v2: Currently no fix is available.
- RUGGEDCOM RS416Pv2: Currently no fix is available.
- RUGGEDCOM RS416v2: Currently no fix is available.
- RUGGEDCOM RS8000: Currently no fix is planned.
- RUGGEDCOM RS8000A: Currently no fix is planned.
- RUGGEDCOM RS8000ANC: Currently no fix is planned.
- RUGGEDCOM RS8000H: Currently no fix is planned.
- RUGGEDCOM RS8000HNC: Currently no fix is planned.
- RUGGEDCOM RS8000NC: Currently no fix is planned.
- RUGGEDCOM RS8000T: Currently no fix is planned.
- RUGGEDCOM RS8000TNC: Currently no fix is planned.
- RUGGEDCOM RS900: Update to V4.3.8 or later version
- RUGGEDCOM RS900 with switch chip M88E6083: Currently no fix is planned.
- RUGGEDCOM RS900 (32M) V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RS900 (32M) V5.X: Currently no fix is available.
- RUGGEDCOM RS900F: Currently no fix is planned.
- RUGGEDCOM RS900G: Update to V4.3.8 or later version
- RUGGEDCOM RS900G (32M) V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RS900G (32M) V5.X: Currently no fix is available.
- RUGGEDCOM RS900GF: Currently no fix is planned.
- RUGGEDCOM RS900GNC: Update to V4.3.8 or later version
- RUGGEDCOM RS900GNC(32M) V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RS900GNC(32M) V5.X: Currently no fix is available.
- RUGGEDCOM RS900GP: Update to V4.3.8 or later version
- RUGGEDCOM RS900GPF: Currently no fix is planned.
- RUGGEDCOM RS900GPNC: Update to V4.3.8 or later version
- RUGGEDCOM RS900L: Update to V4.3.8 or later version
- RUGGEDCOM RS900L with switch chip M88E6083: Currently no fix is planned.
- RUGGEDCOM RS900LNC: Update to V4.3.8 or later version
- RUGGEDCOM RS900LNC with switch chip M88E6083: Currently no fix is planned.
- RUGGEDCOM RS900M-GETS-C01: Update to V4.3.8 or later version
- RUGGEDCOM RS900M-GETS-XX: Update to V4.3.8 or later version
- RUGGEDCOM RS900M-STND-C01: Update to V4.3.8 or later version
- RUGGEDCOM RS900M-STND-XX: Update to V4.3.8 or later version
- RUGGEDCOM RS900MNC-GETS-C01: Update to V4.3.8 or later version
- RUGGEDCOM RS900MNC-GETS-XX: Update to V4.3.8 or later version
- RUGGEDCOM RS900MNC-STND-XX: Update to V4.3.8 or later version
- RUGGEDCOM RS900MNC-STND-XX-C01: Update to V4.3.8 or later version
- RUGGEDCOM RS900NC: Update to V4.3.8 or later version
- RUGGEDCOM RS900NC with switch chip M88E6083: Currently no fix is planned.
- RUGGEDCOM RS900NC(32M) V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RS900NC(32M) V5.X: Currently no fix is available.
- RUGGEDCOM RS900W: Update to V4.3.8 or later version
- RUGGEDCOM RS910: Update to V4.3.8 or later version
- RUGGEDCOM RS910L: Update to V4.3.8 or later version
- RUGGEDCOM RS910LNC: Update to V4.3.8 or later version
- RUGGEDCOM RS910NC: Update to V4.3.8 or later version
- RUGGEDCOM RS910W: Update to V4.3.8 or later version
- RUGGEDCOM RS920L: Update to V4.3.8 or later version
- RUGGEDCOM RS920LNC: Update to V4.3.8 or later version
- RUGGEDCOM RS920W: Update to V4.3.8 or later version
- RUGGEDCOM RS930L: Update to V4.3.8 or later version
- RUGGEDCOM RS930LNC: Update to V4.3.8 or later version
- RUGGEDCOM RS930W: Update to V4.3.8 or later version
- RUGGEDCOM RS940G: Update to V4.3.8 or later version
- RUGGEDCOM RS940GF: Currently no fix is planned.
- RUGGEDCOM RS940GNC: Update to V4.3.8 or later version
- RUGGEDCOM RS969: Update to V4.3.8 or later version
- RUGGEDCOM RS969NC: Update to V4.3.8 or later version
- RUGGEDCOM RSG2100: Update to V4.3.8 or later version
- RUGGEDCOM RSG2100 (32M) V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RSG2100 (32M) V5.X: Currently no fix is available.
- RUGGEDCOM RSG2100F: Currently no fix is planned.
- RUGGEDCOM RSG2100NC: Update to V4.3.8 or later version
- RUGGEDCOM RSG2100NC (32M) V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RSG2100NC (32M) V5.X: Currently no fix is available.
- RUGGEDCOM RSG2100P: Update to V4.3.8 or later version
- RUGGEDCOM RSG2100PF: Currently no fix is planned.
- RUGGEDCOM RSG2100PNC: Update to V4.3.8 or later version
- RUGGEDCOM RSG2200: Update to V4.3.8 or later version
- RUGGEDCOM RSG2200F: Currently no fix is planned.
- RUGGEDCOM RSG2200NC: Update to V4.3.8 or later version
- RUGGEDCOM RSG2288 V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RSG2288 V5.X: Currently no fix is available.
- RUGGEDCOM RSG2288NC V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RSG2288NC V5.X: Currently no fix is available.
- RUGGEDCOM RSG2300 V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RSG2300 V5.X: Currently no fix is available.
- RUGGEDCOM RSG2300F: Currently no fix is planned.
- RUGGEDCOM RSG2300NC V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RSG2300NC V5.X: Currently no fix is available.
- RUGGEDCOM RSG2300P V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RSG2300P V5.X: Currently no fix is available.
- RUGGEDCOM RSG2300PF: Currently no fix is planned.
- RUGGEDCOM RSG2300PNC V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RSG2300PNC V5.X: Currently no fix is available.
- RUGGEDCOM RSG2488 V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RSG2488 V5.X: Currently no fix is available.
- RUGGEDCOM RSG2488F: Currently no fix is planned.
- RUGGEDCOM RSG2488NC V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RSG2488NC V5.X: Currently no fix is available.
- RUGGEDCOM RSG907R: Currently no fix is available.
- RUGGEDCOM RSG908C: Currently no fix is available.
- RUGGEDCOM RSG909R: Currently no fix is available.
- RUGGEDCOM RSG910C: Currently no fix is available.
- RUGGEDCOM RSG920P V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RSG920P V5.X: Currently no fix is available.
- RUGGEDCOM RSG920PNC V4.X: Update to V4.3.8 or later version
- RUGGEDCOM RSG920PNC V5.X: Currently no fix is available.
- RUGGEDCOM RSL910: Currently no fix is available.
- RUGGEDCOM RSL910NC: Currently no fix is available.
- RUGGEDCOM RST2228: Currently no fix is available.
- RUGGEDCOM RST2228P: Currently no fix is available.
- RUGGEDCOM RST916C: Currently no fix is available.
- RUGGEDCOM RST916P: Currently no fix is available.

Siemens has identified the following specific workarounds and mitigations that customers can apply to reduce the risk:

- Configure ingress filtering to control traffic flow when port mirroring is enabled:
- Enable ingress filtering
- Disable RSTP on the target port(s)
- Disable neighbor discovery protocol on the target port(s)
- Disable LLDP on the target port(s)
- Further details can be found at https://support.industry.siemens.com/cs/ww/en/view/109759351

As a general security measure, Siemens recommends protecting network access to devices with appropriate mechanisms. To operate the devices in a protected IT environment, Siemens recommends configuring the environment according to Siemens' operational guidelines for industrial security and following recommendations in the product manuals.

Additional information on industrial security by Siemens can be found on the Siemens industrial security webpage

For more information see the associated Siemens security advisory SSA-908185 in HTML and CSAF.

See Also

https://cert-portal.siemens.com/productcert/html/ssa-908185.html

https://support.industry.siemens.com/cs/ww/en/view/109824855/

https://support.industry.siemens.com/cs/ww/en/view/109816735/

https://www.cisa.gov/news-events/ics-advisories/icsa-23-222-12

Plugin Details

Severity: Critical

ID: 504804

File Name: tenable_ot_siemens_CVE-2023-24845.nasl

Version: 1.2

Type: remote

Family: Tenable.ot

Published: 11/18/2025

Updated: 2/14/2026

Supported Sensors: Tenable OT Security

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v3

Risk Factor: Critical

Base Score: 9.1

Temporal Score: 8.2

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:siemens:ruggedcom_m969f_firmware, cpe:/o:siemens:ruggedcom_rs416_firmware, cpe:/o:siemens:ruggedcom_rsg2288_firmware:v5, cpe:/o:siemens:ruggedcom_rs940gnc_firmware, cpe:/o:siemens:ruggedcom_m969nc_firmware, cpe:/o:siemens:ruggedcom_rst916p_firmware, cpe:/o:siemens:ruggedcom_rs900gpnc_firmware, cpe:/o:siemens:ruggedcom_rsg2100pnc_%2832m%29_firmware:v4, cpe:/o:siemens:ruggedcom_rs900m-stnd-xx_firmware, cpe:/o:siemens:ruggedcom_rs920w_firmware, cpe:/o:siemens:ruggedcom_rsg907r_firmware, cpe:/o:siemens:ruggedcom_rs900mnc-gets-xx_firmware, cpe:/o:siemens:ruggedcom_rs900nc%2832m%29_firmware:v5, cpe:/o:siemens:ruggedcom_i802_firmware, cpe:/o:siemens:ruggedcom_i803_firmware, cpe:/o:siemens:ruggedcom_rs416pv2_firmware:v5, cpe:/o:siemens:ruggedcom_rs1600tnc_firmware, cpe:/o:siemens:ruggedcom_rs900gnc%2832m%29_firmware:v5, cpe:/o:siemens:ruggedcom_rsg2300f_firmware, cpe:/o:siemens:ruggedcom_rs900mnc-stnd-xx_firmware, cpe:/o:siemens:ruggedcom_m2200_firmware, cpe:/o:siemens:ruggedcom_rs910_firmware, cpe:/o:siemens:ruggedcom_rsg920pnc_firmware:v5, cpe:/o:siemens:ruggedcom_rs900_%2832m%29_firmware:v5, cpe:/o:siemens:ruggedcom_rsg2100p_%2832m%29_firmware:v4, cpe:/o:siemens:ruggedcom_i803nc_firmware, cpe:/o:siemens:ruggedcom_rsg2100nc_firmware, cpe:/o:siemens:ruggedcom_rsg2300pf_firmware, cpe:/o:siemens:ruggedcom_rs900w_firmware, cpe:/o:siemens:ruggedcom_rs416v2_firmware:v5, cpe:/o:siemens:ruggedcom_rs920lnc_firmware, cpe:/o:siemens:ruggedcom_rsg2300_firmware:v4, cpe:/o:siemens:ruggedcom_rsg2488nc_firmware:v5, cpe:/o:siemens:ruggedcom_rs400nc_firmware, cpe:/o:siemens:ruggedcom_rmc30_firmware, cpe:/o:siemens:ruggedcom_rmc8388nc_firmware:v5, cpe:/o:siemens:ruggedcom_rs910lnc_firmware, cpe:/o:siemens:ruggedcom_rsg2288_firmware:v4, cpe:/o:siemens:ruggedcom_rs400f_firmware, cpe:/o:siemens:ruggedcom_rs900nc_firmware:4, cpe:/o:siemens:ruggedcom_rs400_firmware, cpe:/o:siemens:ruggedcom_rsg2288nc_firmware:v4, cpe:/o:siemens:ruggedcom_rsg2100f_firmware, cpe:/o:siemens:ruggedcom_rsg2100nc%2832m%29_firmware:v4, cpe:/o:siemens:ruggedcom_m2100_firmware, cpe:/o:siemens:ruggedcom_rst2228p_firmware, cpe:/o:siemens:ruggedcom_rs900l_firmware, cpe:/o:siemens:ruggedcom_rs416ncv2_firmware:v4, cpe:/o:siemens:ruggedcom_rs8000t_firmware, cpe:/o:siemens:ruggedcom_rst916c_firmware, cpe:/o:siemens:ruggedcom_rs900m-gets-c01_firmware, cpe:/o:siemens:ruggedcom_rsg2100p_%2832m%29_firmware:v5, cpe:/o:siemens:ruggedcom_m2100f_firmware, cpe:/o:siemens:ruggedcom_rsg2100_firmware, cpe:/o:siemens:ruggedcom_rst2228_firmware, cpe:/o:siemens:ruggedcom_rsg2200_firmware, cpe:/o:siemens:ruggedcom_rsg909r_firmware, cpe:/o:siemens:ruggedcom_i801_firmware, cpe:/o:siemens:ruggedcom_rs8000tnc_firmware, cpe:/o:siemens:ruggedcom_rs969_firmware, cpe:/o:siemens:ruggedcom_rs910l_firmware, cpe:/o:siemens:ruggedcom_rs930l_firmware, cpe:/o:siemens:ruggedcom_rsg920p_firmware:v4, cpe:/o:siemens:ruggedcom_rsg2300_firmware:v5, cpe:/o:siemens:ruggedcom_rs8000nc_firmware, cpe:/o:siemens:ruggedcom_rsg2488_firmware:v4, cpe:/o:siemens:ruggedcom_rs416ncv2_firmware:v5, cpe:/o:siemens:ruggedcom_rs900mnc-gets-c01_firmware, cpe:/o:siemens:ruggedcom_rs1600t_firmware, cpe:/o:siemens:ruggedcom_rsg920pnc_firmware:v4, cpe:/o:siemens:ruggedcom_rs8000a_firmware, cpe:/o:siemens:ruggedcom_rs900mnc-stnd-xx-c01_firmware, cpe:/o:siemens:ruggedcom_rsg2488_firmware:v5, cpe:/o:siemens:ruggedcom_rmc8388nc_firmware:v4, cpe:/o:siemens:ruggedcom_rsg2100_%2832m%29_firmware:v5, cpe:/o:siemens:ruggedcom_rs8000h_firmware, cpe:/o:siemens:ruggedcom_rs900m-gets-xx_firmware, cpe:/o:siemens:ruggedcom_i802nc_firmware, cpe:/o:siemens:ruggedcom_i801nc_firmware, cpe:/o:siemens:ruggedcom_rs416pncv2_firmware:v4, cpe:/o:siemens:ruggedcom_rs920l_firmware, cpe:/o:siemens:ruggedcom_rsg2288nc_firmware:v5, cpe:/o:siemens:ruggedcom_rs940g_firmware, cpe:/o:siemens:ruggedcom_rs8000hnc_firmware, cpe:/o:siemens:ruggedcom_m969_firmware, cpe:/o:siemens:ruggedcom_rs900g_firmware, cpe:/o:siemens:ruggedcom_rsg2488nc_firmware:v4, cpe:/o:siemens:ruggedcom_rs900m-stnd-c01_firmware, cpe:/o:siemens:ruggedcom_rs416f_firmware, cpe:/o:siemens:ruggedcom_rsg2300nc_firmware:v5, cpe:/o:siemens:ruggedcom_rs1600nc_firmware, cpe:/o:siemens:ruggedcom_rsg2300pnc_firmware:v4, cpe:/o:siemens:ruggedcom_m2200nc_firmware, cpe:/o:siemens:ruggedcom_rs930w_firmware, cpe:/o:siemens:ruggedcom_rs900gf_firmware, cpe:/o:siemens:ruggedcom_rsg2100p_firmware, cpe:/o:siemens:ruggedcom_rs930lnc_firmware, cpe:/o:siemens:ruggedcom_rs900_firmware:4, cpe:/o:siemens:ruggedcom_rsg2200f_firmware, cpe:/o:siemens:ruggedcom_rmc30nc_firmware, cpe:/o:siemens:ruggedcom_i800nc_firmware, cpe:/o:siemens:ruggedcom_rs900_firmware, cpe:/o:siemens:ruggedcom_m2200f_firmware, cpe:/o:siemens:ruggedcom_rs900_%2832m%29_firmware:v4, cpe:/o:siemens:ruggedcom_rs1600_firmware, cpe:/o:siemens:ruggedcom_rs900lnc_firmware, cpe:/o:siemens:ruggedcom_rsg2100pnc_firmware, cpe:/o:siemens:ruggedcom_rsg920p_firmware:v5, cpe:/o:siemens:ruggedcom_rsg2200nc_firmware, cpe:/o:siemens:ruggedcom_rs900gnc%2832m%29_firmware:v4, cpe:/o:siemens:ruggedcom_rs900gp_firmware, cpe:/o:siemens:ruggedcom_rsg2300nc_firmware:v4, cpe:/o:siemens:ruggedcom_rsg2100nc%2832m%29_firmware:v5, cpe:/o:siemens:ruggedcom_rsg2300pnc_firmware:v5, cpe:/o:siemens:ruggedcom_i800_firmware, cpe:/o:siemens:ruggedcom_rs900g_%2832m%29_firmware:v5, cpe:/o:siemens:ruggedcom_rs401_firmware, cpe:/o:siemens:ruggedcom_rmc8388_firmware:v5, cpe:/o:siemens:ruggedcom_rsg910c_firmware, cpe:/o:siemens:ruggedcom_rsg2100pnc_%2832m%29_firmware:v5, cpe:/o:siemens:ruggedcom_rs900gpf_firmware, cpe:/o:siemens:ruggedcom_rs416pv2_firmware:v4, cpe:/o:siemens:ruggedcom_rs910w_firmware, cpe:/o:siemens:ruggedcom_rsg2300p_firmware:v5, cpe:/o:siemens:ruggedcom_rs940gf_firmware, cpe:/o:siemens:ruggedcom_rs416pncv2_firmware:v5, cpe:/o:siemens:ruggedcom_rs416p_firmware, cpe:/o:siemens:ruggedcom_rsg2300p_firmware:v4, cpe:/o:siemens:ruggedcom_rs910nc_firmware, cpe:/o:siemens:ruggedcom_rs900gnc_firmware, cpe:/o:siemens:ruggedcom_rs416pf_firmware, cpe:/o:siemens:ruggedcom_rs900l_firmware:4, cpe:/o:siemens:ruggedcom_rsg2488f_firmware, cpe:/o:siemens:ruggedcom_rsg908c_firmware, cpe:/o:siemens:ruggedcom_rmc8388_firmware:v4, cpe:/o:siemens:ruggedcom_rsg2100pf_firmware, cpe:/o:siemens:ruggedcom_rsg2100_%2832m%29_firmware:v4, cpe:/o:siemens:ruggedcom_rs900f_firmware, cpe:/o:siemens:ruggedcom_rs8000_firmware, cpe:/o:siemens:ruggedcom_rs900lnc_firmware:4, cpe:/o:siemens:ruggedcom_rs1600fnc_firmware, cpe:/o:siemens:ruggedcom_rs969nc_firmware, cpe:/o:siemens:ruggedcom_rs416v2_firmware:v4, cpe:/o:siemens:ruggedcom_rs8000anc_firmware, cpe:/o:siemens:ruggedcom_m2100nc_firmware, cpe:/o:siemens:ruggedcom_rs900g_%2832m%29_firmware:v4, cpe:/o:siemens:ruggedcom_rs900nc_firmware, cpe:/o:siemens:ruggedcom_rs416nc_firmware, cpe:/o:siemens:ruggedcom_rs401nc_firmware, cpe:/o:siemens:ruggedcom_rs416pnc_firmware, cpe:/o:siemens:ruggedcom_rs1600f_firmware, cpe:/o:siemens:ruggedcom_rs900nc%2832m%29_firmware:v4

Required KB Items: Tenable.ot/Siemens

Exploit Ease: No known exploits are available

Patch Publication Date: 8/8/2023

Vulnerability Publication Date: 8/8/2023

Reference Information

CVE: CVE-2023-24845

CWE: 684