CVE-2023-44317

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Nov 14, 2023

Updated: Aug 13, 2024

CWE ID 349

Summary

CVE-2023-44317 is a vulnerability affecting multiple RUGGEDCOM and SCALANCE routers, including the RM1224 LTE(4G) EU and NAM, SCALANCE M804PB, M812-1 ADSL-Router, M816-1 ADSL-Router, M826-2 SHDSL-Router, M874-2, M874-3, M876-3 (ROK), M876-3 (EU), M876-3 (NAM), M876-4, MUM853-1 (EU), MUM856-1 (EU), MUM856-1 (RoW), S615 EEC LTE-Router, and S615 LAN-Router. These devices do not adequately validate the content of uploaded X509 certificates, potentially enabling attackers with administrative privileges to execute arbitrary code on the affected devices.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Scalance

Affected Vendors

Siemens AG

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/s0txiL
https://www.cve.org/CVERecord?id=CVE-2023-44317
https://nvd.nist.gov/vuln/detail/CVE-2023-44317

Back to Vulnerability Database