CVE-2024-41978

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Aug 13, 2024

Updated: Aug 23, 2024

CWE ID 532

Summary

CVE-2024-41978 is a vulnerability affecting multiple RUGGEDCOM and SCALANCE router models, including RM1224 LTE, SCALANCE M804PB, M812-1, M816-1, M826-2, M874-2, M874-3, M876-3, M876-4, MUM853-1, MUM856-1, and S615. These devices log sensitive information related to the generation of 2FA tokens, making it possible for authenticated remote attackers to forge 2FA tokens of other users. Affected devices include all versions prior to V8.1.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Siemens AG

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/xOrZYq
https://www.cve.org/CVERecord?id=CVE-2024-41978
https://nvd.nist.gov/vuln/detail/CVE-2024-41978

Back to Vulnerability Database

CVE-2024-41978

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations