cbcvebase.
CVE-2023-28489
published 2023-04-11

CVE-2023-28489: A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05), CP-8050 MASTER MODULE (All versions < CPCI85 V05). Affected devices…

PriorityP273critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
2.84%
84.9th percentile
A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05), CP-8050 MASTER MODULE (All versions < CPCI85 V05). Affected devices are vulnerable to command injection via the web server port 443/tcp, if the parameter “Remote Operation” is enabled. The parameter is disabled by default. The vulnerability could allow an unauthenticated remote attacker to perform arbitrary code execution on the device.

Affected

4 ranges
VendorProductVersion rangeFixed in
siemenscp-8031_firmware< cpci85_v05cpci85_v05
siemenscp-8031_master_module
siemenscp-8050_firmware< cpci85_v05cpci85_v05
siemenscp-8050_master_module

Detection & IOCsextracted from sources · hover to see the quote

  • Detect and alert on any inbound connections to port 443/TCP and 80/TCP on CP-8031 and CP-8050 MASTER MODULE devices from untrusted/external sources, as exploitation requires no authentication.
  • ·No known public exploits specifically target this vulnerability at time of advisory publication.
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.