CVE-2023-29128 — Path Traversal in Siemens Simatic Cloud Connect 7 Cc712

CWE-22 — Path Traversal3 documents3 sources

Severity

2.7LOWNVD

CNA3.8

EPSS

0.1%

top 76.47%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Simatic Cloud Connect 7 Cc712 Siemens Simatic Cloud Connect 7 Cc716 Siemens 6gk1411-1ac00 Firmware +1 more

Timeline

PublishedMay 9

Description

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 (All versions >= V2.0 = V2.0 < V2.1). The filename in the upload feature of the web based management of the affected device is susceptible to a path traversal vulnerability. This could allow an authenticated privileged remote attacker to write any file with the extension `.db`.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:NExploitability: 1.2 | Impact: 1.4

Affected Packages4 packages

▶CVEListV5siemens/simatic_cloud_connect_7_cc712All versions >= V2.0 < V2.1

▶CVEListV5siemens/simatic_cloud_connect_7_cc716All versions >= V2.0 < V2.1

▶NVDsiemens/6gk1411-1ac00_firmware2.0

▶NVDsiemens/6gk1411-5ac00_firmware2.0

Patches

Patch: cert-portal.siemens.com ↗Patch: cert-portal.siemens.com ↗

🔴Vulnerability Details

CVEList

CVE-2023-29128: A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 (All versions >= V2↗2023-05-09

▶

GHSA

GHSA-2447-76mr-7735: A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 (All versions >= V2↗2023-05-09

▶