CVE-2024-30189 — Authentication Bypass by Spoofing in Siemens Scalance W721-1 Rj45

CWE-290 — Authentication Bypass by Spoofing3 documents3 sources

Severity

6.1MEDIUMNVD

EPSS

0.1%

top 74.43%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Scalance W721-1 Rj45 Siemens Scalance W722-1 Rj45 Siemens Scalance W734-1 Rj45 +17 more

Timeline

PublishedApr 9

Description

A vulnerability has been identified in SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0) (All versions), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0) (All versions), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6) (All versions), SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0) (All versions…

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:NExploitability: 1.7 | Impact: 4.0

Affected Packages20 packages

▶CVEListV5siemens/scalance_w774-1_rj45< *

▶CVEListV5siemens/scalance_w786-1_rj45< *

▶CVEListV5siemens/scalance_w786-2_rj45< *

▶CVEListV5siemens/scalance_w786-2ia_rj45< *

▶CVEListV5siemens/scalance_w734-1_rj45< *

🔴Vulnerability Details

GHSA

GHSA-6qcj-8j88-4gxg: A vulnerability has been identified in SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0) (All versions), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0) (All versio↗2024-04-09

▶

CVEList

CVE-2024-30189: A vulnerability has been identified in SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0) (All versions), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0) (All versio↗2024-04-09

▶