CVE-2024-30191 — Authentication Bypass by Spoofing in Siemens Scalance W1748-1 M12

CWE-290 — Authentication Bypass by Spoofing3 documents3 sources

Severity

8.4HIGHNVD

EPSS

0.1%

top 75.25%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Scalance W1748-1 M12 Siemens Scalance W1788-1 M12 Siemens Scalance W1788-2 EEC M12 +27 more

Timeline

PublishedApr 9

Description

A vulnerability has been identified in SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0), SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0), SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0), SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0), SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0), SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0), SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0), SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0), SCALANCE W722-1 RJ45 (6GK…

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:HExploitability: 1.7 | Impact: 6.0

Affected Packages30 packages

▶CVEListV5siemens/scalance_w786-1_rj45< *

▶CVEListV5siemens/scalance_w786-2_rj45< *

▶CVEListV5siemens/scalance_w786-2ia_rj45< *

▶CVEListV5siemens/scalance_w774-1_rj45< *

▶CVEListV5siemens/scalance_w734-1_rj45< *

🔴Vulnerability Details

GHSA

GHSA-r4cp-3jcm-fv88: A vulnerability has been identified in SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0), SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0), SCALANCE W1788-1 M12 (6GK↗2024-04-09

▶

CVEList

CVE-2024-30191: A vulnerability has been identified in SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0), SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0), SCALANCE W1788-1 M12 (6GK↗2024-04-09

▶