CVE-2024-30207Use of Hard-coded Cryptographic Key in Siemens Simatic Rtls Locating Manager

CWE-321Use of Hard-coded Cryptographic Key3 documents3 sources
Severity
10.0CRITICALNVD
EPSS
1.9%
top 16.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Siemens Simatic Rtls Locating Manager
Timeline
PublishedMay 14

Description

A vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA10) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA20) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA30) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA10) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA20) (All versions < V3.0.1.1), SIMATIC RTLS Locating M

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-gfmq-99p2-3jwp: A vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All versions < V32024-05-14
CVEList
CVE-2024-30207: A vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All versions < V32024-05-14
CVE-2024-30207 — Use of Hard-coded Cryptographic Key | cvebase