CVE-2024-45032
published 2024-09-10CVE-2024-45032: A vulnerability has been identified in Industrial Edge Management Pro (All versions < V1.9.5), Industrial Edge Management Virtual (All versions < V2.3.1-1)…
PriorityP268critical10CVSS 3.1
AVNACLPRNUINSCCHIHAH
EPSS
0.76%
50.8th percentile
A vulnerability has been identified in Industrial Edge Management Pro (All versions < V1.9.5), Industrial Edge Management Virtual (All versions < V2.3.1-1). Affected components do not properly validate the device tokens. This could allow an unauthenticated remote attacker to impersonate other devices onboarded to the system.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| siemens | industrial_edge_management_pro | < V1.9.5 | V1.9.5 |
| siemens | industrial_edge_management_virtual | < V2.3.1-1 | V2.3.1-1 |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect unauthenticated remote requests attempting to use or manipulate device tokens in Industrial Edge Management, which may indicate device impersonation attempts exploiting improper token validation (CWE-639: Authorization Bypass Through User-Controlled Key). ↗
- ·No known public exploitation has been reported at time of advisory publication; detection efforts should focus on anomalous device token usage rather than known malicious indicators. ↗
- ·The vulnerability is network-exploitable with no authentication or user interaction required (CVSS v4 10.0), meaning any network-accessible IEM instance on an unpatched version should be treated as at-risk. ↗
CVSS provenance
nvdv3.110.0CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
nvdv4.010.0CRITICALCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-j3c4-46v5-v349: A vulnerability has been identified in Industrial Edge Management Pro (All versions < V1
ghsa_unreviewed·2024-09-10
CVE-2024-45032 [CRITICAL] CWE-639 GHSA-j3c4-46v5-v349: A vulnerability has been identified in Industrial Edge Management Pro (All versions < V1
A vulnerability has been identified in Industrial Edge Management Pro (All versions < V1.9.5), Industrial Edge Management Virtual (All versions < V2.3.1-1). Affected components do not properly validate the device tokens. This could allow an unauthenticated remote attacker to impersonate other devices onboarded to the system.
CISA ICS
Siemens Industrial Edge Management
cisa_ics·2024-09-12·CVSS 10.0
[CRITICAL] Siemens Industrial Edge Management
ICS Advisory
##
Siemens Industrial Edge Management
Release DateSeptember 12, 2024
Alert CodeICSA-24-256-11
Related topics:
Industrial Control System Vulnerabilities, Industrial Control Systems
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories (CERT Services | Services | Siemens Global).
View CSAF
## 1. EXECUTIVE SUMMARY
- CVSS v4 10.0
- ATTENTION: Exploitable remotely/low attack complexity
- Vendor: Siemens
- Equipment: Industrial Edge Management
- Vulnerability: Authorization Bypass Through User-Controlled Key
## 2. RISK EVALUATION
Suc
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-09-10
Published