Lucene search

SiemensCVE-2022-24408

HistoryMar 08, 2022 - 12:15 p.m.

CVE-2022-24408

2022-03-0812:15:11

CWE-269

siemens

web.nvd.nist.gov

vulnerability

sinumerik mc

sinumerik one

privilege escalation

local attackers

system commands

nvd

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

High

EPSS

Percentile

5.1%

JSON

A vulnerability has been identified in SINUMERIK MC (All versions < V1.15 SP1), SINUMERIK ONE (All versions < V6.15 SP1). The sc SUID binary on affected devices provides several commands that are used to execute system commands or modify system files. A specific set of operations using sc could allow local attackers to escalate their privileges to root.

Affected configurations

Nvd

Node

siemenssinumerik_mc_firmwareRange<1.15

siemenssinumerik_mc_firmwareMatch1.15-

AND

siemenssinumerik_mcMatch-

Node

siemenssinumerik_one_firmwareRange<6.15

siemenssinumerik_one_firmwareMatch6.15-

AND

siemenssinumerik_oneMatch-

VendorProductVersionCPE
siemenssinumerik_mc_firmware*cpe:2.3:o:siemens:sinumerik_mc_firmware:*:*:*:*:*:*:*:*
siemenssinumerik_mc_firmware1.15cpe:2.3:o:siemens:sinumerik_mc_firmware:1.15:-:*:*:*:*:*:*
siemenssinumerik_mc-cpe:2.3:h:siemens:sinumerik_mc:-:*:*:*:*:*:*:*
siemenssinumerik_one_firmware*cpe:2.3:o:siemens:sinumerik_one_firmware:*:*:*:*:*:*:*:*
siemenssinumerik_one_firmware6.15cpe:2.3:o:siemens:sinumerik_one_firmware:6.15:-:*:*:*:*:*:*
siemenssinumerik_one-cpe:2.3:h:siemens:sinumerik_one:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
siemens	sinumerik_mc_firmware	*	cpe:2.3:o:siemens:sinumerik_mc_firmware::::::::
siemens	sinumerik_mc_firmware	1.15	cpe:2.3:o:siemens:sinumerik_mc_firmware:1.15:-::::::
siemens	sinumerik_mc	-	cpe:2.3:h:siemens:sinumerik_mc:-:::::::*
siemens	sinumerik_one_firmware	*	cpe:2.3:o:siemens:sinumerik_one_firmware::::::::
siemens	sinumerik_one_firmware	6.15	cpe:2.3:o:siemens:sinumerik_one_firmware:6.15:-::::::
siemens	sinumerik_one	-	cpe:2.3:h:siemens:sinumerik_one:-:::::::*

CNA Affected

[
  {
    "product": "SINUMERIK MC",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V1.15 SP1"
      }
    ]
  },
  {
    "product": "SINUMERIK ONE",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All versions < V6.15 SP1"
      }
    ]
  }
]

References

cert-portal.siemens.com/productcert/pdf/ssa-337210.pdf

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

7.8

Confidence

High

EPSS

Percentile

5.1%

JSON

Related for CVE-2022-24408