CVE-2023-36380

2023-10-1011:15:11

CWE-798

[email protected]

web.nvd.nist.gov

cve-2023-36380

ssh

authorized_keys

hard-coded id

debug support

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

9.2

Confidence

High

EPSS

Percentile

9.0%

JSON

A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05.11 (only with activated debug support)), CP-8050 MASTER MODULE (All versions < CPCI85 V05.11 (only with activated debug support)). The affected devices contain a hard-coded ID in the SSH authorized_keys configuration file. An attacker with knowledge of the corresponding private key could login to the device via SSH. Only devices with activated debug support are affected.

Affected configurations

Nvd

Node

siemenscp-8050_firmwareRange<05.11cpci85

AND

siemenscp-8050Match-

Node

siemenscp-8031_firmwareRange<05.11cpci85

AND

siemenscp-8031Match-

VendorProductVersionCPE
siemenscp-8050_firmware*cpe:2.3:o:siemens:cp-8050_firmware:*:*:*:*:cpci85:*:*:*
siemenscp-8050-cpe:2.3:h:siemens:cp-8050:-:*:*:*:*:*:*:*
siemenscp-8031_firmware*cpe:2.3:o:siemens:cp-8031_firmware:*:*:*:*:cpci85:*:*:*
siemenscp-8031-cpe:2.3:h:siemens:cp-8031:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
siemens	cp-8050_firmware	*	cpe:2.3:o:siemens:cp-8050_firmware:::::cpci85:::*
siemens	cp-8050	-	cpe:2.3:h:siemens:cp-8050:-:::::::*
siemens	cp-8031_firmware	*	cpe:2.3:o:siemens:cp-8031_firmware:::::cpci85:::*
siemens	cp-8031	-	cpe:2.3:h:siemens:cp-8031:-:::::::*