Vulnerabilities > CVE-2024-50561 - Unspecified vulnerability in Siemens products

CVSS 6.1 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

LOW

Integrity impact

LOW

Availability impact

NONE

network

low complexity

siemens

NVD

Published: 2024-11-12

Updated: 2025-02-11

Summary

A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.2), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.2), SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2) (All versions < V8.2), SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2) (All versions < V8.2), SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2) (All versions < V8.2), SCALANCE M816-1 ADSL-Router (6GK5816-1BA00-2AA2) (All versions < V8.2), SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2) (All versions < V8.2), SCALANCE M874-2 (6GK5874-2AA00-2AA2) (All versions < V8.2), SCALANCE M874-3 (6GK5874-3AA00-2AA2) (All versions < V8.2), SCALANCE M874-3 3G-Router (CN) (6GK5874-3AA00-2FA2) (All versions < V8.2), SCALANCE M876-3 (6GK5876-3AA02-2BA2) (All versions < V8.2), SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2) (All versions < V8.2), SCALANCE M876-4 (6GK5876-4AA10-2BA2) (All versions < V8.2), SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2) (All versions < V8.2), SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2) (All versions < V8.2), SCALANCE MUM853-1 (A1) (6GK5853-2EA10-2AA1) (All versions < V8.2), SCALANCE MUM853-1 (B1) (6GK5853-2EA10-2BA1) (All versions < V8.2), SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1) (All versions < V8.2), SCALANCE MUM856-1 (A1) (6GK5856-2EA10-3AA1) (All versions < V8.2), SCALANCE MUM856-1 (B1) (6GK5856-2EA10-3BA1) (All versions < V8.2), SCALANCE MUM856-1 (CN) (6GK5856-2EA00-3FA1) (All versions < V8.2), SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1) (All versions < V8.2), SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1) (All versions < V8.2), SCALANCE S615 EEC LAN-Router (6GK5615-0AA01-2AA2) (All versions < V8.2), SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2) (All versions < V8.2), SCALANCE WAB762-1 (6GK5762-1AJ00-6AA0) (All versions < V3.0.0), SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) (All versions < V3.0.0), SCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0) (All versions < V3.0.0), SCALANCE WAM763-1 (US) (6GK5763-1AL00-7DB0) (All versions < V3.0.0), SCALANCE WAM766-1 (6GK5766-1GE00-7DA0) (All versions < V3.0.0), SCALANCE WAM766-1 (ME) (6GK5766-1GE00-7DC0) (All versions < V3.0.0), SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (6GK5766-1GE00-7TA0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (ME) (6GK5766-1GE00-7TC0) (All versions < V3.0.0), SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0) (All versions < V3.0.0), SCALANCE WUB762-1 (6GK5762-1AJ00-1AA0) (All versions < V3.0.0), SCALANCE WUB762-1 iFeatures (6GK5762-1AJ00-2AA0) (All versions < V3.0.0), SCALANCE WUM763-1 (6GK5763-1AL00-3AA0) (All versions < V3.0.0), SCALANCE WUM763-1 (6GK5763-1AL00-3DA0) (All versions < V3.0.0), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3AB0) (All versions < V3.0.0), SCALANCE WUM763-1 (US) (6GK5763-1AL00-3DB0) (All versions < V3.0.0), SCALANCE WUM766-1 (6GK5766-1GE00-3DA0) (All versions < V3.0.0), SCALANCE WUM766-1 (ME) (6GK5766-1GE00-3DC0) (All versions < V3.0.0), SCALANCE WUM766-1 (USA) (6GK5766-1GE00-3DB0) (All versions < V3.0.0). Affected devices do not properly sanitize the filenames before uploading. This could allow an authenticated remote attacker to compromise of integrity of the system.

Vulnerable Configurations

Part	Description	Count
OS	Siemens Siemens Ruggedcom Rm1224 Lte(4G) EU Firmware - Siemens Ruggedcom Rm1224 Lte(4G) EU Firmware 8.1 Siemens Ruggedcom Rm1224 Lte(4G) NAM Firmware - Siemens Ruggedcom Rm1224 Lte(4G) NAM Firmware 8.1 Siemens Scalance M804Pb Firmware - Siemens Scalance M804Pb Firmware 7.1.2 Siemens Scalance M804Pb Firmware 8.1 Siemens Scalance M812 1 (Annex A) Firmware - Siemens Scalance M812 1 (Annex A) Firmware 8.1 Siemens Scalance M812 1 (Annex B) Firmware - Siemens Scalance M812 1 (Annex B) Firmware 8.1 Siemens Scalance M816 1 (Annex A) Firmware - Siemens Scalance M816 1 (Annex A) Firmware 8.1 Siemens Scalance M816 1 (Annex B) Firmware - Siemens Scalance M816 1 (Annex B) Firmware 8.1 Siemens Scalance M826 2 Firmware - Siemens Scalance M826 2 Firmware 7.1.2 Siemens Scalance M874 2 Firmware - Siemens Scalance M874 2 Firmware 7.1.2 Siemens Scalance M874 2 Firmware 8.1 Siemens Scalance M874 3 Firmware - Siemens Scalance M874 3 Firmware 7.1.2 Siemens Scalance M874 3 Firmware 8.1 Siemens Scalance M874 3 (Cn) Firmware * Siemens Scalance M876 3 Firmware - Siemens Scalance M876 3 Firmware 7.1.2 Siemens Scalance M876 3 Firmware 8.1 Siemens Scalance M876 3 (Rok) Firmware - Siemens Scalance M876 3 (Rok) Firmware 8.1 Siemens Scalance M876 4 Firmware - Siemens Scalance M876 4 Firmware 7.1.2 Siemens Scalance M876 4 Firmware 8.1 Siemens Scalance M876 4 (Eu) Firmware - Siemens Scalance M876 4 (Eu) Firmware 8.1 Siemens Scalance M876 4 (Nam) Firmware - Siemens Scalance M876 4 (Nam) Firmware 8.1 Siemens Scalance Mum853 1 (A1) Firmware - Siemens Scalance Mum853 1 (A1) Firmware 8.1 Siemens Scalance Mum853 1 (B1) Firmware - Siemens Scalance Mum853 1 (B1) Firmware 8.1 Siemens Scalance Mum853 1 (Eu) Firmware - Siemens Scalance Mum853 1 (Eu) Firmware 8.1 Siemens Scalance Mum856 1 (A1) Firmware - Siemens Scalance Mum856 1 (A1) Firmware 8.1 Siemens Scalance Mum856 1 (B1) Firmware - Siemens Scalance Mum856 1 (B1) Firmware 8.1 Siemens Scalance Mum856 1 (Cn) Firmware - Siemens Scalance Mum856 1 (Cn) Firmware 8.1 Siemens Scalance Mum856 1 (Eu) Firmware - Siemens Scalance Mum856 1 (Eu) Firmware 8.1 Siemens Scalance Mum856 1 (Row) Firmware - Siemens Scalance Mum856 1 (Row) Firmware 8.1 Siemens Scalance S615 EEC Firmware - Siemens Scalance S615 Firmware - Siemens Scalance S615 Firmware 4.01 Siemens Scalance S615 Firmware 4.03 Siemens Scalance S615 Firmware 4.3 Siemens Scalance S615 Firmware 4.6 Siemens Scalance S615 Firmware 5.0 Siemens Scalance S615 Firmware 6.1 Siemens Scalance S615 Firmware 6.1.2 Siemens Scalance S615 Firmware 6.2 Siemens Scalance S615 Firmware 6.3 Siemens Scalance S615 Firmware 7.1.2	64
Hardware	Siemens Siemens Ruggedcom Rm1224 Lte(4G) EU - Siemens Ruggedcom Rm1224 Lte(4G) NAM - Siemens Scalance M804Pb - Siemens Scalance M812 1 (Annex A) - Siemens Scalance M812 1 (Annex B) - Siemens Scalance M816 1 (Annex A) - Siemens Scalance M816 1 (Annex B) - Siemens Scalance M826 2 - Siemens Scalance M874 2 - Siemens Scalance M874 3 - Siemens Scalance M874 3 (Cn) - Siemens Scalance M876 3 - Siemens Scalance M876 3 (Rok) - Siemens Scalance M876 4 - Siemens Scalance M876 4 (Eu) - Siemens Scalance M876 4 (Nam) - Siemens Scalance Mum853 1 (A1) - Siemens Scalance Mum853 1 (B1) - Siemens Scalance Mum853 1 (Eu) - Siemens Scalance Mum856 1 (A1) - Siemens Scalance Mum856 1 (B1) - Siemens Scalance Mum856 1 (Cn) - Siemens Scalance Mum856 1 (Eu) - Siemens Scalance Mum856 1 (Row) - Siemens Scalance S615 EEC - Siemens Scalance S615 -	26

Summary

Vulnerable Configurations

References