A
vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.2), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.2), SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2) (All versions < V8.2), SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2) (All versions < V8.2), SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2) (All versions < V8.2), SCALANCE M816-1 ADSL-Router (6GK5816-1BA00-2AA2) (All versions < V8.2), SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2) (All versions < V8.2), SCALANCE M874-2 (6GK5874-2AA00-2AA2) (All versions < V8.2), SCALANCE M874-3 (6GK5874-3AA00-2AA2) (All versions < V8.2), SCALANCE M874-3 3G-Router (CN) (6GK5874-3AA00-2FA2) (All versions < V8.2), SCALANCE M876-3 (6GK5876-3AA02-2BA2) (All versions < V8.2), SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2) (All versions < V8.2), SCALANCE M876-4 (6GK5876-4AA10-2BA2) (All versions < V8.2), SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2) (All versions < V8.2), SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2) (All versions < V8.2), SCALANCE MUM853-1 (A1) (6GK5853-2EA10-2AA1) (All versions < V8.2), SCALANCE MUM853-1 (B1) (6GK5853-2EA10-2BA1) (All versions < V8.2), SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1) (All versions < V8.2), SCALANCE MUM856-1 (A1) (6GK5856-2EA10-3AA1) (All versions < V8.2), SCALANCE MUM856-1 (B1) (6GK5856-2EA10-3BA1) (All versions < V8.2), SCALANCE MUM856-1 (CN) (6GK5856-2EA00-3FA1) (All versions < V8.2), SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1) (All versions < V8.2), SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1) (All versions < V8.2), SCALANCE S615 EEC LAN-Router (6GK5615-0AA01-2AA2) (All versions < V8.2), SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2) (All versions < V8.2). Affected devices do not properly validate the filenames of the certificate. This could allow an authenticated remote attacker to append arbitrary values which will lead to compromise of integrity of the system.
References
| Link | Resource |
|---|---|
| https://cert-portal.siemens.com/productcert/html/ssa-354112.html | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
Configuration 9 (hide)
| AND |
|
Configuration 10 (hide)
| AND |
|
Configuration 11 (hide)
| AND |
|
Configuration 12 (hide)
| AND |
|
Configuration 13 (hide)
| AND |
|
Configuration 14 (hide)
| AND |
|
Configuration 15 (hide)
| AND |
|
Configuration 16 (hide)
| AND |
|
Configuration 17 (hide)
| AND |
|
Configuration 18 (hide)
| AND |
|
Configuration 19 (hide)
| AND |
|
Configuration 20 (hide)
| AND |
|
Configuration 21 (hide)
| AND |
|
Configuration 22 (hide)
| AND |
|
Configuration 23 (hide)
| AND |
|
Configuration 24 (hide)
| AND |
|
Configuration 25 (hide)
| AND |
|
Configuration 26 (hide)
| AND |
|
History
13 Nov 2024, 19:56
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://cert-portal.siemens.com/productcert/html/ssa-354112.html - Patch, Vendor Advisory | |
| First Time |
Siemens scalance M876-4 \(nam\) Firmware
Siemens scalance Mum856-1 \(cn\) Firmware Siemens Siemens scalance Mum856-1 \(b1\) Firmware Siemens scalance M816-1 \(annex B\) Siemens scalance M876-3 Firmware Siemens scalance Mum856-1 \(a1\) Firmware Siemens scalance M812-1 \(annex B\) Firmware Siemens scalance M804pb Firmware Siemens scalance Mum856-1 \(b1\) Siemens scalance M876-3 \(rok\) Firmware Siemens scalance M876-4 \(nam\) Siemens scalance M874-3 \(cn\) Siemens scalance M826-2 Firmware Siemens scalance M876-4 Firmware Siemens scalance Mum856-1 \(row\) Firmware Siemens scalance S615 Eec Siemens scalance M816-1 \(annex A\) Siemens scalance Mum853-1 \(eu\) Siemens scalance Mum856-1 \(a1\) Siemens scalance Mum853-1 \(eu\) Firmware Siemens scalance Mum856-1 \(eu\) Firmware Siemens scalance M826-2 Siemens scalance Mum856-1 \(eu\) Siemens scalance M876-3 Siemens scalance M876-4 \(eu\) Firmware Siemens scalance M874-2 Firmware Siemens scalance Mum853-1 \(a1\) Siemens ruggedcom Rm1224 Lte\(4g\) Eu Siemens scalance M812-1 \(annex A\) Siemens scalance M816-1 \(annex A\) Firmware Siemens scalance Mum853-1 \(b1\) Siemens scalance S615 Eec Firmware Siemens scalance M876-4 \(eu\) Siemens scalance M816-1 \(annex B\) Firmware Siemens scalance M812-1 \(annex A\) Firmware Siemens scalance S615 Firmware Siemens scalance Mum856-1 \(cn\) Siemens scalance M812-1 \(annex B\) Siemens scalance M876-3 \(rok\) Siemens scalance M874-3 Siemens scalance Mum853-1 \(a1\) Firmware Siemens ruggedcom Rm1224 Lte\(4g\) Nam Siemens scalance M874-3 \(cn\) Firmware Siemens scalance M876-4 Siemens scalance M874-3 Firmware Siemens scalance Mum853-1 \(b1\) Firmware Siemens scalance S615 Siemens ruggedcom Rm1224 Lte\(4g\) Nam Firmware Siemens scalance M874-2 Siemens ruggedcom Rm1224 Lte\(4g\) Eu Firmware Siemens scalance Mum856-1 \(row\) Siemens scalance M804pb |
|
| CPE | cpe:2.3:h:siemens:scalance_mum853-1_\(b1\):-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_mum856-1_\(a1\):-:*:*:*:*:*:*:* cpe:2.3:h:siemens:ruggedcom_rm1224_lte\(4g\)_nam:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_m876-4:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_mum856-1_\(eu\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_s615_eec_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_m876-4_\(eu\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_m812-1_\(annex_a\):-:*:*:*:*:*:*:* cpe:2.3:h:siemens:ruggedcom_rm1224_lte\(4g\)_eu:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_m816-1_\(annex_a\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_m826-2:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_m812-1_\(annex_b\):-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_m804pb_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_m812-1_\(annex_b\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_m874-2_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_mum856-1_\(cn\):-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_m816-1_\(annex_b\):-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_m874-2:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_s615_eec:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_m874-3_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_m876-4_\(eu\):-:*:*:*:*:*:*:* cpe:2.3:o:siemens:ruggedcom_rm1224_lte\(4g\)_nam_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_mum856-1_\(row\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:ruggedcom_rm1224_lte\(4g\)_eu_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_m874-3:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_m826-2_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_m816-1_\(annex_a\):-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_mum856-1_\(cn\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_mum856-1_\(row\):-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_m876-3_\(rok\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_m812-1_\(annex_a\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_m816-1_\(annex_b\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_mum853-1_\(eu\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_m876-4_\(nam\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_mum853-1_\(eu\):-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_m876-3:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_mum856-1_\(b1\):-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_mum856-1_\(b1\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_m876-3_\(rok\):-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_m874-3_\(cn\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_mum853-1_\(a1\):-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_mum856-1_\(a1\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_mum856-1_\(eu\):-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_mum853-1_\(a1\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_m876-4_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_mum853-1_\(b1\)_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_m876-3_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_s615:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_m874-3_\(cn\):-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_m876-4_\(nam\):-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_m804pb:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_s615_firmware:*:*:*:*:*:*:*:* |
|
| Summary |
|
12 Nov 2024, 13:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-11-12 13:15
Updated : 2024-11-13 19:56
NVD link : CVE-2024-50559
Mitre link : CVE-2024-50559
CVE.ORG link : CVE-2024-50559
JSON object : View
Products Affected
- scalance_m816-1_\(annex_b\)_firmware
- scalance_s615
- scalance_m804pb
- scalance_m876-4_\(nam\)
- scalance_m812-1_\(annex_a\)
- scalance_m874-2_firmware
- scalance_mum856-1_\(cn\)_firmware
- ruggedcom_rm1224_lte\(4g\)_nam
- scalance_m874-3_\(cn\)
- scalance_mum853-1_\(eu\)_firmware
- scalance_m874-3_\(cn\)_firmware
- scalance_m876-4_firmware
- scalance_m812-1_\(annex_b\)_firmware
- scalance_m874-3_firmware
- scalance_mum856-1_\(b1\)_firmware
- scalance_s615_firmware
- scalance_mum853-1_\(eu\)
- scalance_mum853-1_\(a1\)
- scalance_mum853-1_\(a1\)_firmware
- scalance_mum853-1_\(b1\)_firmware
- scalance_m874-3
- scalance_mum856-1_\(a1\)
- scalance_mum853-1_\(b1\)
- scalance_s615_eec_firmware
- scalance_m804pb_firmware
- scalance_m816-1_\(annex_a\)
- scalance_m876-4
- scalance_mum856-1_\(b1\)
- scalance_m876-4_\(eu\)
- scalance_m812-1_\(annex_a\)_firmware
- scalance_m876-3_firmware
- scalance_m876-4_\(nam\)_firmware
- scalance_mum856-1_\(eu\)_firmware
- ruggedcom_rm1224_lte\(4g\)_nam_firmware
- scalance_m876-3
- ruggedcom_rm1224_lte\(4g\)_eu
- scalance_mum856-1_\(row\)
- scalance_m816-1_\(annex_b\)
- scalance_m876-4_\(eu\)_firmware
- scalance_mum856-1_\(eu\)
- scalance_m876-3_\(rok\)
- scalance_m812-1_\(annex_b\)
- scalance_m826-2
- scalance_mum856-1_\(a1\)_firmware
- scalance_mum856-1_\(row\)_firmware
- scalance_m826-2_firmware
- ruggedcom_rm1224_lte\(4g\)_eu_firmware
- scalance_m816-1_\(annex_a\)_firmware
- scalance_m876-3_\(rok\)_firmware
- scalance_mum856-1_\(cn\)
- scalance_m874-2
- scalance_s615_eec
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')