Assigner | siemens |
Reserved | 2023-09-28 |
Published | 2023-11-14 |
Updated | 2024-09-10 |
Description
Affected devices use a hardcoded key to obfuscate the configuration backup that an administrator can export from the device. This could allow an authenticated attacker with administrative privileges or an attacker that obtains a configuration backup to extract configuration information from the exported file.
MEDIUM: 4.9 | CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N/E:P/RL:U/RC:C |
Problem types
CWE-321: Use of Hard-coded Cryptographic Key
Product status
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
References
https://cert-portal.siemens.com/productcert/pdf/ssa-699386.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-180704.pdf
https://cert-portal.siemens.com/productcert/html/ssa-180704.html
https://cert-portal.siemens.com/productcert/html/ssa-353002.html
https://cert-portal.siemens.com/productcert/html/ssa-690517.html
cve.org CVE-2023-44318
nvd.nist.gov CVE-2023-44318
Download JSON
Share this page
https://cve.threatint.com
Subscribe to our newsletter to learn more about our work.