PT-2024-32907 · Rittal Gmbh & Co. Kg+1 · Iot Interface & Cmc Iii Processing Unit+2

Johannes Kruchem

Published

2024-10-15

Updated

2024-10-21

CVE-2024-47945

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned in the provided descriptions.

Description The devices are vulnerable to session hijacking due to insufficient entropy in its session ID generation algorithm. The session IDs are predictable, with only 32,768 possible values per user, which allows attackers to pre-generate valid session IDs, leading to unauthorized access to user sessions. This is not only due to the use of an insecure rand() function call but also because of missing initialization via srand(). As a result, only the PIDs are effectively used as seed.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-340CWE-331

Related Identifiers

CVE-2024-47945

Affected Products

Iot Interface & Cmc Iii Processing Unit

Cmc Iii Processing Units Firmware

Iot Interface Firmware

CVE-2024-47945

Weakness Enumeration

Related Identifiers

Affected Products

References · 11