CVE-2024-30191

Name of the Vulnerable Software and Affected Versions: SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0) SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0) SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0) SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0) SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0) SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0) SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0) SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0) SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0) SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0) SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0) SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0) SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6) SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0) SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6) SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0) SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0) SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0) SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0) SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0) SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0) SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0) SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0) SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0) SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0) SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0) SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6) SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0) SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0) SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6) SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0) SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0) SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0) SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0) SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0) SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0) SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0) SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0) SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0) SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0) SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0) SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0) SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0) SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0) SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0) SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0) SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0) SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0) SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0) SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0) SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0) SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0) SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0) SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0) SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0) SCALANCE WAM763-1 (6GK5763-1AL00-7DA0) SCALANCE WAM766-1 (EU) (6GK5766-1GE00-7DA0) SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0) SCALANCE WAM766-1 EEC (EU) (6GK5766-1GE00-7TA0) SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0) SCALANCE WUM763-1 (6GK5763-1AL00-3AA0) SCALANCE WUM763-1 (6GK5763-1AL00-3DA0) SCALANCE WUM766-1 (EU) (6GK5766-1GE00-3DA0) SCALANCE WUM766-1 (US) (6GK5766-1GE00-3DB0)

Description: A vulnerability has been identified in Siemens SCALANCE products, allowing an attacker to override a client's security context. This could enable a physically proximate attacker to decrypt frames meant for the victim. The issue is related to authentication bypass via spoofing, which may allow a remote attacker to elevate their privileges.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.