CVE-2024-41978

Name of the Vulnerable Software and Affected Versions: RUGGEDCOM RM1224 LTE(4G) EU versions < V8.1 RUGGEDCOM RM1224 LTE(4G) NAM versions < V8.1 SCALANCE M804PB versions < V8.1 SCALANCE M812-1 ADSL-Router family versions < V8.1 SCALANCE M816-1 ADSL-Router family versions < V8.1 SCALANCE M826-2 SHDSL-Router versions < V8.1 SCALANCE M874-2 versions < V8.1 SCALANCE M874-3 versions < V8.1 SCALANCE M874-3 3G-Router (CN) versions < V8.1 SCALANCE M876-3 versions < V8.1 SCALANCE M876-3 (ROK) versions < V8.1 SCALANCE M876-4 versions < V8.1 SCALANCE M876-4 (EU) versions < V8.1 SCALANCE M876-4 (NAM) versions < V8.1 SCALANCE MUM853-1 (A1) versions < V8.1 SCALANCE MUM853-1 (B1) versions < V8.1 SCALANCE MUM853-1 (EU) versions < V8.1 SCALANCE MUM856-1 (A1) versions < V8.1 SCALANCE MUM856-1 (B1) versions < V8.1 SCALANCE MUM856-1 (CN) versions < V8.1 SCALANCE MUM856-1 (EU) versions < V8.1 SCALANCE MUM856-1 (RoW) versions < V8.1 SCALANCE S615 EEC LAN-Router versions < V8.1 SCALANCE S615 LAN-Router versions < V8.1

Description: A vulnerability has been identified in the affected devices, which insert sensitive information about the generation of 2FA tokens into log files. This could allow an authenticated remote attacker to forge 2FA tokens of other users. The issue is related to insufficient protection of registration data, which may allow an attacker to substitute 2FA tokens of other users and disclose protected information.

Recommendations: For all versions < V8.1, update to version V8.1 or later to resolve the issue. As a temporary workaround, consider restricting access to log files to minimize the risk of exploitation. Avoid using sensitive information in log files until the issue is resolved. Restrict access to the affected devices to minimize the risk of exploitation.