Security Advisory

Siemens Family Security Update Advisory

  • Apr 16 2024

Overview

 

We have released a security update to fix vulnerabilities in the Siemens family of products. users of affected products are advised to update to the latest version.

 

Affected Products

 

CVE-2024-30191

  • Balance w721-1 rj45 (6gk5721-1fc00-0aa0)
  • Balance w721-1 rj45 (6gk5721-1fc00-0ab0)
  • Balance w722-1 rj45 (6gk5722-1fc00-0aa0)
  • Balance w722-1 rj45 (6gk5722-1fc00-0ab0)
  • Balance w722-1 rj45 (6gk5722-1fc00-0ac0)
  • Balance w734-1 rj45 (6gk5734-1fx00-0aa0)
  • Balance w734-1 rj45 (6gk5734-1fx00-0aa6)
  • Balance w734-1 rj45 (6gk5734-1fx00-0ab0)
  • Balance w734-1 rj45 (usa) (6gk5734-1fx00-0ab6)
  • Balance w738-1 m12 (6gk5738-1gy00-0aa0)
  • Balance w738-1 m12 (6gk5738-1gy00-0ab0)
  • Balance w748-1 m12 (6gk5748-1gd00-0aa0)
  • Balance w748-1 m12 (6gk5748-1gd00-0ab0)
  • Balance w748-1 rj45 (6gk5748-1fc00-0aa0)
  • Balance w748-1 rj45 (6gk5748-1fc00-0ab0)
  • Balance w761-1 rj45 (6gk5761-1fc00-0aa0)
  • Balance w761-1 rj45 (6gk5761-1fc00-0ab0)
  • Balance w774-1 m12 eec (6gk5774-1fy00-0ta0)
  • Balance w774-1 m12 eec (6gk5774-1fy00-0tb0)
  • Balance w774-1 rj45 (6gk5774-1fx00-0aa0)
  • Balance w774-1 rj45 (6gk5774-1fx00-0aa6)
  • Balance w774-1 rj45 (6gk5774-1fx00-0ab0)
  • Balance w774-1 rj45 (6gk5774-1fx00-0ac0)
  • Balance w774-1 rj45 (usa) (6gk5774-1fx00-0ab6)
  • Balance w778-1 m12 (6gk5778-1gy00-0aa0)
  • Balance w778-1 m12 (6gk5778-1gy00-0ab0)
  • Balance w778-1 m12 eec (6gk5778-1gy00-0ta0)
  • Balance w778-1 m12 eec (usa) (6gk5778-1gy00-0tb0)
  • Balance w786-1 rj45 (6gk5786-1fc00-0aa0)
  • Balance w786-1 rj45 (6gk5786-1fc00-0ab0)
  • Balance w786-2 rj45 (6gk5786-2fc00-0aa0)
  • Balance w786-2 rj45 (6gk5786-2fc00-0ab0)
  • Balance w786-2 rj45 (6gk5786-2fc00-0ac0)
  • Balance w786-2 sfp (6gk5786-2fe00-0aa0)
  • Balance w786-2 sfp (6gk5786-2fe00-0ab0)
  • Balance w786-2ia rj45 (6gk5786-2hc00-0aa0)
  • Balance w786-2ia rj45 (6gk5786-2hc00-0ab0)
  • Balance w788-1 m12 (6gk5788-1gd00-0aa0)
  • Balance w788-1 m12 (6gk5788-1gd00-0ab0)
  • Balance w788-1 rj45 (6gk5788-1fc00-0aa0)
  • Balance w788-1 rj45 (6gk5788-1fc00-0ab0)
  • Balance w788-2 m12 (6gk5788-2gd00-0aa0)
  • Balance w788-2 m12 (6gk5788-2gd00-0ab0)
  • Balance w788-2 m12 eec (6gk5788-2gd00-0ta0)
  • Balance w788-2 m12 eec (6gk5788-2gd00-0tb0)
  • Balance w788-2 m12 eec (6gk5788-2gd00-0tc0)
  • Balance w788-2 rj45 (6gk5788-2fc00-0aa0)
  • Balance w788-2 rj45 (6gk5788-2fc00-0ab0)
  • Balance w788-2 rj45 (6gk5788-2fc00-0ac0)
  • Balance w1748-1 m12 (6gk5748-1gy01-0aa0)
  • Balance w1748-1 m12 (6gk5748-1gy01-0ta0)
  • Balance w1788-1 m12 (6gk5788-1gy01-0aa0)
  • Balance w1788-2 eec m12 (6gk5788-2gy01-0ta0)
  • Balance w1788-2 m12 (6gk5788-2gy01-0aa0)
  • Balance w1788-2ia m12 (6gk5788-2hy01-0aa0)
  • Balance wam763-1 (6gk5763-1al00-7da0)
  • Balance wam766-1 (eu) (6gk5766-1ge00-7da0)
  • Balance wam766-1 (us) (6gk5766-1ge00-7db0)
  • Balance wam766-1 eec (eu) (6gk5766-1ge00-7ta0)
  • Balance wam766-1 eec (us) (6gk5766-1ge00-7tb0)
  • Balance wum763-1 (6gk5763-1al00-3aa0)
  • Balance wum763-1 (6gk5763-1al00-3da0)
  • Balance wum766-1 (eu) (6gk5766-1ge00-3da0)
  • Balance wum766-1 (us) (6gk5766-1ge00-3db0)

 

CVE-2024-26275

  • All versions of Parasolid 35.1.x prior to 35.1.254
  • All versions of Parasolid 36.0.x prior to 36.0.207
  • All versions of Parasolid 36.1.x prior to 36.1.147

 

CVE-2024-31978

  • All versions of SINEC NMS SP2 prior to 2.0

 

Resolved Vulnerabilities

 

An attacker-controlled security context for an affected device could be associated with frames belonging to the victim, allowing an attacker in physical proximity to decrypt the victim’s frames (CVE-2024-30191)

A vulnerability in Parasolid that could allow out-of-bounds reads while parsing a specially crafted X_T file to execute code in the context of the current process (CVE-2024-26275)

Path traversal vulnerability in SINEC NMS that could allow an authenticated attacker to download files to the file system (CVE-2024-31978)

 

Vulnerability Patches

 

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

 

CVE-2024-30191 (Workaround and Mitigation)

  • recommendation for higher layers: Do not allow connections with duplicate MAC addresses used by internal services on the LAN.
  • Enable Wi-Fi Management Frame Protection (802.11w)

 

CVE-2024-26275

  • Parasolid 35.1.254 version
  • Parasolid 36.0.207 version
  • Parasolid 36.1.147 version

 

CVE-2024-31978

  • SINEC NMS SP2 2.0 version

 

Referenced Sites

 

[1] CVE-2024-30191 Detail
https://nvd.nist.gov/vuln/detail/CVE-2024-30191

[2] SSA-457702: Wi-Fi Encryption Bypass Vulnerabilities in SCALANCE W700 Product Family

https://cert-portal.siemens.com/productcert/html/ssa-457702.html

[3] CVE-2024-26275 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-26275

[4] SSA-222019: X_T File Parsing Vulnerabilities in Parasolid

https://cert-portal.siemens.com/productcert/html/ssa-222019.html

[5] CVE-2024-31978 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-31978

[6] SSA-128433: Multiple Vulnerabilities in SINEC NMS before V2.0 SP2

https://cert-portal.siemens.com/productcert/html/ssa-128433.html

Tags:

Previous Post

Next Post