CVE-2023-44319
CVSS 3.1 Score 4.9 of 10 (medium)
Details
Published Nov 14, 2023
Updated: Aug 13, 2024
CWE ID 328
Summary
CVE-2023-44319 is a vulnerability impacting multiple RUGGEDCOM and SCALANCE devices, including RM1224 LTE(4G) models, SCALANCE M804PB, M812-1 ADSL-Router, M816-1 ADSL-Router, M826-2 SHDSL-Router, M874-2, M874-3, M876-3, M876-4, MUM853-1, MUM856-1, S615 EEC LAN-Router, and S615 LAN-Router. These devices use a weak checksum algorithm to secure configuration backups, allowing authenticated attackers or attackers who trick legitimate administrators to modify the configurations by uploading manipulated files. Versions prior to V8.0 are affected.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- Siemens AG