CVE-2024-54015

Summary

CVE-2024-54015 is a vulnerability affecting various Siemens SIPROTEC 5 models, including 6MD84, 6MD85, 6MD86, 6MD89, 6MU85, 7KE85, 7SA82, 7SA86, 7SA87, 7SD82, 7SD86, 7SD87, 7SJ81, 7SJ82, 7SJ85, 7SJ86, 7SK82, 7SK85, 7SL82, 7SL86, 7SL87, 7SS85, 7ST85, 7ST86, 7SX82, 7SX85, 7SY82, 7UM85, 7UT82, 7UT85, 7UT86, 7UT87, 7VE85, 7VK87, and 7VU85, as well as the Communication Modules ETH-BA-2EL (Rev.2), ETH-BB-2FO (Rev. 2), and ETH-BD-2FO (All versions >= V8.80 < V9.90), and the Compact 7SX800 (CP050) (All versions >= V9.50 < V9.90). These devices do not sufficiently validate SNMP GET requests, leaving them susceptible to unauthenticated, remote attacks. Attackers can exploit this vulnerability using default credentials to retrieve sensitive information from the affected devices via SNMPv2 GET requests.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.