CVE-2023-33920

🗓️ 13 Jun 2023 08:17:19Reported by siemensType

Vulnerability in CP-8031 & CP-8050 MASTER MODULE (CVE-2023-33920

Reporter	Title	Published	Views	Family All 13
CNNVD	Siemens CP-8031 信任管理问题漏洞	13 Jun 202300:00	–	cnnvd
CNVD	Siemens SICAM A8000 Devices CPCI85 Firmware Hardcoded Credentials Vulnerability	14 Jun 202300:00	–	cnvd
Cvelist	CVE-2023-33920	13 Jun 202308:17	–	cvelist
EUVD	EUVD-2023-38070	3 Oct 202520:07	–	euvd
ICS	Siemens SICAM A8000 Devices	13 Jun 202300:00	–	ics
NCSC	Vulnerabilities fixed in Siemens products	13 Jun 202300:00	–	ncsc
NVD	CVE-2023-33920	13 Jun 202309:15	–	nvd
OSV	CVE-2023-33920	13 Jun 202309:15	–	osv
Packet Storm	Siemens A8000 CP-8050 / CP-8031 Code Execution / Command Injection	11 Jul 202300:00	–	packetstorm
Prion	Default credentials	13 Jun 202309:15	–	prion

NVD

Node

siemens cpci85_firmwareRange<v05

AND

siemens cp-8050_master_moduleMatch-

Node

siemens cpci85_firmwareRange<v05

AND

siemens cp-8031_master_moduleMatch-

[
  {
    "vendor": "Siemens",
    "product": "CP-8031 MASTER MODULE",
    "versions": [
      {
        "version": "All versions < CPCI85 V05",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "CP-8050 MASTER MODULE",
    "versions": [
      {
        "version": "All versions < CPCI85 V05",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-731916.pdf
seclists	www.seclists.org/fulldisclosure/2023/Jul/14
packetstormsecurity	www.packetstormsecurity.com/files/173370/Siemens-A8000-CP-8050-CP-8031-Code-Execution-Command-Injection.html

21 Nov 2024 08:06Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.16.8

EPSS0.0013

SSVC

CWE-798