CVE-2024-44102

🗓️ 12 Nov 2024 12:49:33Reported by siemensType

A vulnerability in PP TeleControl Server Basic allows remote code execution

Reporter	Title	Published	Views	Family All 14
BDU FSTEC	The vulnerability of the software for managing and monitoring remote devices in telemetry and telemechanics systems, related to deficiencies in the deserialization mechanism, allows a perpetrator to execute arbitrary code.	14 Nov 202400:00	–	bdu_fstec
Circl	CVE-2024-44102	12 Nov 202413:21	–	circl
CNNVD	Siemens PP TeleControl Server 代码问题漏洞	12 Nov 202400:00	–	cnnvd
CNVD	Siemens TeleControl Server Basic Deserialization Vulnerability	13 Nov 202400:00	–	cnvd
CVE	CVE-2024-44102	12 Nov 202412:49	–	cve
EUVD	EUVD-2024-40866	3 Oct 202520:07	–	euvd
ICS	Siemens TeleControl Server	12 Nov 202400:00	–	ics
NCSC	Vulnerabilities fixed in Siemens products	12 Nov 202414:19	–	ncsc
NVD	CVE-2024-44102	12 Nov 202413:15	–	nvd
OSV	CVE-2024-44102	12 Nov 202413:15	–	osv

[
  {
    "vendor": "Siemens",
    "product": "PP TeleControl Server Basic 1000 to 5000 V3.1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V3.1.2.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "PP TeleControl Server Basic 256 to 1000 V3.1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V3.1.2.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "PP TeleControl Server Basic 32 to 64 V3.1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V3.1.2.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "PP TeleControl Server Basic 64 to 256 V3.1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V3.1.2.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "PP TeleControl Server Basic 8 to 32 V3.1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V3.1.2.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "TeleControl Server Basic 1000 V3.1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V3.1.2.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "TeleControl Server Basic 256 V3.1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V3.1.2.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "TeleControl Server Basic 32 V3.1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V3.1.2.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "TeleControl Server Basic 5000 V3.1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V3.1.2.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "TeleControl Server Basic 64 V3.1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V3.1.2.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "TeleControl Server Basic 8 V3.1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V3.1.2.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "TeleControl Server Basic Serv Upgr",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V3.1.2.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "TeleControl Server Basic Upgr V3.1",
    "versions": [
      {
        "status": "affected",
        "version": "0",
        "lessThan": "V3.1.2.1",
        "versionType": "custom"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-454789.html

12 Nov 2024 12:49Current

CVSS 3.110

CVSS 410

EPSS0.01002

CWE-502