EUVD-2024-42716

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Vulnerability in InterMesh devices allows code execution due to unsanitized GET requests.

Reporter	Title	Published	Views	Family All 10
Circl	CVE-2024-47901	23 Oct 202418:13	–	circl
CNNVD	Siemens InterMesh 7177和Siemens InterMesh 7707 操作系统命令注入漏洞	23 Oct 202400:00	–	cnnvd
CNVD	Siemens InterMesh Subscriber Devices Operating System Command Injection Vulnerability	24 Oct 202400:00	–	cnvd
CVE	CVE-2024-47901	23 Oct 202414:21	–	cve
Cvelist	CVE-2024-47901	23 Oct 202414:21	–	cvelist
ICS	Siemens InterMesh Subscriber Devices	23 Oct 202400:00	–	ics
NVD	CVE-2024-47901	23 Oct 202415:15	–	nvd
OSV	CVE-2024-47901	23 Oct 202415:15	–	osv
RedhatCVE	CVE-2024-47901	5 Feb 202508:30	–	redhatcve
Vulnrichment	CVE-2024-47901	23 Oct 202414:21	–	vulnrichment

[
  {
    "enisaIdVendor": [
      {
        "id": "bb8cb8ac-8b7b-37f7-b4db-3e796e44ab0e",
        "vendor": {
          "name": "Siemens"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "9b53b330-ee96-3725-a12a-22f5bf36ccfb",
        "product": {
          "name": "InterMesh 7707 Fire Subscriber"
        },
        "product_version": "0 <V7.2.12"
      },
      {
        "id": "e219ee63-421c-3c97-a580-38f7269fec06",
        "product": {
          "name": "InterMesh 7177 Hybrid 2.0 Subscriber"
        },
        "product_version": "0 <V8.2.12"
      }
    ]
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/html/ssa-333468.html

03 Oct 2025 20:07Current

8.6High risk

Vulners AI Score8.6

CVSS 3.19.8 - 10

CVSS 410

EPSS0.02913

SSVC