Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2023-42797
HistoryJan 09, 2024 - 10:15 a.m.

Design/Logic Flaw

2024-01-0910:15:00
PRIOn knowledge base
www.prio-n.com
2
vulnerability
network configuration
cp-8031
cp-8050
uninitialized variable
authenticated remote attacker
root privileges

7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

38.1%

JSON

A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05.20), CP-8050 MASTER MODULE (All versions < CPCI85 V05.20). The network configuration service of affected devices contains a flaw in the conversion of ipv4 addresses that could lead to an uninitialized variable being used in succeeding validation steps.

By uploading specially crafted network configuration, an authenticated remote attacker could be able to inject commands that are executed on the device with root privileges during device startup.

Related

cve 1
nvd 1
ics 1
cnvd 1
cvelist 1
nessus 1
cve
cve
CVE-2023-42797
2024-01-09 10:15:15
nvd
nvd
CVE-2023-42797
2024-01-09 10:15:15
ics
ics
Siemens SICAM A8000
2024-01-11 12:00:00
cnvd
cnvd
Siemens CPCI85 Firmware of SICAM A8000 Devices Command Injection Vulnerability
2024-01-10 00:00:00
cvelist
cvelist
CVE-2023-42797
2024-01-09 09:59:43
nessus
nessus
Siemens SICAM A8000 CP Command Injection (CVE-2023-42797)
2024-01-16 00:00:00

7 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

38.1%

JSON
Related for PRION:CVE-2023-42797
cve1nvd1ics1cnvd1cvelist1nessus1