CVE-2021-46304

A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70°C (All versions), CP-8000 MASTER MODULE WITH I/O -40/+70°C (All versions), CP-8021 MASTER MODULE (All versions), CP-8022 MASTER MODULE WITH GPRS (All versions). The component allows to activate a web server module which provides unauthenticated access to its web pages. This could allow an attacker to retrieve debug-level information from the component such as internal network topology or connected systems.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

References

Link	Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-185638.pdf	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:siemens:cp-8021_master_module_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:cp-8021_master_module:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:siemens:cp-8000_master_module_with_i\/o_-25\/\+70_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:cp-8000_master_module_with_i\/o_-25\/\+70:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:siemens:cp-8000_master_module_with_i\/o_-40\/\+70_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:cp-8000_master_module_with_i\/o_-40\/\+70:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:siemens:cp-8022_master_module_with_gprs_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:cp-8022_master_module_with_gprs:-:*:*:*:*:*:*:*

History

21 Jul 2023, 16:52

Type	Values Removed	Values Added
CWE	~~CWE-287~~	NVD-CWE-Other

Information

Published : 2022-08-10 12:15

Updated : 2024-02-28 19:29

NVD link : CVE-2021-46304

Mitre link : CVE-2021-46304

CVE.ORG link : CVE-2021-46304

JSON object : View

Products Affected

siemens

cp-8000_master_module_with_i\/o_-25\/\+70_firmware
cp-8021_master_module_firmware
cp-8000_master_module_with_i\/o_-40\/\+70
cp-8022_master_module_with_gprs_firmware
cp-8000_master_module_with_i\/o_-40\/\+70_firmware
cp-8022_master_module_with_gprs
cp-8021_master_module
cp-8000_master_module_with_i\/o_-25\/\+70

CWE

NVD-CWE-Other CWE-284

Improper Access Control

{"id": "CVE-2021-46304", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2022-08-10T12:15:11.567", "references": [{"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-185638.pdf", "tags": ["Vendor Advisory"], "source": "productcert@siemens.com"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}, {"type": "Secondary", "source": "productcert@siemens.com", "description": [{"lang": "en", "value": "CWE-284"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70\u00b0C (All versions), CP-8000 MASTER MODULE WITH I/O -40/+70\u00b0C (All versions), CP-8021 MASTER MODULE (All versions), CP-8022 MASTER MODULE WITH GPRS (All versions). The component allows to activate a web server module which provides unauthenticated access to its web pages. This could allow an attacker to retrieve debug-level information from the component such as internal network topology or connected systems."}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad en el M\u00d3DULO MASTER CP-8000 CON E/S -25/+70\u00b0C (Todas las versiones), M\u00d3DULO MASTER CP-8000 CON E/S -40/+70\u00b0C (Todas las versiones), M\u00d3DULO MASTER CP-8021 (Todas las versiones), M\u00d3DULO MASTER CP-8022 CON GPRS (Todas las versiones). El componente permite activar un m\u00f3dulo de servidor web que proporciona acceso no autenticado a sus p\u00e1ginas web. Esto podr\u00eda permitir a un atacante recuperar informaci\u00f3n a nivel de depuraci\u00f3n del componente, como la topolog\u00eda de la red interna o los sistemas conectados"}], "lastModified": "2023-07-21T16:52:52.007", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:cp-8021_master_module_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FE530A72-33F3-48B5-8F10-1B093762C8AE"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:cp-8021_master_module:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0F257456-CB80-485A-94B7-B996D388D38D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:cp-8000_master_module_with_i\\/o_-25\\/\\+70_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8EFF2EB1-B4D1-4A81-8453-BCAA221E693A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:cp-8000_master_module_with_i\\/o_-25\\/\\+70:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5BC48F66-67A4-4788-B9AC-8C1E682375DF"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:cp-8000_master_module_with_i\\/o_-40\\/\\+70_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "78987EEB-1919-4E9F-A011-364B6D815C2D"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:cp-8000_master_module_with_i\\/o_-40\\/\\+70:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "218B8555-E36A-4149-91D4-CF56DE6EFD4C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:cp-8022_master_module_with_gprs_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "88907B10-5555-465C-A048-791E80EC2F35"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:cp-8022_master_module_with_gprs:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6807A5B6-F103-460A-83FD-7D7C7AA25D71"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "productcert@siemens.com"}