CVE-2023-44317

CVSS V2 None CVSS V3 None

Description

Affected products do not properly validate the content of uploaded X509 certificates which could allow an attacker with administrative privileges to execute arbitrary code on the device.

Overview

CVE ID
CVE-2023-44317

Assigner
siemens

Vulnerability Status
PUBLISHED

Published Version
2023-11-14T11:03:48.999Z

Last Modified Date
2024-06-11T14:20:06.285Z

Weakness Enumerations

CWE	URL
CWE-349	http://cwe.mitre.org/data/definitions/349.html

References

Reference URL	Reference Tags
https://cert-portal.siemens.com/productcert/pdf/ssa-699386.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-068047.pdf
https://cert-portal.siemens.com/productcert/html/ssa-699386.html
https://cert-portal.siemens.com/productcert/html/ssa-068047.html
https://cert-portal.siemens.com/productcert/html/ssa-602936.html
https://cert-portal.siemens.com/productcert/html/ssa-690517.html

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2023-44317
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-44317

History

Created	Old Value	New Value	Data Type	Notes
2024-06-25 12:38:22				Added to TrackCVE