CVE-2024-33494

CVSS V2 None CVSS V3 None
Description
A vulnerability has been identified in SIMATIC RTLS Locating Manager (6GT2780-0DA00) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA10) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA20) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-0DA30) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA10) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA20) (All versions < V3.0.1.1), SIMATIC RTLS Locating Manager (6GT2780-1EA30) (All versions < V3.0.1.1). Affected components do not properly authenticate heartbeat messages. This could allow an unauthenticated remote attacker to affected the availability of secondary RTLS systems configured using a TeeRevProxy service and potentially cause loss of data generated during the time the attack is ongoing.
Overview
  • CVE ID
  • CVE-2024-33494
  • Assigner
  • siemens
  • Vulnerability Status
  • PUBLISHED
  • Published Version
  • 2024-05-14T10:02:56.636Z
  • Last Modified Date
  • 2024-06-11T14:20:38.261Z
History
Created Old Value New Value Data Type Notes
2024-06-26 05:29:38 Added to TrackCVE