CVE-2024-30190 | Siemens SCALANCE WUM766-1 authentication spoofing (ssa-457702)

A vulnerability, which was classified as critical, was found in Siemens SCALANCE W1748-1 M12, SCALANCE W1788-1 M12, SCALANCE W1788-2 EEC M12, SCALANCE W1788-2 M12, SCALANCE W1788-2IA M12, SCALANCE W721-1 RJ45, SCALANCE W722-1 RJ45, SCALANCE W734-1 RJ45, SCALANCE W734-1 RJ45 (USA), SCALANCE W738-1 M12, SCALANCE W748-1 M12, SCALANCE W748-1 RJ45, SCALANCE W761-1 RJ45, SCALANCE W774-1 M12 EEC, SCALANCE W774-1 RJ45, SCALANCE W774-1 RJ45 (USA), SCALANCE W778-1 M12, SCALANCE W778-1 M12 EEC, SCALANCE W778-1 M12 EEC (USA), SCALANCE W786-1 RJ45, SCALANCE W786-2 RJ45, SCALANCE W786-2 SFP, SCALANCE W786-2IA RJ45, SCALANCE W788-1 M12, SCALANCE W788-1 RJ45, SCALANCE W788-2 M12, SCALANCE W788-2 M12 EEC, SCALANCE W788-2 RJ45, SCALANCE WAM763-1, SCALANCE WAM766-1, SCALANCE WAM766-1, SCALANCE WAM766-1 EEC, SCALANCE WAM766-1 EEC, SCALANCE WUM763-1, SCALANCE WUM766-1 and SCALANCE WUM766-1. Affected is an unknown function. The manipulation leads to authentication bypass by spoofing.

This vulnerability is traded as CVE-2024-30190. The attack can only be initiated within the local network. There is no exploit available.

CVE-2024-30190 | Siemens SCALANCE WUM766-1 authentication spoofing (ssa-457702)

Post correlati

CVE-2024-28242 | Discourse up to 3.2.0/3.3.0.beta1 Category information disclosure

CVE-2024-5407 | SaltOS RhinOS 3.0-1190 /portal/search.htm search code injection

CVE-2023-52628 | Linux Kernel up to 5.10.197/5.15.131/6.1.53/6.5.3 nftables nft_payload.c out-of-bounds write

CVE-2024-2574 | SourceCodester Employee Task Management System 1.0 /edit-task.php task_id authorization