Vulnerability Details CVE-2023-44318
Affected devices use a hardcoded key to obfuscate the configuration backup that an administrator can export from the device. This could allow an authenticated attacker with administrative privileges or an attacker that obtains a configuration backup to extract configuration information from the exported file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 28.8%
CVSS Severity
CVSS v3 Score 4.9
References
- https://cert-portal.siemens.com/productcert/html/ssa-180704.html
- https://cert-portal.siemens.com/productcert/html/ssa-353002.html
- https://cert-portal.siemens.com/productcert/html/ssa-690517.html
- https://cert-portal.siemens.com/productcert/pdf/ssa-180704.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-699386.pdf
- https://cert-portal.siemens.com/productcert/html/ssa-180704.html
- https://cert-portal.siemens.com/productcert/html/ssa-353002.html
- https://cert-portal.siemens.com/productcert/html/ssa-690517.html
- https://cert-portal.siemens.com/productcert/pdf/ssa-180704.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-699386.pdf
Products affected by CVE-2023-44318
-
cpe:2.3:h:siemens:6ag1206-2bb00-7ac2:-
-
cpe:2.3:h:siemens:6ag1206-2bs00-7ac2:-
-
cpe:2.3:h:siemens:6ag1208-0ba00-7ac2:-
-
cpe:2.3:h:siemens:6ag1216-4bs00-7ac2:-
-
cpe:2.3:h:siemens:6gk5204-0ba00-2gf2:-
-
cpe:2.3:h:siemens:6gk5204-0ba00-2yf2:-
-
cpe:2.3:h:siemens:6gk5204-2aa00-2gf2:-
-
cpe:2.3:h:siemens:6gk5204-2aa00-2yf2:-
-
cpe:2.3:h:siemens:6gk5205-3bb00-2ab2:-
-
cpe:2.3:h:siemens:6gk5205-3bb00-2tb2:-
-
cpe:2.3:h:siemens:6gk5205-3bd00-2ab2:-
-
cpe:2.3:h:siemens:6gk5205-3bd00-2tb2:-
-
cpe:2.3:h:siemens:6gk5205-3bf00-2ab2:-
-
cpe:2.3:h:siemens:6gk5205-3bf00-2tb2:-
-
cpe:2.3:h:siemens:6gk5206-2bb00-2ac2:-
-
cpe:2.3:h:siemens:6gk5206-2bd00-2ac2:-
-
cpe:2.3:h:siemens:6gk5206-2bs00-2ac2:-
-
cpe:2.3:h:siemens:6gk5206-2bs00-2fc2:-
-
cpe:2.3:h:siemens:6gk5206-2gs00-2ac2:-
-
cpe:2.3:h:siemens:6gk5206-2gs00-2fc2:-
-
cpe:2.3:h:siemens:6gk5206-2gs00-2tc2:-
-
cpe:2.3:h:siemens:6gk5206-2rs00-2ac2:-
-
cpe:2.3:h:siemens:6gk5206-2rs00-5ac2:-
-
cpe:2.3:h:siemens:6gk5206-2rs00-5fc2:-
-
cpe:2.3:h:siemens:6gk5208-0ba00-2ab2:-
-
cpe:2.3:h:siemens:6gk5208-0ba00-2ac2:-
-
cpe:2.3:h:siemens:6gk5208-0ba00-2fc2:-
-
cpe:2.3:h:siemens:6gk5208-0ba00-2tb2:-
-
cpe:2.3:h:siemens:6gk5208-0ga00-2ac2:-
-
cpe:2.3:h:siemens:6gk5208-0ga00-2fc2:-
-
cpe:2.3:h:siemens:6gk5208-0ga00-2tc2:-
-
cpe:2.3:h:siemens:6gk5208-0ha00-2as6:-
-
cpe:2.3:h:siemens:6gk5208-0ha00-2es6:-
-
cpe:2.3:h:siemens:6gk5208-0ha00-2ts6:-
-
cpe:2.3:h:siemens:6gk5208-0ra00-2ac2:-
-
cpe:2.3:h:siemens:6gk5208-0ra00-5ac2:-
-
cpe:2.3:h:siemens:6gk5208-0ua00-5es6:-
-
cpe:2.3:h:siemens:6gk5213-3bb00-2ab2:-
-
cpe:2.3:h:siemens:6gk5213-3bb00-2tb2:-
-
cpe:2.3:h:siemens:6gk5213-3bd00-2ab2:-
-
cpe:2.3:h:siemens:6gk5213-3bd00-2tb2:-
-
cpe:2.3:h:siemens:6gk5213-3bf00-2ab2:-
-
cpe:2.3:h:siemens:6gk5213-3bf00-2tb2:-
-
cpe:2.3:h:siemens:6gk5216-0ba00-2ab2:-
-
cpe:2.3:h:siemens:6gk5216-0ba00-2ac2:-
-
cpe:2.3:h:siemens:6gk5216-0ba00-2fc2:-
-
cpe:2.3:h:siemens:6gk5216-0ba00-2tb2:-
-
cpe:2.3:h:siemens:6gk5216-0ha00-2as6:-
-
cpe:2.3:h:siemens:6gk5216-0ha00-2es6:-
-
cpe:2.3:h:siemens:6gk5216-0ha00-2ts6:-
-
cpe:2.3:h:siemens:6gk5216-0ua00-5es6:-
-
cpe:2.3:h:siemens:6gk5216-3rs00-2ac2:-
-
cpe:2.3:h:siemens:6gk5216-3rs00-5ac2:-
-
cpe:2.3:h:siemens:6gk5216-4bs00-2ac2:-
-
cpe:2.3:h:siemens:6gk5216-4gs00-2ac2:-
-
cpe:2.3:h:siemens:6gk5216-4gs00-2fc2:-
-
cpe:2.3:h:siemens:6gk5216-4gs00-2tc2:-
-
cpe:2.3:h:siemens:6gk5224-0ba00-2ac2:-
-
cpe:2.3:h:siemens:6gk5224-4gs00-2ac2:-
-
cpe:2.3:h:siemens:6gk5224-4gs00-2fc2:-
-
cpe:2.3:h:siemens:6gk5224-4gs00-2tc2:-
-
cpe:2.3:h:siemens:6gk5324-0ba00-2ar3:-
-
cpe:2.3:h:siemens:6gk5324-0ba00-3ar3:-
-
cpe:2.3:h:siemens:6gk5326-2qs00-3ar3:-
-
cpe:2.3:h:siemens:6gk5326-2qs00-3rr3:-
-
cpe:2.3:h:siemens:6gk5328-4fs00-2ar3:-
-
cpe:2.3:h:siemens:6gk5328-4fs00-2rr3:-
-
cpe:2.3:h:siemens:6gk5328-4fs00-3ar3:-
-
cpe:2.3:h:siemens:6gk5328-4fs00-3rr3:-
-
cpe:2.3:h:siemens:6gk5328-4ss00-2ar3:-
-
cpe:2.3:h:siemens:6gk5328-4ss00-3ar3:-
-
cpe:2.3:o:siemens:6ag1206-2bb00-7ac2_firmware:-
-
cpe:2.3:o:siemens:6ag1206-2bs00-7ac2_firmware:-
-
cpe:2.3:o:siemens:6ag1208-0ba00-7ac2_firmware:-
-
cpe:2.3:o:siemens:6ag1216-4bs00-7ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5204-0ba00-2gf2_firmware:-
-
cpe:2.3:o:siemens:6gk5204-0ba00-2yf2_firmware:-
-
cpe:2.3:o:siemens:6gk5204-2aa00-2gf2_firmware:-
-
cpe:2.3:o:siemens:6gk5204-2aa00-2yf2_firmware:-
-
cpe:2.3:o:siemens:6gk5205-3bb00-2ab2_firmware:-
-
cpe:2.3:o:siemens:6gk5205-3bb00-2tb2_firmware:-
-
cpe:2.3:o:siemens:6gk5205-3bd00-2ab2_firmware:-
-
cpe:2.3:o:siemens:6gk5205-3bd00-2tb2_firmware:-
-
cpe:2.3:o:siemens:6gk5205-3bf00-2ab2_firmware:-
-
cpe:2.3:o:siemens:6gk5205-3bf00-2tb2_firmware:-
-
cpe:2.3:o:siemens:6gk5205-3bf00-2tb2_firmware:4.5
-
cpe:2.3:o:siemens:6gk5206-2bb00-2ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5206-2bd00-2ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5206-2bs00-2ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5206-2bs00-2fc2_firmware:-
-
cpe:2.3:o:siemens:6gk5206-2gs00-2ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5206-2gs00-2fc2_firmware:-
-
cpe:2.3:o:siemens:6gk5206-2gs00-2tc2_firmware:-
-
cpe:2.3:o:siemens:6gk5206-2rs00-2ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5206-2rs00-5ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5206-2rs00-5fc2_firmware:-
-
cpe:2.3:o:siemens:6gk5208-0ba00-2ab2_firmware:-
-
cpe:2.3:o:siemens:6gk5208-0ba00-2ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5208-0ba00-2fc2_firmware:-
-
cpe:2.3:o:siemens:6gk5208-0ba00-2tb2_firmware:-
-
cpe:2.3:o:siemens:6gk5208-0ga00-2ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5208-0ga00-2fc2_firmware:-
-
cpe:2.3:o:siemens:6gk5208-0ga00-2tc2_firmware:-
-
cpe:2.3:o:siemens:6gk5208-0ha00-2as6_firmware:-
-
cpe:2.3:o:siemens:6gk5208-0ha00-2es6_firmware:-
-
cpe:2.3:o:siemens:6gk5208-0ha00-2ts6_firmware:-
-
cpe:2.3:o:siemens:6gk5208-0ra00-2ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5208-0ra00-5ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5208-0ua00-5es6_firmware:-
-
cpe:2.3:o:siemens:6gk5213-3bb00-2ab2_firmware:-
-
cpe:2.3:o:siemens:6gk5213-3bb00-2tb2_firmware:-
-
cpe:2.3:o:siemens:6gk5213-3bd00-2ab2_firmware:-
-
cpe:2.3:o:siemens:6gk5213-3bd00-2tb2_firmware:-
-
cpe:2.3:o:siemens:6gk5213-3bf00-2ab2_firmware:-
-
cpe:2.3:o:siemens:6gk5213-3bf00-2tb2_firmware:-
-
cpe:2.3:o:siemens:6gk5216-0ba00-2ab2_firmware:-
-
cpe:2.3:o:siemens:6gk5216-0ba00-2ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5216-0ba00-2fc2_firmware:-
-
cpe:2.3:o:siemens:6gk5216-0ba00-2tb2_firmware:-
-
cpe:2.3:o:siemens:6gk5216-0ha00-2as6_firmware:-
-
cpe:2.3:o:siemens:6gk5216-0ha00-2es6_firmware:-
-
cpe:2.3:o:siemens:6gk5216-0ha00-2ts6_firmware:-
-
cpe:2.3:o:siemens:6gk5216-0ua00-5es6_firmware:-
-
cpe:2.3:o:siemens:6gk5216-3rs00-2ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5216-3rs00-5ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5216-4bs00-2ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5216-4gs00-2ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5216-4gs00-2fc2_firmware:-
-
cpe:2.3:o:siemens:6gk5216-4gs00-2tc2_firmware:-
-
cpe:2.3:o:siemens:6gk5224-0ba00-2ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5224-4gs00-2ac2_firmware:-
-
cpe:2.3:o:siemens:6gk5224-4gs00-2fc2_firmware:-
-
cpe:2.3:o:siemens:6gk5224-4gs00-2tc2_firmware:-
-
cpe:2.3:o:siemens:6gk5324-0ba00-2ar3_firmware:-
-
cpe:2.3:o:siemens:6gk5324-0ba00-3ar3_firmware:-
-
cpe:2.3:o:siemens:6gk5326-2qs00-3ar3_firmware:-
-
cpe:2.3:o:siemens:6gk5326-2qs00-3rr3_firmware:-
-
cpe:2.3:o:siemens:6gk5328-4fs00-2ar3_firmware:-
-
cpe:2.3:o:siemens:6gk5328-4fs00-2rr3_firmware:-
-
cpe:2.3:o:siemens:6gk5328-4fs00-3ar3_firmware:-
-
cpe:2.3:o:siemens:6gk5328-4fs00-3rr3_firmware:-
-
cpe:2.3:o:siemens:6gk5328-4ss00-2ar3_firmware:-
-
cpe:2.3:o:siemens:6gk5328-4ss00-3ar3_firmware:-