Weak Checksum Algorithm in Siemens Networking Products
CVE-2023-44319
4.9MEDIUM
Key Information:
- Vendor
Siemens
- Status
- Vendor
- CVE Published:
- 14 November 2023
What is CVE-2023-44319?
Siemens devices in the RUGGEDCOM and SCALANCE series are susceptible to a security issue involving a weak checksum algorithm used for configuration backups. This flaw allows an authenticated attacker with administrative privileges, or an attacker who misleads a legitimate administrator, to upload a modified configuration file. Such an action can lead to significant alterations in the device's configuration and operational behavior, potentially compromising network integrity and security.
Affected Version(s)
RUGGEDCOM RM1224 LTE(4G) EU 0
RUGGEDCOM RM1224 LTE(4G) NAM 0
SCALANCE M804PB 0