SINEC NMS Vulnerability: Authenticated Data Export Leads to File System Access
CVE-2024-31978

7.6HIGH

Key Information:

Vendor: Siemens
Status: Sinec Nms
Vendor: CVE Published:; 9 April 2024

What is CVE-2024-31978?

A vulnerability has been identified in the SINEC NMS platform from Siemens that affects all versions prior to V2.0 SP2. This vulnerability is linked to the API endpoint that allows authenticated users to export monitoring data. The API is susceptible to path traversal attacks, which could permit an authenticated attacker to access and download sensitive files from the system's file directory. In certain scenarios, the exploited files may be deleted from the file system after being downloaded, potentially leading to data loss and unauthorized information retrieval.

Affected Version(s)

SINEC NMS 0

References

https://cert-portal.siemens.com/productcert/html/ssa-1284...

CVSS V3.1

Score:

7.6

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 9, 2024
Vulnerability Reserved
Apr 8, 2024