CVE-2024-23811: Malicious File Upload
First published: Tue Feb 13 2024(Updated: )
A vulnerability has been identified in SINEC NMS (All versions < V2.0 SP1). The affected application allows users to upload arbitrary files via TFTP. This could allow an attacker to upload malicious firmware images or other files, that could potentially lead to remote code execution.
Credit: productcert@siemens.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens SINEC NMS SP1 Update 1 | <2.0 | |
| Siemens SINEC NMS SP1 Update 1 | =2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2024-23811?
CVE-2024-23811 is considered a high severity vulnerability due to its potential for remote code execution.
How do I fix CVE-2024-23811?
To remediate CVE-2024-23811, upgrade your Siemens SINEC NMS to version 2.0 SP1 or later.
What are the potential impacts of CVE-2024-23811?
Exploiting CVE-2024-23811 could allow an attacker to upload malicious firmware, leading to unauthorized remote code execution.
Which versions of SINEC NMS are affected by CVE-2024-23811?
CVE-2024-23811 affects all versions of SINEC NMS prior to version 2.0 SP1.
Is there any mitigation for CVE-2024-23811 before upgrading?
Currently, the best mitigation for CVE-2024-23811 is to restrict file upload capabilities or limit TFTP access until an upgrade can be performed.
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/type
- collector/epss-latest
- source/FIRST
- agent/epss
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/softwarecombine
- agent/event
- agent/source
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/siemens
- canonical/siemens sinec nms sp1 update 1
- version/siemens sinec nms sp1 update 1/2.0