PatchSiren cyber security CVE debrief
CVE-2024-4465 Nozomi Networks CVE debrief
An access control vulnerability in the Reports section of Siemens RUGGEDCOM APE1808LNX devices allows authenticated users with reporting privileges to bypass intended restrictions and modify reporting configuration. The flaw stems from improper enforcement of access controls for limited-privilege users. Successful exploitation requires the attacker to craft a specific application request, which could lead to partial data integrity loss, limited denial of service through disrupted report delivery, limited information disclosure, and potential credential compromise if the SMTP server destination is redirected to an attacker-controlled server. The CVSS v3.1 score of 6.0 (Medium) reflects network attack vector, high attack complexity, low privileges required, no user interaction, changed scope, and low impacts across confidentiality, integrity, and availability. CISA published advisory ICSA-24-284-11 on October 8, 2024, coordinating with Siemens. No known exploitation in the wild has been reported, and this vulnerability is not listed in CISA's Known Exploited Vulnerabilities catalog.
- Vendor
- Nozomi Networks
- Product
- RUGGEDCOM APE1808LNX (6GK6015-0AL20-0GH0)
- CVSS
- MEDIUM 6
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2024-10-08
- Original CVE updated
- 2024-10-08
- Advisory published
- 2024-10-08
- Advisory updated
- 2024-10-08
Who should care
Organizations operating Siemens RUGGEDCOM APE1808LNX industrial networking devices with Guardian/CMC reporting configurations enabled, particularly those in critical infrastructure sectors where report integrity and availability are operational requirements. Security teams responsible for OT/ICS environments, identity and access management administrators, and incident response teams monitoring for configuration tampering or credential compromise via reporting channels.
Technical summary
The vulnerability exists in the Reports section where a specific access restriction is not properly enforced. An authenticated user with reporting privileges can craft an application request to make limited changes to reporting configuration. This can modify SMTP server destinations, causing reports to be sent to unauthorized servers with potential credential exposure, disrupt report delivery causing limited DoS, and enable limited information disclosure. The attack requires network access, high complexity to craft the request, and low-privilege authenticated access. Scope changes due to potential impact on external credential stores.
Defensive priority
medium
Recommended defensive actions
- Apply vendor patch: Upgrade Nozomi Guardian/CMC to version 24.3.1 by contacting Siemens customer support for patch and update information
- Restrict administrative access to affected components to trusted personnel only
- Review and audit current reporting configurations for unauthorized modifications
- Monitor SMTP server configurations for unexpected changes to destination servers
- Validate integrity of externally stored credentials that may have been transmitted via reporting functions
- Implement network segmentation to limit access to reporting infrastructure
- Review authentication and authorization controls for reporting privileges
Evidence notes
Vulnerability description and remediation guidance derived from CISA CSAF advisory ICSA-24-284-11, which references Siemens security advisory SSA-254396. Affected products confirmed as RUGGEDCOM APE1808LNX (6GK6015-0AL20-0GH0) and RUGGEDCOM APE1808LNX CC (6GK6015-0AL20-0GH1). CVSS vector CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:L sourced from CSAF document. Vendor fix available in Nozomi Guardian/CMC V24.3.1 per remediation details.
Official resources
-
CVE-2024-4465 CVE record
CVE.org
-
CVE-2024-4465 NVD detail
NVD
-
Source item URL
cisa_csaf
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
-
Source reference
Reference
2024-10-08