CVE-2024-34057

Triangle Microworks TMW IEC 61850 Client source code libraries before 12.2.0 lack a buffer size check when processing received messages. The resulting buffer overflow can cause a crash, resulting in a denial of service.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://trianglemicroworks.com/products/source-code-libraries/iec-61850-scl-pages/what%27s-new	Release Notes
https://www.cisa.gov/news-events/ics-advisories/icsa-24-256-16	Third Party Advisory US Government Resource

Configurations

Configuration 1 (hide)

cpe:2.3:a:trianglemicroworks:iec_61850_source_code_library:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:siemens:sicam_a8000_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:sicam_a8000:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:siemens:sicam_scc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:sicam_scc:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:siemens:sicam_egs_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:sicam_egs:-:*:*:*:*:*:*:*

Configuration 5 (hide)

OR	cpe:2.3:a:siemens:sicam_s8000::::::::
	cpe:2.3:a:siemens:sitipe_at::::::::

History

No history.

Information

Published : 2024-09-18 19:15

Updated : 2024-09-25 17:08

NVD link : CVE-2024-34057

Mitre link : CVE-2024-34057

CVE.ORG link : CVE-2024-34057

JSON object : View

Products Affected

siemens

sicam_scc
sicam_a8000
sicam_a8000_firmware
sicam_s8000
sicam_scc_firmware
sitipe_at
sicam_egs_firmware
sicam_egs

trianglemicroworks

iec_61850_source_code_library

CWE

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

{"id": "CVE-2024-34057", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.2, "exploitabilityScore": 3.9}]}, "published": "2024-09-18T19:15:40.777", "references": [{"url": "https://trianglemicroworks.com/products/source-code-libraries/iec-61850-scl-pages/what%27s-new", "tags": ["Release Notes"], "source": "cve@mitre.org"}, {"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-24-256-16", "tags": ["Third Party Advisory", "US Government Resource"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-120"}]}, {"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-120"}]}], "descriptions": [{"lang": "en", "value": "Triangle Microworks TMW IEC 61850 Client source code libraries before 12.2.0 lack a buffer size check when processing received messages. The resulting buffer overflow can cause a crash, resulting in a denial of service."}, {"lang": "es", "value": "Las librer\u00edas de c\u00f3digo fuente de Triangle Microworks TMW IEC 61850 Client anteriores a la versi\u00f3n 12.2.0 carecen de una comprobaci\u00f3n del tama\u00f1o del b\u00fafer al procesar los mensajes recibidos. El desbordamiento del b\u00fafer resultante puede provocar un bloqueo, lo que da como resultado una denegaci\u00f3n de servicio."}], "lastModified": "2024-09-25T17:08:16.017", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:trianglemicroworks:iec_61850_source_code_library:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C3253ACC-02E5-4AFD-AAA0-2F47E5AD3D26", "versionEndExcluding": "12.2.0"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:sicam_a8000_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6EA612FA-5E60-4278-A7A3-9C28E5857AD8", "versionEndExcluding": "05.30"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:sicam_a8000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5BF612C4-56F9-4946-86E5-6D7C309E195F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:sicam_scc_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1760C8BA-E26C-48BD-8733-801C5245B1D0", "versionEndExcluding": "10.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:sicam_scc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "26100EEE-4859-41BD-83A8-F2D57FC3F5C1"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:sicam_egs_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D8AAD69-99AA-48C7-AD40-431FC65085AC", "versionEndExcluding": "05.30"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:sicam_egs:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B926004A-C343-4C15-9AF4-32C1B4EEEEB2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:siemens:sicam_s8000:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48484B01-98F1-41CB-876D-5DE76E65E7B2", "versionEndExcluding": "05.30"}, {"criteria": "cpe:2.3:a:siemens:sitipe_at:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5A83D1DC-FCF0-4E05-BF26-CFDFAC4A2513"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}