ssa-515903
Vulnerability from csaf_siemens
Published
2025-03-11 00:00
Modified
2025-03-11 00:00
Summary
SSA-515903: Multiple Vulnerabilities in SiPass integrated AC5102 / ACC-G2 and ACC-AP
Notes
Summary
SiPass integrated ACC (Advanced Central Controller) devices contain multiple vulnerabilities that could allow attackers to execute commands on the devices with root privileges and access sensitive data.
Siemens has released new versions for the affected products and recommends to update to the latest versions.
General Recommendations
As a general security measure Siemens strongly recommends to protect network access to affected products with appropriate mechanisms. It is advised to follow recommended security practices in order to run the devices in a protected IT environment.
Additional Resources
For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use
The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)",
"tlp": {
"label": "WHITE"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "SiPass integrated ACC (Advanced Central Controller) devices contain multiple vulnerabilities that could allow attackers to execute commands on the devices with root privileges and access sensitive data.\n\nSiemens has released new versions for the affected products and recommends to update to the latest versions.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure Siemens strongly recommends to protect network access to affected products with appropriate mechanisms. It is advised to follow recommended security practices in order to run the devices in a protected IT environment.",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "productcert@siemens.com",
"name": "Siemens ProductCERT",
"namespace": "https://www.siemens.com"
},
"references": [
{
"category": "self",
"summary": "SSA-515903: Multiple Vulnerabilities in SiPass integrated AC5102 / ACC-G2 and ACC-AP - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-515903.html"
},
{
"category": "self",
"summary": "SSA-515903: Multiple Vulnerabilities in SiPass integrated AC5102 / ACC-G2 and ACC-AP - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-515903.json"
}
],
"title": "SSA-515903: Multiple Vulnerabilities in SiPass integrated AC5102 / ACC-G2 and ACC-AP",
"tracking": {
"current_release_date": "2025-03-11T00:00:00Z",
"generator": {
"engine": {
"name": "Siemens ProductCERT CSAF Generator",
"version": "1"
}
},
"id": "SSA-515903",
"initial_release_date": "2025-03-11T00:00:00Z",
"revision_history": [
{
"date": "2025-03-11T00:00:00Z",
"legacy_version": "1.0",
"number": "1",
"summary": "Publication Date"
}
],
"status": "interim",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV6.4.8",
"product": {
"name": "SiPass integrated AC5102 (ACC-G2)",
"product_id": "1"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cV6.4.9",
"product": {
"name": "SiPass integrated AC5102 (ACC-G2)",
"product_id": "2"
}
}
],
"category": "product_name",
"name": "SiPass integrated AC5102 (ACC-G2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV6.4.8",
"product": {
"name": "SiPass integrated ACC-AP",
"product_id": "3"
}
},
{
"category": "product_version_range",
"name": "vers:all/\u003cV6.4.9",
"product": {
"name": "SiPass integrated ACC-AP",
"product_id": "4"
}
}
],
"category": "product_name",
"name": "SiPass integrated ACC-AP"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-52285",
"cwe": {
"id": "CWE-306",
"name": "Missing Authentication for Critical Function"
},
"notes": [
{
"category": "summary",
"text": "Affected devices expose several MQTT URLs without authentication. This could allow an unauthenticated remote attacker to access sensitive data.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"3"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V6.4.8 or later version",
"product_ids": [
"1",
"3"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"1",
"3"
]
}
],
"title": "CVE-2024-52285"
},
{
"cve": "CVE-2025-27493",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "Affected devices improperly sanitize user input for specific commands on the telnet command line interface. This could allow an authenticated local administrator to escalate privileges by injecting arbitrary commands that are executed with root privileges.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"2",
"4"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Set an individual strong password for the administrator account (\"SIEMENS\")",
"product_ids": [
"2",
"4"
]
},
{
"category": "vendor_fix",
"details": "Update to V6.4.9 or later version",
"product_ids": [
"2",
"4"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2",
"4"
]
}
],
"title": "CVE-2025-27493"
},
{
"cve": "CVE-2025-27494",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "Affected devices improperly sanitize input for the pubkey endpoint of the REST API. This could allow an authenticated remote administrator to escalate privileges by injecting arbitrary commands that are executed with root privileges.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"2",
"4"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Set an individual strong password for the administrator account (\"SIEMENS\")",
"product_ids": [
"2",
"4"
]
},
{
"category": "vendor_fix",
"details": "Update to V6.4.9 or later version",
"product_ids": [
"2",
"4"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"2",
"4"
]
}
],
"title": "CVE-2025-27494"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…