Remote code execution in Siemens Sinteso EN and Cerberus PRO EN Fire Protection Systems

1) Buffer overflow

EUVDB-ID: #VU87488

Risk: High

CVSSv3.1: 8.7 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2024-22039

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error in the network communication library. A remote attacker can trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

Cerberus PRO EN Engineering Tool: before IP8

Cerberus PRO EN Fire Panel FC72x: before IP8

Cerberus PRO EN X200 Cloud Distribution: before 4.0.5016

Cerberus PRO EN X300 Cloud Distribution: before 4.2.5015

Sinteso FS20 EN Engineering Tool: before MP8

Sinteso FS20 EN Fire Panel FC20: before MP8

Sinteso FS20 EN X200 Cloud Distribution: before 4.0.5016

Sinteso FS20 EN X300 Cloud Distribution: before 4.2.5015

Sinteso Mobile: before 3.0.0

External links

http://cert-portal.siemens.com/productcert/html/ssa-225840.html

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.