VDB

CNVD-2024-13807

CNVD-2024-13807 PUBLISHED

SENTRON PAC Meter产品是用于精确能源管理和透明信息采集的功率测量设备。 Siemens SENTRON 7KM PAC3x20 Devices存在访问控制不当漏洞,该漏洞是由于在制造过程结束时,未正确设置受影响设备的内部闪存的读出保护。攻击者可利用该漏洞读取数据。

Affected Products

VendorProductVersions
Siemens SENTRON 7KM PAC3120 AC/DC(7KM3120-0BA01-1DA0) >= V3.2.3,< V3.3.0
Siemens SENTRON 7KM PAC3220 DC(7KM3220-1BA01-1EA0) >= V3.2.3,< V3.3.0
Siemens SENTRON 7KM PAC3120 DC(7KM3120-1BA01-1EA0) >= V3.2.3,< V3.3.0
Siemens SENTRON 7KM PAC3220 AC/DC(7KM3220-0BA01-1DA0) >= V3.2.3,< V3.3.0

Timeline

  • Mar 13, 2024 CVE ID Reserved
  • Mar 19, 2024 CVE Published

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›