Rewterz Threat Alert – Lokibot Malware – Active IOCs
March 9, 2022Rewterz Threat Alert – Conti Ransomware – Active IOCs
March 9, 2022Rewterz Threat Alert – Lokibot Malware – Active IOCs
March 9, 2022Rewterz Threat Alert – Conti Ransomware – Active IOCs
March 9, 2022Severity
High
Analysis Summary
CVE-2022-24282
Siemens SINEC NMS could allow a remote authenticated attacker to execute arbitrary code on the system, caused by an unsafe deserialization in the JSON objects. By sending specially-crafted input, an attacker could exploit this vulnerability to execute arbitrary code on the system.
CVE-2022-24281
Siemens SINEC NMS is vulnerable to SQL injection. A remote authenticated attacker could send specially-crafted SQL statements to the webserver, which could allow the attacker to view, add, modify or delete information in the back-end database.
Impact
- Code Execution
- Data Manipulation
Indicators Of Compromise
CVE
- CVE-2022-24282
Affected Vendors
Siemens
Affected Products
Siemens SINEC NMS
Remediation
Refer to Siemens Security Advisory for patch, upgrade, or suggested workaround information.