A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). Affected devices contain hardcoded credentials for remote access to the device operating system with root privileges. This could allow unauthenticated remote attackers to gain full access to a device, if they are in possession of these credentials and if the ssh service is enabled (e.g., by exploitation of CVE-2024-41793).
The device software contains hardcoded credentials that enable remote access via SSH protocol with root privileges. An unauthenticated attacker who obtains these credentials can gain full control over the device provided that the SSH service is active. The SSH service can be enabled, for example, by exploiting the related vulnerability CVE-2024-41793, which in practice allows chained exploitation of both flaws.
An attacker can gain full, unauthenticated remote access to the device operating system with root privileges, enabling complete device control, modification of its configuration, reading of measurement data, and potential use of the device as an entry point to the OT network.
Patches available from the manufacturer should be applied in accordance with references (https://cert-portal.siemens.com/productcert/html/ssa-187636.html). Until patches are deployed, it is recommended to disable the SSH service on devices and implement network isolation of devices in accordance with OT/ICS network security principles.
Siemens SENTRON 7KT PAC1260 Data Manager — all software versions
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XSiemens 7kt Pac1260 Data Manager
HWSiemenswszystkie wersjeSiemens 7kt Pac1260 Data Manager Firmware
OSSiemenswszystkie wersje
Related vulnerabilities
Command Injection w Siemens SENTRON 7KT PAC1260 Data Manager – RCE jako root
Command Injection w Siemens SENTRON 7KT PAC1260 Data Manager
Command injection w Siemens SENTRON 7KT PAC1260 Data Manager — RCE jako root
Path traversal w Siemens SENTRON 7KT PAC1260 Data Manager
A vulnerability has been identified in SENTRON 7KT PAC1260 Data Manager (All versions). The web interface of a...