CVE-2022-29875
9.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD
Description
A vulnerability has been identified in Biograph Horizon PET/CT Systems (All VJ30 versions < VJ30C-UD01), MAGNETOM Family (NUMARIS X: VA12M, VA12S, VA10B, VA20A, VA30A, VA31A), MAMMOMAT Revelation (All VC20 versions < VC20D), NAEOTOM Alpha (All VA40 versions < VA40 SP2), SOMATOM X.cite (All versions < VA30 SP5 or VA40 SP2), SOMATOM X.creed (All versions < VA30 SP5 or VA40 SP2), SOMATOM go.All (All versions < VA30 SP5 or VA40 SP2), SOMATOM go.Now (All versions < VA30 SP5 or VA40 SP2), SOMATOM go.Open Pro (All versions < VA30 SP5 or VA40 SP2), SOMATOM go.Sim (All versions < VA30 SP5 or VA40 SP2), SOMATOM go.Top (All versions < VA30 SP5 or VA40 SP2), SOMATOM go.Up (All versions < VA30 SP5 or VA40 SP2), Symbia E/S (All VB22 versions < VB22A-UD03), Symbia Evo (All VB22 versions < VB22A-UD03), Symbia Intevo (All VB22 versions < VB22A-UD03), Symbia T (All VB22 versions < VB22A-UD03), Symbia.net (All VB22 versions < VB22A-UD03), syngo.via VB10 (All versions), syngo.via VB20 (All versions), syngo.via VB30 (All versions), syngo.via VB40 (All versions < VB40B HF06), syngo.via VB50 (All versions), syngo.via VB60 (All versions < VB60B HF02). The application deserialises untrusted data without sufficient validations that could result in an arbitrary deserialization. This could allow an unauthenticated attacker to execute code in the affected system if ports 32912/tcp or 32914/tcp are reachable.
Affected (44)
Products: Siemens: Biograph Horizon Pet/ct Systems Firmware, Magnetom Numaris X Firmware, Mammomat Revelation Firmware, Naeotom Alpha Firmware, Somatom X.cite Firmware, Somatom X.creed Firmware, Somatom Go.all Firmware, Somatom Go.now Firmware, Somatom Go.open Pro Firmware, Somatom Go.sim Firmware, Somatom Go.up Firmware, Symbia E Firmware, Symbia S Firmware, Symbia Evo Firmware, Symbia Intevo Firmware, Symbia T Firmware, Symbia.net, Syngo.via
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| From vj30 to vj30c-ud01 |
| Running on/with | Platform Versions |
|---|---|
Siemens Biograph Horizon Pet/ct Systems | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version va10b |
| Running on/with | Platform Versions |
|---|---|
Siemens Magnetom Numaris X | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| From vc20 to vc20d |
| Running on/with | Platform Versions |
|---|---|
Siemens Mammomat Revelation | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Version va40 |
| Running on/with | Platform Versions |
|---|---|
Siemens Naeotom Alpha | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before va30 |
| Running on/with | Platform Versions |
|---|---|
Siemens Somatom X.cite | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before va30 |
| Running on/with | Platform Versions |
|---|---|
Siemens Somatom X.creed | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before va30 |
| Running on/with | Platform Versions |
|---|---|
Siemens Somatom Go.all | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before va30 |
| Running on/with | Platform Versions |
|---|---|
Siemens Somatom Go.now | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before va30 |
| Running on/with | Platform Versions |
|---|---|
Siemens Somatom Go.open Pro | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before va30 |
| Running on/with | Platform Versions |
|---|---|
Siemens Somatom Go.sim | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before va30 |
| Running on/with | Platform Versions |
|---|---|
Siemens Somatom Go.up | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| From vb22 to vb22a-ud03 |
| Running on/with | Platform Versions |
|---|---|
Siemens Symbia E | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| From vb22 to vb22a-ud03 |
| Running on/with | Platform Versions |
|---|---|
Siemens Symbia S | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| From vb22 to vb22a-ud03 |
| Running on/with | Platform Versions |
|---|---|
Siemens Symbia Evo | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| From vb22 to vb22a-ud03 |
| Running on/with | Platform Versions |
|---|---|
Siemens Symbia Intevo | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| From vb22 to vb22a-ud03 |
| Running on/with | Platform Versions |
|---|---|
Siemens Symbia T | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| From vb22 to vb22a-ud03 |
References (2)
Source: productcert@siemens.com
MitigationVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
MitigationVendor Advisory
Timeline
No history available yet.