CVE-2024-46886 - Vulnerability Details

Description

The web server of affected devices does not properly validate input that is used for a user redirection. This could allow an attacker to make the server redirect the legitimate user to an attacker-chosen URL. For a successful exploit, the legitimate user must actively click on an attacker-crafted link.

Published: 2024-10-08

Score: 5.1 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Siemens

SIMATIC Drive Controller CPU 1504D TF

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC Drive Controller CPU 1507D TF

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC ET 200SP CPU 1510SP F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC ET 200SP CPU 1510SP F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC ET 200SP CPU 1510SP-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC ET 200SP CPU 1510SP-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC ET 200SP CPU 1512SP F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC ET 200SP CPU 1512SP F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC ET 200SP CPU 1512SP-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC ET 200SP CPU 1512SP-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC ET 200SP CPU 1514SP F-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC ET 200SP CPU 1514SP-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC ET 200SP CPU 1514SPT F-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC ET 200SP CPU 1514SPT-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V2 CPUs - Windows OS

unknown

Version	Status	Constraints
`0`	affected	< V21.9.8

Siemens

SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Industrial OS

unknown

Version	Status	Constraints
`0`	affected	< V31.1.4

Siemens

SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V3 CPUs - Windows OS

unknown

Version	Status	Constraints
`0`	affected	< V31.1.4

Siemens

SIMATIC S7-1200 CPU 1211C AC/DC/Rly

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1211C DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1211C DC/DC/Rly

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1212C AC/DC/Rly

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1212C DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1212C DC/DC/Rly

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1212FC DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1212FC DC/DC/Rly

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1214C AC/DC/Rly

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1214C DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1214C DC/DC/Rly

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1214FC DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1214FC DC/DC/Rly

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1215C AC/DC/Rly

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1215C DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1215C DC/DC/Rly

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1215FC DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1215FC DC/DC/Rly

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1200 CPU 1217C DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIMATIC S7-1500 CPU 1511-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1511-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1511-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1511C-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1511C-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1511C-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1511F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1511F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1511F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1511T-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1511T-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1511TF-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1511TF-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1512C-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1512C-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1512C-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1513-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1513-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1513-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1513F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1513F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1513F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1513pro F-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1513pro-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1515-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1515-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1515-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1515F-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1515F-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1515F-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1515T-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1515T-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1515TF-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1515TF-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1516-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1516-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1516-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1516F-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1516F-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU 1516F-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1516pro F-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1516pro-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1516T-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1516TF-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1517-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1517F-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1517F-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1517T-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1517TF-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1518-4 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1518-4 PN/DP MFP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1518-4 PN/DP MFP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1518F-4 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1518T-4 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU 1518TF-4 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIMATIC S7-1500 Software Controller CPU 1507S F V2

unknown

Version	Status	Constraints
`0`	affected	< V21.9.8

Siemens

SIMATIC S7-1500 Software Controller CPU 1507S F V3

unknown

Version	Status	Constraints
`0`	affected	< V31.1.4

Siemens

SIMATIC S7-1500 Software Controller CPU 1507S V2

unknown

Version	Status	Constraints
`0`	affected	< V21.9.8

Siemens

SIMATIC S7-1500 Software Controller CPU 1507S V3

unknown

Version	Status	Constraints
`0`	affected	< V31.1.4

Siemens

SIMATIC S7-1500 Software Controller CPU 1508S F V2

unknown

Version	Status	Constraints
`0`	affected	< V21.9.8

Siemens

SIMATIC S7-1500 Software Controller CPU 1508S F V3

unknown

Version	Status	Constraints
`0`	affected	< V31.1.4

Siemens

SIMATIC S7-1500 Software Controller CPU 1508S T V3

unknown

Version	Status	Constraints
`0`	affected	< V31.1.4

Siemens

SIMATIC S7-1500 Software Controller CPU 1508S TF V3

unknown

Version	Status	Constraints
`0`	affected	< V31.1.4

Siemens

SIMATIC S7-1500 Software Controller CPU 1508S V2

unknown

Version	Status	Constraints
`0`	affected	< V21.9.8

Siemens

SIMATIC S7-1500 Software Controller CPU 1508S V3

unknown

Version	Status	Constraints
`0`	affected	< V31.1.4

Siemens

SIMATIC S7-1500 Software Controller Linux V2

unknown

Version	Status	Constraints
`0`	affected	< *

Siemens

SIMATIC S7-1500 Software Controller Linux V3

unknown

Version	Status	Constraints
`0`	affected	< V31.1.4

Siemens

SIMATIC S7-PLCSIM Advanced

unknown

Version	Status	Constraints
`0`	affected	< V7.0

Siemens

SIPLUS ET 200SP CPU 1510SP F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS ET 200SP CPU 1510SP F-1 PN RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS ET 200SP CPU 1510SP-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS ET 200SP CPU 1510SP-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS ET 200SP CPU 1510SP-1 PN RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS ET 200SP CPU 1510SP-1 PN RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS ET 200SP CPU 1512SP F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS ET 200SP CPU 1512SP F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS ET 200SP CPU 1512SP F-1 PN RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS ET 200SP CPU 1512SP F-1 PN RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS ET 200SP CPU 1512SP-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS ET 200SP CPU 1512SP-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS ET 200SP CPU 1512SP-1 PN RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS ET 200SP CPU 1512SP-1 PN RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1200 CPU 1212 AC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1212 DC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1212 DC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1212C AC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1212C DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1212C DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1214 AC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1214 DC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1214C AC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1214C AC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1214C DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1214C DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1214C DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1214C DC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1214C DC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1214FC DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1214FC DC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1215 AC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1215 AC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1215 DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1215 DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1215 DC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1215 DC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1215 DC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1215C AC/DC/RLY

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1215C DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1200 CPU 1215FC DC/DC/DC

unknown

Version	Status	Constraints
`0`	affected	< V4.7.0

Siemens

SIPLUS S7-1500 CPU 1511-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1511-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1511-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1511-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1511-1 PN T1 RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1511-1 PN T1 RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1511-1 PN TX RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1511-1 PN TX RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1511F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1511F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1513-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1513-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1513-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1513-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1513F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1513F-1 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1515F-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1515F-2 PN

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1515F-2 PN RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1515F-2 PN T2 RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1515R-2 PN TX RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1516-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1516-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1516-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1516-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1516-3 PN/DP RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1516-3 PN/DP TX RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1516F-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1516F-3 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1516F-3 PN/DP RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1516F-3 PN/DP RAIL

unknown

Version	Status	Constraints
`0`	affected	< V2.9.8

Siemens

SIPLUS S7-1500 CPU 1518-4 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIPLUS S7-1500 CPU 1518-4 PN/DP MFP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

Siemens

SIPLUS S7-1500 CPU 1518F-4 PN/DP

unknown

Version	Status	Constraints
`0`	affected	< V3.1.4

No data.

No data available yet.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2024-42133	The web server of affected devices does not properly validate input that is used for a user redirection. This could allow an attacker to make the server redirect the legitimate user to an attacker-chosen URL. For a successful exploit, the legitimate user must actively click on an attacker-crafted link.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction Active

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact Low

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00093.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://cert-portal.siemens.com/productcert/html/ssa-876787.html

History

Tue, 10 Jun 2025 15:30:00 +0000

Type	Values Removed	Values Added
Metrics	cvssV3_1 `{'score': 4.7, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N/E:P/RL:O/RC:C'}`	cvssV3_1 `{'score': 4.7, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N'}`

Wed, 09 Oct 2024 15:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Tue, 08 Oct 2024 08:45:00 +0000

Type	Values Removed	Values Added
Description		The web server of affected devices does not properly validate input that is used for a user redirection. This could allow an attacker to make the server redirect the legitimate user to an attacker-chosen URL. For a successful exploit, the legitimate user must actively click on an attacker-crafted link.
Weaknesses		CWE-601
References		https://cert-portal.siemens.com/productcert/html/ssa-876787.html
Metrics		cvssV3_1 `{'score': 4.7, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N/E:P/RL:O/RC:C'}` cvssV4_0 `{'score': 5.1, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N'}`

Subscriptions

No data.

MITRE

Status: PUBLISHED

Assigner: siemens

Published: 2024-10-08T08:40:41.244Z

Updated: 2025-10-14T09:15:03.919Z

Reserved: 2024-09-12T07:06:38.064Z

Link: CVE-2024-46886

Vulnrichment

Updated: 2024-10-09T14:55:19.468Z

NVD

Status : Deferred

Published: 2024-10-08T09:15:16.093

Modified: 2026-04-15T00:35:42.020

Link: CVE-2024-46886

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-601

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction Active

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact None

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact Low

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction Required

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object