CVE-2023-33921 MEDIUM

CVE-2023-33921

Vendor Siemens
Product CP-8031 MASTER MODULE
Weakness CWE-749
Published June 13, 2023
Last update February 13, 2025

CVSS base score

6.8/10
Attack vector Physical
Attack complexity Low
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

What the vulnerability does

01Description

A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05), CP-8050 MASTER MODULE (All versions < CPCI85 V05). The affected devices contain an exposed UART console login interface. An attacker with direct physical access could try to bruteforce or crack the root password to login to the device.

Key dates

02Disclosure timeline

June 13, 2023 CVE published
February 13, 2025 Record updated