{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-19T08:15:37.456","vulnerabilities":[{"cve":{"id":"CVE-2023-36380","sourceIdentifier":"productcert@siemens.com","published":"2023-10-10T11:15:11.817","lastModified":"2024-11-21T08:09:38.097","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05.11 (only with activated debug support)), CP-8050 MASTER MODULE (All versions < CPCI85 V05.11 (only with activated debug support)). The affected devices contain a hard-coded ID in the SSH `authorized_keys` configuration file. An attacker with knowledge of the corresponding private key could login to the device via SSH. Only devices with activated debug support are affected."},{"lang":"es","value":"Se ha identificado una vulnerabilidad en: \nCP-8031 MASTER MODULE (Todas las versiones &lt; CPCI85 V05.11 (solo con soporte de depuración activado)), \nCP-8050 MASTER MODULE (Todas las versiones &lt; CPCI85 V05.11 (solo con soporte de depuración activado)). \nLos dispositivos afectados contienen una identificación codificada en el archivo de configuración SSH `authorized_keys`. Un atacante con conocimiento de la clave privada correspondiente podría iniciar sesión en el dispositivo a través de SSH. Sólo se ven afectados los dispositivos con soporte de depuración activado."}],"metrics":{"cvssMetricV31":[{"source":"productcert@siemens.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":7.8,"baseSeverity":"HIGH","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":1.8,"impactScore":5.9}]},"weaknesses":[{"source":"productcert@siemens.com","type":"Secondary","description":[{"lang":"en","value":"CWE-798"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:cp-8050_firmware:*:*:*:*:cpci85:*:*:*","versionEndExcluding":"05.11","matchCriteriaId":"5DDCBDDD-3936-462A-A93A-696AAEBB4EBA"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:cp-8050:-:*:*:*:*:*:*:*","matchCriteriaId":"929EF3DE-C8E6-49DA-98C0-13AB4C966AA7"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:cp-8031_firmware:*:*:*:*:cpci85:*:*:*","versionEndExcluding":"05.11","matchCriteriaId":"36A1AC2A-A6D1-4C2F-9439-FA093EB6B44D"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:cp-8031:-:*:*:*:*:*:*:*","matchCriteriaId":"D24F9EDC-DA14-477D-B9C1-C9BF56E9B057"}]}]}],"references":[{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-134651.pdf","source":"productcert@siemens.com","tags":["Patch","Vendor Advisory"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-134651.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"]}]}}]}