CVSS: 6.0EPSS: 0%CPEs: 3EXPL: 0CVE-2024-54090
https://notcve.org/view.php?id=CVE-2024-54090
11 Feb 2025 — A vulnerability has been identified in APOGEE PXC Series (BACnet) (All versions), APOGEE PXC Series (P2 Ethernet) (All versions), TALON TC Series (BACnet) (All versions). Affected devices contain an out-of-bounds read in the memory dump function. This could allow an attacker with Medium (MED) or higher privileges to cause the device to enter an insecure cold start state. • https://cert-portal.siemens.com/productcert/html/ssa-615116.html • CWE-125: Out-of-bounds Read •
CVSS: 8.7EPSS: 0%CPEs: 3EXPL: 0CVE-2024-54089
https://notcve.org/view.php?id=CVE-2024-54089
11 Feb 2025 — A vulnerability has been identified in APOGEE PXC Series (BACnet) (All versions), APOGEE PXC Series (P2 Ethernet) (All versions), TALON TC Series (BACnet) (All versions). Affected devices contain a weak encryption mechanism based on a hard-coded key. This could allow an attacker to guess or decrypt the password from the cyphertext. • https://cert-portal.siemens.com/productcert/html/ssa-615116.html • CWE-326: Inadequate Encryption Strength •