VYPR
Unrated severityNVD Advisory· Published Mar 12, 2024· Updated Dec 16, 2025

CVE-2024-22039

CVE-2024-22039

Description

A vulnerability has been identified in Cerberus PRO EN Engineering Tool (All versions < IP8), Cerberus PRO EN Fire Panel FC72x IP6 (All versions < IP6 SR3), Cerberus PRO EN Fire Panel FC72x IP7 (All versions < IP7 SR5), Cerberus PRO EN X200 Cloud Distribution IP7 (All versions < V3.0.6602), Cerberus PRO EN X200 Cloud Distribution IP8 (All versions < V4.0.5016), Cerberus PRO EN X300 Cloud Distribution IP7 (All versions < V3.2.6601), Cerberus PRO EN X300 Cloud Distribution IP8 (All versions < V4.2.5015), Cerberus PRO UL Compact Panel FC922/924 (All versions < MP4), Cerberus PRO UL Engineering Tool (All versions < MP4), Cerberus PRO UL X300 Cloud Distribution (All versions < V4.3.0001), Desigo Fire Safety UL Compact Panel FC2025/2050 (All versions < MP4), Desigo Fire Safety UL Engineering Tool (All versions < MP4), Desigo Fire Safety UL X300 Cloud Distribution (All versions < V4.3.0001), Sinteso FS20 EN Engineering Tool (All versions < MP8), Sinteso FS20 EN Fire Panel FC20 MP6 (All versions < MP6 SR3), Sinteso FS20 EN Fire Panel FC20 MP7 (All versions < MP7 SR5), Sinteso FS20 EN X200 Cloud Distribution MP7 (All versions < V3.0.6602), Sinteso FS20 EN X200 Cloud Distribution MP8 (All versions < V4.0.5016), Sinteso FS20 EN X300 Cloud Distribution MP7 (All versions < V3.2.6601), Sinteso FS20 EN X300 Cloud Distribution MP8 (All versions < V4.2.5015), Sinteso Mobile (All versions < V3.0.0). The network communication library in affected systems does not validate the length of certain X.509 certificate attributes which might result in a stack-based buffer overflow. This could allow an unauthenticated remote attacker to execute code on the underlying operating system with root privileges.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

25
  • < MP8+ 1 more
    • (no CPE)range: < MP8
    • (no CPE)range: 0
  • < IP8+ 2 more
    • (no CPE)range: < IP8
    • (no CPE)range: 0
    • (no CPE)range: 0
  • < IP6 SR3+ 2 more
    • (no CPE)range: < IP6 SR3
    • (no CPE)range: 0
    • (no CPE)range: 0
  • < MP4+ 1 more
    • (no CPE)range: < MP4
    • (no CPE)range: 0
  • Siemens/Cerberus PRO EN X200 Cloud Distribution IP7v5
    Range: 0
  • Siemens/Cerberus PRO EN X200 Cloud Distribution IP8v5
    Range: 0
  • Siemens/Cerberus PRO EN X300 Cloud Distribution IP7v5
    Range: 0
  • Siemens/Cerberus PRO EN X300 Cloud Distribution IP8v5
    Range: 0
  • Siemens/Cerberus PRO UL Compact Panel FC922/924v5
    Range: 0
  • Siemens/Cerberus PRO UL X300 Cloud Distributionv5
    Range: 0
  • Siemens/Desigo Fire Safety UL Engineering Toolv5
    Range: 0
  • Siemens/Desigo Fire Safety UL X300 Cloud Distributionv5
    Range: 0
  • Siemens/Sinteso FS20 EN Fire Panel FC20 MP6v5
    Range: 0
  • Siemens/Sinteso FS20 EN Fire Panel FC20 MP7v5
    Range: 0
  • Siemens/Sinteso FS20 EN X200 Cloud Distribution MP7v5
    Range: 0
  • Siemens/Sinteso FS20 EN X200 Cloud Distribution MP8v5
    Range: 0
  • Siemens/Sinteso FS20 EN X300 Cloud Distribution MP7v5
    Range: 0
  • Siemens/Sinteso FS20 EN X300 Cloud Distribution MP8v5
    Range: 0
  • Siemens/Sinteso Mobilev5
    Range: 0

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.