Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-29875

A vulnerability has been identified in Biograph Horizon PET/CT Systems (All VJ30 versions < VJ30C-UD01), MAGNETOM Family (NUMARIS X: VA12M, VA12S, VA10B, VA20A, VA30A, VA31A), MAMMOMAT Revelation (All VC20 versions < VC20D), NAEOTOM Alpha (All VA40 versions < VA40 SP2), SOMATOM X.cite (All versions < VA30 SP5 or VA40 SP2), SOMATOM X.creed (All versions < VA30 SP5 or VA40 SP2), SOMATOM go.All (All versions < VA30 SP5 or VA40 SP2), SOMATOM go.Now (All versions < VA30 SP5 or VA40 SP2), SOMATOM go.Open Pro (All versions < VA30 SP5 or VA40 SP2), SOMATOM go.Sim (All versions < VA30 SP5 or VA40 SP2), SOMATOM go.Top (All versions < VA30 SP5 or VA40 SP2), SOMATOM go.Up (All versions < VA30 SP5 or VA40 SP2), Symbia E/S (All VB22 versions < VB22A-UD03), Symbia Evo (All VB22 versions < VB22A-UD03), Symbia Intevo (All VB22 versions < VB22A-UD03), Symbia T (All VB22 versions < VB22A-UD03), Symbia.net (All VB22 versions < VB22A-UD03), syngo.via VB10 (All versions), syngo.via VB20 (All versions), syngo.via VB30 (All versions), syngo.via VB40 (All versions < VB40B HF06), syngo.via VB50 (All versions), syngo.via VB60 (All versions < VB60B HF02). The application deserialises untrusted data without sufficient validations that could result in an arbitrary deserialization. This could allow an unauthenticated attacker to execute code in the affected system if ports 32912/tcp or 32914/tcp are reachable.

Security Impact Summary

This vulnerability carries a CRITICAL severity rating with a CVSS v3.1 score of 9.8, indicating it can be exploited remotely over the network with relatively low complexity without requiring user interaction and does not require pre-existing privileges . The vulnerability impacts confidentiality (data exposure), integrity (unauthorized modifications), and availability (service disruption) for affected systems. Impacting 34 products from siemens, from siemens, from siemens and 31 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

Reported in 2022, this vulnerability emerged during an era marked by increased sophistication in supply chain attacks, cloud infrastructure vulnerabilities, and software-as-a-service (SaaS) security challenges. Security practices during this period emphasized zero-trust architectures, container security, and API protection.

Published

2022-06-01T10:15:08.197

Last Modified

2024-11-21T06:59:52.537

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

8.6

Impact Score

10.0

Weaknesses

Type: Secondary
CWE-502
Type: Primary
CWE-502

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	siemens	biograph_horizon_pet\/ct_systems_firmware	< vj30c-ud01	Yes
Hardware	siemens	biograph_horizon_pet\/ct_systems	-	No
Operating System	siemens	magnetom_numaris_x_firmware	va10b	Yes
Operating System	siemens	magnetom_numaris_x_firmware	va12m	Yes
Operating System	siemens	magnetom_numaris_x_firmware	va12s	Yes
Operating System	siemens	magnetom_numaris_x_firmware	va20a	Yes
Operating System	siemens	magnetom_numaris_x_firmware	va30a	Yes
Operating System	siemens	magnetom_numaris_x_firmware	va31a	Yes
Hardware	siemens	magnetom_numaris_x	-	No
Operating System	siemens	mammomat_revelation_firmware	< vc20d	Yes
Hardware	siemens	mammomat_revelation	-	No
Operating System	siemens	naeotom_alpha_firmware	va40	Yes
Hardware	siemens	naeotom_alpha	-	No
Operating System	siemens	somatom_x.cite_firmware	< va30	Yes
Operating System	siemens	somatom_x.cite_firmware	va30	Yes
Operating System	siemens	somatom_x.cite_firmware	va40	Yes
Hardware	siemens	somatom_x.cite	-	No
Operating System	siemens	somatom_x.creed_firmware	< va30	Yes
Operating System	siemens	somatom_x.creed_firmware	va30	Yes
Operating System	siemens	somatom_x.creed_firmware	va40	Yes
Hardware	siemens	somatom_x.creed	-	No
Operating System	siemens	somatom_go.all_firmware	< va30	Yes
Operating System	siemens	somatom_go.all_firmware	va30	Yes
Operating System	siemens	somatom_go.all_firmware	va40	Yes
Hardware	siemens	somatom_go.all	-	No
Operating System	siemens	somatom_go.now_firmware	< va30	Yes
Operating System	siemens	somatom_go.now_firmware	va30	Yes
Operating System	siemens	somatom_go.now_firmware	va40	Yes
Hardware	siemens	somatom_go.now	-	No
Operating System	siemens	somatom_go.open_pro_firmware	< va30	Yes
Operating System	siemens	somatom_go.open_pro_firmware	va30	Yes
Operating System	siemens	somatom_go.open_pro_firmware	va40	Yes
Hardware	siemens	somatom_go.open_pro	-	No
Operating System	siemens	somatom_go.sim_firmware	< va30	Yes
Operating System	siemens	somatom_go.sim_firmware	va30	Yes
Operating System	siemens	somatom_go.sim_firmware	va40	Yes
Hardware	siemens	somatom_go.sim	-	No
Operating System	siemens	somatom_go.up_firmware	< va30	Yes
Operating System	siemens	somatom_go.up_firmware	va30	Yes
Operating System	siemens	somatom_go.up_firmware	va40	Yes
Hardware	siemens	somatom_go.up	-	No
Operating System	siemens	symbia_e_firmware	< vb22a-ud03	Yes
Hardware	siemens	symbia_e	-	No
Operating System	siemens	symbia_s_firmware	< vb22a-ud03	Yes
Hardware	siemens	symbia_s	-	No
Operating System	siemens	symbia_evo_firmware	< vb22a-ud03	Yes
Hardware	siemens	symbia_evo	-	No
Operating System	siemens	symbia_intevo_firmware	< vb22a-ud03	Yes
Hardware	siemens	symbia_intevo	-	No
Operating System	siemens	symbia_t_firmware	< vb22a-ud03	Yes
Hardware	siemens	symbia_t	-	No
Application	siemens	symbia.net	≤ vb22a-ud03	Yes
Application	siemens	syngo.via	< vb40b	Yes
Application	siemens	syngo.via	< vb60b	Yes
Application	siemens	syngo.via	vb10	Yes
Application	siemens	syngo.via	vb20	Yes
Application	siemens	syngo.via	vb30	Yes
Application	siemens	syngo.via	vb40b	Yes
Application	siemens	syngo.via	vb50	Yes
Application	siemens	syngo.via	vb60b	Yes

References

https://www.siemens-healthineers.com/support-documentation/cybersecurity/shsa-455016 Mitigation, Vendor Advisory ([email protected])
https://www.siemens-healthineers.com/support-documentation/cybersecurity/shsa-455016 Mitigation, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For siemens's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.