var-202309-0636
Vulnerability from variot
The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation.
This could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate. simatic cloud connect 7 cc712 firmware, simatic cloud connect 7 cc716 firmware, SIMATIC Drive Controller CPU 1504D TF Multiple Siemens products, including firmware, contain an integer overflow vulnerability.Service operation interruption (DoS) It may be in a state. SIMATIC Cloud Connect 7 is an IoT gateway for connecting programmable logic controllers to cloud services and allows field devices to interface with OPC UA servers as OPC UA clients. SIMATIC Drive Controllers are designed for the automation of production machines and combine the functions of the SIMATIC S7-1500 CPU and the SINAMICS S120 drive control. The SIMATIC ET 200SP Open Controller is a PC-based version of the SIMATIC S7-1500 controller and includes optional visualization combined with central I/O in a compact device. SIMATIC S7-1200 CPU products are designed for discrete and continuous control in industrial environments such as global manufacturing, food and beverage, and chemical industries. SIMATIC S7-1500 CPU products are designed for discrete and continuous control in industrial environments such as global manufacturing, food and beverage, and chemical industries. SIMATIC S7-1500 ODK CPUs offer the functionality of a standard S7-1500 CPU, but also offer the possibility to run C/C++ code within the CPU runtime to execute your own functions/algorithms implemented in C/C++. They are designed for discrete and continuous control in industrial environments such as the manufacturing, food and beverage, and chemical industries around the world. SIMATIC S7-1500 Software Controller is the SIMATIC software controller for PC-based automation solutions. SIMATIC S7-PLCSIM Advanced simulates S7-1200, S7-1500 and some other PLC derivatives. Includes full network access to simulated PLCs, even in virtualized environments.
Siemens SIMATIC product ANSI C OPC UA SDK has a denial of service vulnerability
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", "affected_products": { "@id": "https://www.variotdbs.pl/ref/affected_products" }, "credits": { "@id": "https://www.variotdbs.pl/ref/credits" }, "cvss": { "@id": "https://www.variotdbs.pl/ref/cvss/" }, "description": { "@id": "https://www.variotdbs.pl/ref/description/" }, "exploit_availability": { "@id": "https://www.variotdbs.pl/ref/exploit_availability/" }, "external_ids": { "@id": "https://www.variotdbs.pl/ref/external_ids/" }, "iot": { "@id": "https://www.variotdbs.pl/ref/iot/" }, "iot_taxonomy": { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/" }, "patch": { "@id": "https://www.variotdbs.pl/ref/patch/" }, "problemtype_data": { "@id": "https://www.variotdbs.pl/ref/problemtype_data/" }, "references": { "@id": "https://www.variotdbs.pl/ref/references/" }, "sources": { "@id": "https://www.variotdbs.pl/ref/sources/" }, "sources_release_date": { "@id": "https://www.variotdbs.pl/ref/sources_release_date/" }, "sources_update_date": { "@id": "https://www.variotdbs.pl/ref/sources_update_date/" }, "threat_type": { "@id": "https://www.variotdbs.pl/ref/threat_type/" }, "title": { "@id": "https://www.variotdbs.pl/ref/title/" }, "type": { "@id": "https://www.variotdbs.pl/ref/type/" } }, "@id": "https://www.variotdbs.pl/vuln/VAR-202309-0636", "affected_products": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "model": "siplus s7-1500 cpu pn", "scope": "eq", "trust": 1.8, "vendor": "siemens", "version": "1511-1\u003cv2.9.7" }, { "model": "simatic s7-1500 cpu pn", "scope": "eq", "trust": 1.2, "vendor": "siemens", "version": "1511-1\u003cv2.9.7" }, { "model": "simatic s7-1500 cpu 1511c-1 pn", "scope": "lt", "trust": 1.2, "vendor": "siemens", "version": "v2.9.7" }, { "model": "simatic s7-1500 cpu 1511f-1 pn", "scope": "lt", "trust": 1.2, "vendor": "siemens", "version": "v2.9.7" }, { "model": "siplus s7-1500 cpu 1516f-3 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus s7-1500 cpu 1511-1 pn tx rail", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1512c-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "simatic s7-1500 cpu 1517-3 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "simatic s7-1200 cpu", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "siplus s7-1500 cpu 1518hf-4 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "siplus s7-1500 cpu 1516-3 pn\\/dp rail", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus s7-1500 cpu 1511f-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1510sp f-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "siplus s7-1500 cpu 1513f-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus s7-1500 cpu 1513-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1518hf-4 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu s7-1518-4 pn\\/dp odk", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1518t-4 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1510sp-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus et 200sp cpu 1510sp-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus s7-1500 cpu 1511-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1516t-3 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "simatic s7-1500 cpu 1514spt f-2 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus s7-1500 cpu 1511-1 pn t1 rail", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1516-3 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "simatic cloud connect 7 cc716", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.2" }, { "model": "simatic et 200sp open controller cpu", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1516tf-3 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "simatic s7-1500 cpu 1517f-3 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1515tf-2 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "siplus et 200sp cpu 1512sp f-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1515r-2 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1518tf-4 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus s7-1500 cpu 1515r-2 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1514spt-2 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1512sp f-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "siplus s7-1500 cpu 1516-3 pn\\/dp tx rail", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1511tf-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "siplus s7-1500 cpu 1516-3 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic cloud connect 7 cc712", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.2" }, { "model": "simatic s7-1500 cpu 1511t-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1518-4 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "21.9.7" }, { "model": "simatic s7-1500 cpu 1518-4 pn\\/dp mfp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus s7-1500 cpu 1516f-3 pn\\/dp rail", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus et 200sp cpu 1510sp f-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1513r-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus s7-1500 cpu 1515f-2 pn rail", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1511-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "21.9.7" }, { "model": "simatic s7-1500 cpu 1517tf-3 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus s7-1500 cpu 1515r-2 pn tx rail", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 software controller", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1514sp-2 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "siplus et 200sp cpu 1512sp f-1 pn rail", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic drive controller cpu 1504d tf", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.2" }, { "model": "simatic s7-1500 cpu 1511f-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1511c-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "30.0.0" }, { "model": "simatic s7-1500 cpu 1513-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus s7-1500 cpu 1517h-3 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "simatic s7-1500 et 200pro", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus s7-1500 cpu 1515f-2 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu s7-1518f-4 pn\\/dp odk", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1517t-3 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus s7-1500 cpu 1518f-4 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "simatic s7-1500 cpu 1515t-2 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "simatic s7-1500 cpu 1518f-4 pn\\/dp mfp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic drive controller cpu 1507d tf", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-plcsim advanced", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus s7-1500 cpu 1518-4 pn\\/dp mfp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "siplus s7-1500 cpu 1515f-2 pn t2 rail", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus et 200sp cpu 1510sp-1 pn rail", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1512sp-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus s7-1500 cpu 1518-4 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "siplus et 200sp cpu 1512sp-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "siplus et 200sp cpu 1510sp f-1 pn rail", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1515f-2 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "simatic s7-1500 cpu 1513f-1 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1517h-3 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1518f-4 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1514sp f-2 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1515-2 pn", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1516f-3 pn\\/dp", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "3.0.3" }, { "model": "siplus et 200sp cpu 1512sp-1 pn rail", "scope": "lt", "trust": 1.0, "vendor": "siemens", "version": "2.9.7" }, { "model": "simatic s7-1500 cpu 1510sp f-1 pn", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7 1500 cpu 1513-1 pn", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7-1500 cpu 1514sp-2 pn", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7-1500 cpu 1511f-1 pn", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7-1500 cpu 1512sp-1 pn", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7-1500 cpu 1513r-1 pn", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic et 200sp open controller cpu", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7-1200 cpu", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7-1500 cpu 1510sp-1 pn", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7-1500 cpu 1513f-1 pn", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic cloud connect 7 cc712", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7-1500 cpu 1512sp f-1 pn", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7-1500 cpu 1511-1 pn", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7-1500 cpu 1511tf-1 pn", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic cloud connect 7 cc716", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7-1500 cpu 1511c-1 pn", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic drive controller cpu 1504d tf", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic drive controller cpu 1507d tf", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7-1500 cpu 1511t-1 pn", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7-1500 cpu 1512c-1 pn", "scope": null, "trust": 0.8, "vendor": "\u30b7\u30fc\u30e1\u30f3\u30b9", "version": null }, { "model": "simatic s7-plcsim advanced", "scope": null, "trust": 0.6, "vendor": "siemens", "version": null }, { "model": "simatic s7-1200 cpu family", "scope": null, "trust": 0.6, "vendor": "siemens", "version": null }, { "model": "simatic cloud connect cc712", "scope": "eq", "trust": 0.6, "vendor": "siemens", "version": "7\u003cv2.2" }, { "model": "simatic cloud connect cc716", "scope": "eq", "trust": 0.6, "vendor": "siemens", "version": "7\u003cv2.2" }, { "model": "simatic drive controller cpu 1504d tf", "scope": "lt", "trust": 0.6, "vendor": "siemens", "version": "v2.9.7" }, { "model": "simatic drive controller cpu 1504d tf", "scope": "gte", "trust": 0.6, "vendor": "siemens", "version": "v3.0.1,\u003cv3.0.3" }, { "model": "simatic drive controller cpu 1507d tf", "scope": "lt", "trust": 0.6, "vendor": "siemens", "version": "v2.9.7" }, { "model": "simatic drive controller cpu 1507d tf", "scope": "gte", "trust": 0.6, "vendor": "siemens", "version": "v3.0.1,\u003cv3.0.3" }, { "model": "simatic et 200sp open controller cpu 1515sp pc2", "scope": "lt", "trust": 0.6, "vendor": "siemens", "version": "v21.9.7" }, { "model": "simatic s7-1500 cpu 1510sp f-1 pn", "scope": "lt", "trust": 0.6, "vendor": "siemens", "version": "v2.9.7" }, { "model": "simatic s7-1500 cpu 1510sp f-1 pn", "scope": "lt", "trust": 0.6, "vendor": "siemens", "version": "v3.0.3" }, { "model": "simatic s7-1500 cpu 1510sp-1 pn", "scope": "lt", "trust": 0.6, "vendor": "siemens", "version": "v2.9.7" }, { "model": "simatic s7-1500 cpu 1510sp-1 pn", "scope": "lt", "trust": 0.6, "vendor": "siemens", "version": "v3.0.3" }, { "model": "simatic s7-1500 cpu pn", "scope": "eq", "trust": 0.6, "vendor": "siemens", "version": "1511-1\u003cv3.0.3" }, { "model": "simatic s7-1500 cpu 1511f-1 pn", "scope": "lt", "trust": 0.6, "vendor": "siemens", "version": "v3.0.3" }, { "model": "simatic s7-1500 cpu 1511t-1 pn", "scope": "lt", "trust": 0.6, "vendor": "siemens", "version": "v2.9.7" }, { "model": "simatic s7-1500 cpu 1511t-1 pn", "scope": "lt", "trust": 0.6, "vendor": "siemens", "version": "v3.0.3" }, { "model": "simatic s7-1500 software controller", "scope": "eq", "trust": 0.6, "vendor": "siemens", "version": "v2\u003cv21.9.7" }, { "model": "simatic s7-1500 software controller", "scope": "eq", "trust": 0.6, "vendor": "siemens", "version": "v3" }, { "model": "siplus et 200sp cpu 1510sp f-1 pn", "scope": "lt", "trust": 0.6, "vendor": "siemens", "version": "v2.9.7" }, { "model": "siplus et 200sp cpu 1510sp f-1 pn rail", "scope": "lt", "trust": 0.6, "vendor": "siemens", "version": "v2.9.7" }, { "model": "siplus et 200sp cpu 1510sp-1 pn", "scope": "lt", "trust": 0.6, "vendor": "siemens", "version": "v2.9.7" }, { "model": "siplus s7-1500 cpu 1518hf-4 pn", "scope": "lt", "trust": 0.6, "vendor": "siemens", "version": "v3.0.3" } ], "sources": [ { "db": "CNVD", "id": "CNVD-2023-69803" }, { "db": "JVNDB", "id": "JVNDB-2023-012685" }, { "db": "NVD", "id": "CVE-2023-28831" } ] }, "cve": "CVE-2023-28831", "cvss": { "@context": { "cvssV2": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2" }, "cvssV3": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#" }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/" }, "severity": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#" }, "@id": "https://www.variotdbs.pl/ref/cvss/severity" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" }, "@id": "https://www.variotdbs.pl/ref/sources" } }, "data": [ { "cvssV2": [ { "accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "author": "CNVD", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "exploitabilityScore": 10.0, "id": "CNVD-2023-69803", "impactScore": 6.9, "integrityImpact": "NONE", "severity": "HIGH", "trust": 0.6, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0" } ], "cvssV3": [ { "attackComplexity": "LOW", "attackVector": "NETWORK", "author": "productcert@siemens.com", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "exploitabilityScore": 3.9, "id": "CVE-2023-28831", "impactScore": 3.6, "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "trust": 1.0, "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1" }, { "attackComplexity": "Low", "attackVector": "Network", "author": "OTHER", "availabilityImpact": "High", "baseScore": 7.5, "baseSeverity": "High", "confidentialityImpact": "None", "exploitabilityScore": null, "id": "JVNDB-2023-012685", "impactScore": null, "integrityImpact": "None", "privilegesRequired": "None", "scope": "Unchanged", "trust": 0.8, "userInteraction": "None", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0" } ], "severity": [ { "author": "productcert@siemens.com", "id": "CVE-2023-28831", "trust": 1.0, "value": "HIGH" }, { "author": "OTHER", "id": "JVNDB-2023-012685", "trust": 0.8, "value": "High" }, { "author": "CNVD", "id": "CNVD-2023-69803", "trust": 0.6, "value": "HIGH" } ] } ], "sources": [ { "db": "CNVD", "id": "CNVD-2023-69803" }, { "db": "JVNDB", "id": "JVNDB-2023-012685" }, { "db": "NVD", "id": "CVE-2023-28831" } ] }, "description": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation. \r\n\r\nThis could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate. simatic cloud connect 7 cc712 firmware, simatic cloud connect 7 cc716 firmware, SIMATIC Drive Controller CPU 1504D TF Multiple Siemens products, including firmware, contain an integer overflow vulnerability.Service operation interruption (DoS) It may be in a state. SIMATIC Cloud Connect 7 is an IoT gateway for connecting programmable logic controllers to cloud services and allows field devices to interface with OPC UA servers as OPC UA clients. SIMATIC Drive Controllers are designed for the automation of production machines and combine the functions of the SIMATIC S7-1500 CPU and the SINAMICS S120 drive control. The SIMATIC ET 200SP Open Controller is a PC-based version of the SIMATIC S7-1500 controller and includes optional visualization combined with central I/O in a compact device. SIMATIC S7-1200 CPU products are designed for discrete and continuous control in industrial environments such as global manufacturing, food and beverage, and chemical industries. SIMATIC S7-1500 CPU products are designed for discrete and continuous control in industrial environments such as global manufacturing, food and beverage, and chemical industries. SIMATIC S7-1500 ODK CPUs offer the functionality of a standard S7-1500 CPU, but also offer the possibility to run C/C++ code within the CPU runtime to execute your own functions/algorithms implemented in C/C++. They are designed for discrete and continuous control in industrial environments such as the manufacturing, food and beverage, and chemical industries around the world. SIMATIC S7-1500 Software Controller is the SIMATIC software controller for PC-based automation solutions. SIMATIC S7-PLCSIM Advanced simulates S7-1200, S7-1500 and some other PLC derivatives. Includes full network access to simulated PLCs, even in virtualized environments. \n\r\n\r\nSiemens SIMATIC product ANSI C OPC UA SDK has a denial of service vulnerability", "sources": [ { "db": "NVD", "id": "CVE-2023-28831" }, { "db": "JVNDB", "id": "JVNDB-2023-012685" }, { "db": "CNVD", "id": "CNVD-2023-69803" }, { "db": "VULMON", "id": "CVE-2023-28831" } ], "trust": 2.25 }, "external_ids": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "db": "NVD", "id": "CVE-2023-28831", "trust": 3.3 }, { "db": "SIEMENS", "id": "SSA-711309", "trust": 2.5 }, { "db": "SIEMENS", "id": "SSA-118850", "trust": 1.8 }, { "db": "JVN", "id": "JVNVU98271228", "trust": 0.8 }, { "db": "JVN", "id": "JVNVU98137233", "trust": 0.8 }, { "db": "ICS CERT", "id": "ICSA-23-257-01", "trust": 0.8 }, { "db": "ICS CERT", "id": "ICSA-23-348-06", "trust": 0.8 }, { "db": "JVNDB", "id": "JVNDB-2023-012685", "trust": 0.8 }, { "db": "CNVD", "id": "CNVD-2023-69803", "trust": 0.6 }, { "db": "VULMON", "id": "CVE-2023-28831", "trust": 0.1 } ], "sources": [ { "db": "CNVD", "id": "CNVD-2023-69803" }, { "db": "VULMON", "id": "CVE-2023-28831" }, { "db": "JVNDB", "id": "JVNDB-2023-012685" }, { "db": "NVD", "id": "CVE-2023-28831" } ] }, "id": "VAR-202309-0636", "iot": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": true, "sources": [ { "db": "CNVD", "id": "CNVD-2023-69803" } ], "trust": 1.2659901543749998 }, "iot_taxonomy": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "category": [ "ICS" ], "sub_category": null, "trust": 0.6 } ], "sources": [ { "db": "CNVD", "id": "CNVD-2023-69803" } ] }, "last_update_date": "2024-08-14T12:54:16.917000Z", "patch": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "title": "Patch for Siemens SIMATIC product ANSI C OPC UA SDK denial of service vulnerability", "trust": 0.6, "url": "https://www.cnvd.org.cn/patchInfo/show/460891" } ], "sources": [ { "db": "CNVD", "id": "CNVD-2023-69803" } ] }, "problemtype_data": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "problemtype": "CWE-190", "trust": 1.0 }, { "problemtype": "Integer overflow or wraparound (CWE-190) [ others ]", "trust": 0.8 } ], "sources": [ { "db": "JVNDB", "id": "JVNDB-2023-012685" }, { "db": "NVD", "id": "CVE-2023-28831" } ] }, "references": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", "data": { "@container": "@list" }, "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": [ { "trust": 1.9, "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-711309.pdf" }, { "trust": 1.8, "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-118850.pdf" }, { "trust": 1.6, "url": "https://cert-portal.siemens.com/productcert/html/ssa-711309.html" }, { "trust": 1.0, "url": "https://cert-portal.siemens.com/productcert/html/ssa-118850.html" }, { "trust": 0.8, "url": "https://jvn.jp/vu/jvnvu98137233/" }, { "trust": 0.8, "url": "https://jvn.jp/vu/jvnvu98271228/" }, { "trust": 0.8, "url": "https://nvd.nist.gov/vuln/detail/cve-2023-28831" }, { "trust": 0.8, "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-257-01" }, { "trust": 0.8, "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-348-06" }, { "trust": 0.1, "url": "https://cwe.mitre.org/data/definitions/190.html" }, { "trust": 0.1, "url": "https://nvd.nist.gov" } ], "sources": [ { "db": "CNVD", "id": "CNVD-2023-69803" }, { "db": "VULMON", "id": "CVE-2023-28831" }, { "db": "JVNDB", "id": "JVNDB-2023-012685" }, { "db": "NVD", "id": "CVE-2023-28831" } ] }, "sources": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", "data": { "@container": "@list" } }, "data": [ { "db": "CNVD", "id": "CNVD-2023-69803" }, { "db": "VULMON", "id": "CVE-2023-28831" }, { "db": "JVNDB", "id": "JVNDB-2023-012685" }, { "db": "NVD", "id": "CVE-2023-28831" } ] }, "sources_release_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2023-09-14T00:00:00", "db": "CNVD", "id": "CNVD-2023-69803" }, { "date": "2023-09-12T00:00:00", "db": "VULMON", "id": "CVE-2023-28831" }, { "date": "2023-12-18T00:00:00", "db": "JVNDB", "id": "JVNDB-2023-012685" }, { "date": "2023-09-12T10:15:27.230000", "db": "NVD", "id": "CVE-2023-28831" } ] }, "sources_update_date": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", "data": { "@container": "@list" } }, "data": [ { "date": "2023-09-15T00:00:00", "db": "CNVD", "id": "CNVD-2023-69803" }, { "date": "2023-09-12T00:00:00", "db": "VULMON", "id": "CVE-2023-28831" }, { "date": "2023-12-18T07:19:00", "db": "JVNDB", "id": "JVNDB-2023-012685" }, { "date": "2024-02-13T09:15:43.637000", "db": "NVD", "id": "CVE-2023-28831" } ] }, "title": { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", "sources": { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#" } } }, "data": "Integer overflow vulnerability in multiple Siemens products", "sources": [ { "db": "JVNDB", "id": "JVNDB-2023-012685" } ], "trust": 0.8 } }
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.