The PROFINET (PNIO) stack, when integrated with the Interniche IP stack, improperly handles internal resources for TCP segments where the minimum TCP-Header length is less than defined. This could allow an attacker to create a denial of service condition for TCP services on affected devices by sending specially crafted TCP segments.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LSiemens Simatic Cfu Diq
HWSiemenswszystkie wersjeSiemens Simatic Cfu Diq Firmware
OSSiemenswszystkie wersjeSiemens Simatic Cfu Pa
HWSiemenswszystkie wersjeSiemens Simatic Cfu Pa Firmware
OSSiemenswszystkie wersjeSiemens Simatic S7 1500 Cpu
HWSiemenswszystkie wersjeSiemens Simatic S7 1500 Cpu Firmware
OSSiemens< 2.0.0Siemens Simatic S7 300 Cpu
HWSiemenswszystkie wersjeSiemens Simatic S7 300 Cpu Firmware
OSSiemenswszystkie wersjeSiemens Simatic S7 400h V6
HWSiemenswszystkie wersjeSiemens Simatic S7 400h V6 Firmware
OSSiemenswszystkie wersjeSiemens Simatic S7 400 Pn\/dp V7
HWSiemenswszystkie wersjeSiemens Simatic S7 400 Pn\/dp V7 Firmware
OSSiemenswszystkie wersjeSiemens Simatic S7 410 V10
HWSiemenswszystkie wersjeSiemens Simatic S7 410 V10 Firmware
OSSiemenswszystkie wersjeSiemens Simatic S7 410 V8
HWSiemenswszystkie wersjeSiemens Simatic S7 410 V8 Firmware
OSSiemenswszystkie wersjeSiemens Simatic Tdc Cp51m1
HWSiemenswszystkie wersjeSiemens Simatic Tdc Cp51m1 Firmware
OSSiemenswszystkie wersjeSiemens Simatic Tdc Cpu555
HWSiemenswszystkie wersjeSiemens Simatic Tdc Cpu555 Firmware
OSSiemenswszystkie wersjeSiemens Simatic Winac Rtx
HWSiemenswszystkie wersjeSiemens Simatic Winac Rtx Firmware
OSSiemenswszystkie wersjeSiemens Simit Simulation Platform
APPSiemenswszystkie wersje
Related vulnerabilities
A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote ...
A vulnerability has been identified in SIMATIC STEP 7 (TIA Portal) V15 (All versions), SIMATIC STEP 7 (TIA Por...
A vulnerability has been identified in SIMATIC S7-400 CPU 412-1 DP V7 (All versions), SIMATIC S7-400 CPU 412...
A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants...
A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, Development/...