VDB
CNVD-2020-23039
CNVD-2020-23039
PUBLISHED
Siemens SCALANCE X-200IRT和SCALANCE XB-200都是德国西门子(Siemens)公司的产品。SCALANCE X-200IRT是一款工业级以太网交换机。SCALANCE XB-200是一款管理型工业以太网交换机。 多款Siemens产品中存在资源管理错误漏洞,该漏洞源于程序未能限制内存资源的分配,远程攻击者可通过发送特制的程序包利用该漏洞导致拒绝服务。
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens Development/Evaluation Kits for PROFINET IO EK-ERTEC 200P <4.6 | ||
| Siemens SCALANCE XC-200 <3.0 | ||
| Siemens SIMATIC ET200S | ||
| Siemens SCALANCE X-300 switch | ||
| Siemens SCALANCE XB-200 <3.0 | ||
| Siemens SIMATIC CP 443-1 | ||
| Siemens SCALANCE M-800/S615 <4.3 | ||
| Siemens PROFINET Driver for Controller <2.1 | ||
| Siemens SIMATIC CP 443-1 OPC UA | ||
| Siemens SIMATIC CP 343-1 ERPC | ||
| Siemens SCALANCE XF-200BA <3.0 | ||
| Siemens SIMATIC ET200M IM153-4 PN IO HF | ||
| Siemens SIMATIC RF600 <3 | ||
| Siemens SINAMICS DCP <1.3 | ||
| Siemens SCALANCE XR-500 switch <6.0 | ||
| Siemens SIMATIC ET200AL IM 157-1 PN | ||
| Siemens SCALANCE XM-400 switch <6.0 | ||
| Siemens SCALANCE X-200IRT switch <5.3 | ||
| SIEMENS SIMATIC CP 1616 <2.8 | ||
| Siemens Development/Evaluation Kits for PROFINET IO EK-ERTEC 200 <4.5 |
…and 25 more
Timeline
- Feb 12, 2020 CVE ID Reserved
- Apr 16, 2020 CVE Published