CNVD-2020-29568 — Vulnetix

CNVD-2020-29568 PUBLISHED

Siemens SIMATIC S7-300 CPUs等都是德国西门子（Siemens）公司的产品。SIMATIC S7-300 CPUs是一款CPU（中央处理器）模块。Siemens SIMATIC S7-1200是一款S7-1200系列PLC（可编程逻辑控制器）。Siemens SIMATIC S7-400是一款用于制造和过程自动化领域的可编程逻辑控制器产品。多款Siemens产品中存在资源管理错误漏洞。远程攻击者可借助特制的HTTP请求利用该漏洞导致拒绝服务。

Affected Products

Vendor	Product	Versions
	SIEMENS SCALANCE X-300 switch family (incl. X408 andSIPLUS NET variants) < 4.1.3
	Siemens SCALANCE X-200 switch family (incl. SIPLUSNET variants) < 5.2.4
	Siemens SCALANCE X-200IRT switch family (incl. SIPLUSNET variants)

Timeline

Feb 12, 2020 CVE ID Reserved
May 22, 2020 CVE Published

References

https://www.us-cert.gov/ics/advisories/icsa-20-042-05 url

Open in Interactive Console →