CVE-2022-45044 — Vulnetix

CVE-2022-45044 PUBLISHED

Es existiert eine Schwachstelle in Siemens SIPROTEC. Betroffene Geräte schränken sichere, vom Client initiierte Neuverhandlungen innerhalb der SSL- und TLS-Protokolle nicht richtig ein. Ein entfernter anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial of Service auf den Ports 443/tcp und 4443/tcp zu erzeugen.

EPSS 0.57% · 68.9th percentile

Risk Scores

EPSS Score

0.57%

68.9th percentile

Affected Products

Vendor	Product	Versions
Siemens	Siemens SIPROTEC 5

Exploit Intelligence

Kouf320/attacker-lab-cve-2017-5638-cve-2021-41773-paper (github-poc)
Kouf320/attacker-lab-cve-2017-5638-cve-2021-41773-paper (github-poc)
Kouf320/attacker-lab-cve-2017-5638-cve-2021-41773-paper (github-poc)
Kouf320/attacker-lab-cve-2017-5638-cve-2021-41773-paper (github-poc)
Kouf320/attacker-lab-cve-2017-5638-cve-2021-41773-paper (github-poc)
Kouf320/attacker-lab-cve-2017-5638-cve-2021-41773-paper (github-poc)
Using Struts2 and PowerShell to recreate CVE-2017-5638 OGNL Injection vulnerability. (github-poc)
Using Struts2 and PowerShell to recreate CVE-2017-5638 OGNL Injection vulnerability. (github-poc)
Using Struts2 and PowerShell to recreate CVE-2017-5638 OGNL Injection vulnerability. (github-poc)
Using Struts2 and PowerShell to recreate CVE-2017-5638 OGNL Injection vulnerability. (github-poc)

…and 536 more exploits

Timeline

Oct 2, 2020 PoC Published
Nov 6, 2020 PoC Published
Sep 6, 2021 PoC Published
Dec 12, 2022 CVE Published
Dec 14, 2022 EPSS Score
Dec 28, 2022 EPSS Score
Jan 25, 2023 EPSS Score
Feb 23, 2023 EPSS Score
Mar 7, 2023 EPSS Score
Apr 18, 2023 EPSS Score
May 30, 2023 EPSS Score
Jul 11, 2023 EPSS Score

References

Open in Interactive Console →