VDB
SSA-780073
SSA-780073
PUBLISHED
CVSS 7.5 HIGH
Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lead to a denial of service condition due to lack of memory for devices that include a vulnerable version of the stack. The security vulnerability could be exploited by an attacker with network access to an affected device. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise the availability of the device.
Risk Scores
CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | SIMATIC MV440 UR (6GF3440-1LE10) | |
| Siemens | SCALANCE X204-2LD (6GK5204-2BC10-2AA3) | |
| Siemens | SCALANCE XR324-4M EEC (24V, ports on front) (6GK5324-4GG10-1ER2) | |
| Siemens | SCALANCE X302-7 EEC (230V, coated) (6GK5302-7GD00-3GA3) | |
| Siemens | RUGGEDCOM RM1224 family (6GK6108-4AM00) | |
| Siemens | SCALANCE XB-200 family | |
| Siemens | SCALANCE X302-7 EEC (24V) (6GK5302-7GD00-1EA3) | |
| Siemens | SCALANCE XF-200BA | |
| Siemens | SIMATIC MV420 SR-P (6GF3420-0AA40) | |
| Siemens | SCALANCE X308-2LH+ (6GK5308-2FP10-2AA3) | |
| Siemens | SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front) (6GK5324-4GG00-3ER2) | |
| Siemens | SCALANCE X308-2LH (6GK5308-2FN10-2AA3) | |
| Siemens | SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front) (6GK5324-4GG10-4ER2) | |
| Siemens | SCALANCE XR324-4M PoE (230V, ports on front) (6GK5324-4QG00-3AR2) | |
| Siemens | SCALANCE X310 (6GK5310-0FA00-2AA3) | |
| Siemens | SIMATIC PN/PN Coupler (incl. SIPLUS NET variants) | |
| Siemens | SCALANCE X320-1-2LD FE (6GK5320-3BF00-2AA3) | |
| Siemens | SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG00-4JR2) | |
| Siemens | SCALANCE X224 (6GK5224-0BA00-2AA3) | |
| Siemens | SCALANCE X307-2 EEC (230V) (6GK5307-2FD00-3EA3) |
…and 178 more
Timeline
- Feb 11, 2020 CVE Published
- Jul 9, 2024 CVE Updated
References
- https://cert-portal.siemens.com/productcert/csaf/ssa-780073.json advisory
- https://cert-portal.siemens.com/productcert/html/ssa-780073.html advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-780073.pdf advisory
- https://cert-portal.siemens.com/productcert/txt/ssa-780073.txt advisory
- https://support.industry.siemens.com/cs/ww/en/view/109817938/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109793481/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109773826/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109760397/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109765183/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109772130/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109773308/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109763309/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109801131/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109808359/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109771191/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109771193/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109762982/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109768501 patch
- https://support.industry.siemens.com/cs/ww/en/view/109768663/ patch
- https://support.industry.siemens.com/cs/ww/en/view/109768047/ patch
…and 2 more