SSA-847986 — Vulnetix

SSA-847986 PUBLISHED CVSS 9.800000190734863 CRITICAL

The latest update for SIPROTEC 5 relays fixes two vulnerabilities that could allow a remote attacker to cause a denial-of-service or potentially trigger a remote code execution under certain circumstances. Siemens has released an update for SIPROTEC 5 relays and recommends to update to the latest version.

Risk Scores

CVSS 3.1

9.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

Affected Products

Vendor	Product	Versions
	SIPROTEC 5 relays with CPU variants CP300
	SIPROTEC 5 relays with CPU variants CP100
	SIPROTEC 5 relays with CPU variants CP050

Exploit Intelligence

https://cert-portal.siemens.com/productcert/pdf/ssa-847986.pdf (circl)
https://cert-portal.siemens.com/productcert/txt/ssa-847986.txt (circl)
https://cert-portal.siemens.com/productcert/csaf/ssa-847986.json (circl)
https://support.industry.siemens.com/cs/ww/en/view/109740816 (circl)

Timeline

CVE Published

References

https://cert-portal.siemens.com/productcert/pdf/ssa-847986.pdf advisory
https://cert-portal.siemens.com/productcert/txt/ssa-847986.txt advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-847986.json advisory
https://support.industry.siemens.com/cs/ww/en/view/109740816 fix

Open in Interactive Console →