7.5
CVE-2019-10923
- EPSS 0.47%
- Published 10.10.2019 14:15:14
- Last modified 21.11.2024 04:20:09
- Source productcert@siemens.com
- Teams watchlist Login
- Open Login
An attacker with network access to an affected product may cause a denial of service condition by breaking the real-time synchronization (IRT) of the affected installation.
Data is provided by the National Vulnerability Database (NVD)
Siemens ≫ Cp1604 Firmware Version < 2.8
Siemens ≫ Cp1616 Firmware Version < 2.8
Siemens ≫ Dk Standard Ethernet Controller Firmware Version < 4.1.1
Siemens ≫ Dk Standard Ethernet Controller Firmware Version4.1.1 Update-
Siemens ≫ Dk Standard Ethernet Controller Firmware Version4.1.1 Updatep4
Siemens ≫ Ek-ertec 200 Firmware Version < 4.5.0
Siemens ≫ Ek-ertec 200 Firmware Version4.5.0 Update-
Siemens ≫ Ek-ertec 200p Firmware Version < 4.5.0
Siemens ≫ Scalance X-200irt Firmware Version < 5.2.1
Siemens ≫ Simatic S7-300 Cpu Firmware Version < 3.3.17
Siemens ≫ Simatic S7-300 Cpu 312 Ifm Firmware Version < 3.3.17
Siemens ≫ Simatic S7-300 Cpu 313 Firmware Version < 3.3.17
Siemens ≫ Simatic S7-300 Cpu 314 Firmware Version < 3.3.17
Siemens ≫ Simatic S7-300 Cpu 314 Ifm Firmware Version < 3.3.17
Siemens ≫ Simatic S7-300 Cpu 315 Firmware Version < 3.3.17
Siemens ≫ Simatic S7-300 Cpu 315-2 Dp Firmware Version < 3.3.17
Siemens ≫ Simatic S7-300 Cpu 316-2 Dp Firmware Version < 3.3.17
Siemens ≫ Simatic S7-300 Cpu 318-2 Firmware Version < 3.3.17
Siemens ≫ Simatic Winac Rtx (f) Firmware Version < 2010
Siemens ≫ Simatic Winac Rtx (f) Firmware Version2010 Update-
Siemens ≫ Simatic Winac Rtx (f) Firmware Version2010 Updatesp1
Siemens ≫ Simatic Winac Rtx (f) Firmware Version2010 Updatesp2
Siemens ≫ Sinamics Dcm Firmware Version < 1.5
Siemens ≫ Sinamics Dcm Firmware Version1.5 Update-
Siemens ≫ Sinamics Dcp Firmware Version < 1.3
Siemens ≫ Sinamics G110m Firmware Version < 4.7
Siemens ≫ Sinamics G110m Firmware Version4.7 Update-
Siemens ≫ Sinamics G120 Firmware Version < 4.7
Siemens ≫ Sinamics G120 Firmware Version4.7 Update-
Siemens ≫ Sinamics G130 Firmware Version < 4.7
Siemens ≫ Sinamics G130 Firmware Version4.7 Update-
Siemens ≫ Sinamics G150 Firmware Version < 4.8
Siemens ≫ Sinamics Gh150 Firmware Version < 4.8
Siemens ≫ Sinamics Gh150 Firmware Version4.8 Update-
Siemens ≫ Sinamics Gl150 Firmware Version < 4.8
Siemens ≫ Sinamics Gl150 Firmware Version4.8 Update-
Siemens ≫ Sinamics Gm150 Firmware Version < 4.8
Siemens ≫ Sinamics Gm150 Firmware Version4.8 Update-
Siemens ≫ Sinamics S120 Firmware Version < 4.7
Siemens ≫ Sinamics S120 Firmware Version4.7 Update-
Siemens ≫ Sinamics S150 Firmware Version < 4.8
Siemens ≫ Sinamics Sl150 Firmware Version < 4.7
Siemens ≫ Sinamics Sl150 Firmware Version4.7 Update-
Siemens ≫ Sinumerik 828d Version < 4.8
Siemens ≫ Sinumerik 828d Version4.8 Update-
Siemens ≫ Sinumerik 828d Version4.8 Updatesp1
Siemens ≫ Sinumerik 828d Version4.8 Updatesp2
Siemens ≫ Sinumerik 828d Version4.8 Updatesp3
Siemens ≫ Sinumerik 828d Version4.8 Updatesp4
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.47% | 0.616 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| productcert@siemens.com | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-400 Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.