CVE-2019-10923

EPSS 0.47%
Veröffentlicht 10.10.2019 14:15:14
Zuletzt bearbeitet 21.11.2024 04:20:09
Quelle productcert@siemens.com
Teams Watchlist Login
Unerledigt Login

An attacker with network access to an affected product may cause a denial of service condition by breaking the real-time synchronization (IRT) of the affected installation.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Siemens ≫ Cp1604 Firmware Version < 2.8

Siemens ≫ Cp1604 Version-

Siemens ≫ Cp1616 Firmware Version < 2.8

Siemens ≫ Cp1616 Version-

Siemens ≫ Dk Standard Ethernet Controller Firmware Version < 4.1.1

Siemens ≫ Dk Standard Ethernet Controller Version-

Siemens ≫ Dk Standard Ethernet Controller Firmware Version4.1.1 Update-

Siemens ≫ Dk Standard Ethernet Controller Version-

Siemens ≫ Dk Standard Ethernet Controller Firmware Version4.1.1 Updatep4

Siemens ≫ Dk Standard Ethernet Controller Version-

Siemens ≫ Ek-ertec 200 Firmware Version < 4.5.0

Siemens ≫ Ek-ertec 200 Version-

Siemens ≫ Ek-ertec 200 Firmware Version4.5.0 Update-

Siemens ≫ Ek-ertec 200 Version-

Siemens ≫ Ek-ertec 200p Firmware Version < 4.5.0

Siemens ≫ Ek-ertec 200p Version-

Siemens ≫ Scalance X-200irt Firmware Version < 5.2.1

Siemens ≫ Scalance X-200irt Version-

Siemens ≫ Simatic Et 200m Firmware

Siemens ≫ Simatic Et 200m Version-

Siemens ≫ Simatic Et 200s Firmware

Siemens ≫ Simatic Et 200s Version-

Siemens ≫ Simatic Et 200ecopn Firmware

Siemens ≫ Simatic Et 200ecopn Version-

Siemens ≫ Simatic Pn/pn Coupler 6es7158-3ad01-0xa0 Firmware

Siemens ≫ Simatic Pn/pn Coupler 6es7158-3ad01-0xa0 Version-

Siemens ≫ Simatic S7-300 Cpu Firmware Version < 3.3.17

Siemens ≫ Simatic S7-300 Cpu Version-

Siemens ≫ Simatic S7-300 Cpu 312 Ifm Firmware Version < 3.3.17

Siemens ≫ Simatic S7-300 Cpu 312 Ifm Version-

Siemens ≫ Simatic S7-300 Cpu 313 Firmware Version < 3.3.17

Siemens ≫ Simatic S7-300 Cpu 313 Version-

Siemens ≫ Simatic S7-300 Cpu 314 Firmware Version < 3.3.17

Siemens ≫ Simatic S7-300 Cpu 314 Version-

Siemens ≫ Simatic S7-300 Cpu 314 Ifm Firmware Version < 3.3.17

Siemens ≫ Simatic S7-300 Cpu 314 Ifm Version-

Siemens ≫ Simatic S7-300 Cpu 315 Firmware Version < 3.3.17

Siemens ≫ Simatic S7-300 Cpu 315 Version-

Siemens ≫ Simatic S7-300 Cpu 315-2 Dp Firmware Version < 3.3.17

Siemens ≫ Simatic S7-300 Cpu 315-2 Dp Version-

Siemens ≫ Simatic S7-300 Cpu 316-2 Dp Firmware Version < 3.3.17

Siemens ≫ Simatic S7-300 Cpu 316-2 Dp Version-

Siemens ≫ Simatic S7-300 Cpu 318-2 Firmware Version < 3.3.17

Siemens ≫ Simatic S7-300 Cpu 318-2 Version-

Siemens ≫ Simatic S7-400 V6 Firmware

Siemens ≫ Simatic S7-400 V6 Version-

Siemens ≫ Simatic S7-400 Pn V7 Firmware

Siemens ≫ Simatic S7-400 Pn V7 Version-

Siemens ≫ Simatic S7-400 Dp V7 Firmware

Siemens ≫ Simatic S7-400 Dp V7 Version-

Siemens ≫ Simatic Winac Rtx (f) Firmware Version < 2010

Siemens ≫ Simatic Winac Rtx (f) Version-

Siemens ≫ Simatic Winac Rtx (f) Firmware Version2010 Update-

Siemens ≫ Simatic Winac Rtx (f) Version-

Siemens ≫ Simatic Winac Rtx (f) Firmware Version2010 Updatesp1

Siemens ≫ Simatic Winac Rtx (f) Version-

Siemens ≫ Simatic Winac Rtx (f) Firmware Version2010 Updatesp2

Siemens ≫ Simatic Winac Rtx (f) Version-

Siemens ≫ Simotion Firmware

Siemens ≫ Simotion Version-

Siemens ≫ Sinamics Dcm Firmware Version < 1.5

Siemens ≫ Sinamics Dcm Version-

Siemens ≫ Sinamics Dcm Firmware Version1.5 Update-

Siemens ≫ Sinamics Dcm Version-

Siemens ≫ Sinamics Dcp Firmware Version < 1.3

Siemens ≫ Sinamics Dcp Version-

Siemens ≫ Sinamics G110m Firmware Version < 4.7

Siemens ≫ Sinamics G110m Version-

Siemens ≫ Sinamics G110m Firmware Version4.7 Update-

Siemens ≫ Sinamics G110m Version-

Siemens ≫ Sinamics G120 Firmware Version < 4.7

Siemens ≫ Sinamics G120 Version-

Siemens ≫ Sinamics G120 Firmware Version4.7 Update-

Siemens ≫ Sinamics G120 Version-

Siemens ≫ Sinamics G130 Firmware Version < 4.7

Siemens ≫ Sinamics G130 Version-

Siemens ≫ Sinamics G130 Firmware Version4.7 Update-

Siemens ≫ Sinamics G130 Version-

Siemens ≫ Sinamics G150 Firmware Version < 4.8

Siemens ≫ Sinamics G150 Version-

Siemens ≫ Sinamics Gh150 Firmware Version < 4.8

Siemens ≫ Sinamics Gh150 Version-

Siemens ≫ Sinamics Gh150 Firmware Version4.8 Update-

Siemens ≫ Sinamics Gh150 Version-

Siemens ≫ Sinamics Gl150 Firmware Version < 4.8

Siemens ≫ Sinamics Gl150 Version-

Siemens ≫ Sinamics Gl150 Firmware Version4.8 Update-

Siemens ≫ Sinamics Gl150 Version-

Siemens ≫ Sinamics Gm150 Firmware Version < 4.8

Siemens ≫ Sinamics Gm150 Version-

Siemens ≫ Sinamics Gm150 Firmware Version4.8 Update-

Siemens ≫ Sinamics Gm150 Version-

Siemens ≫ Sinamics S110 Firmware

Siemens ≫ Sinamics S110 Version-

Siemens ≫ Sinamics S120 Firmware Version < 4.7

Siemens ≫ Sinamics S120 Version-

Siemens ≫ Sinamics S120 Firmware Version4.7 Update-

Siemens ≫ Sinamics S120 Version-

Siemens ≫ Sinamics S150 Firmware Version < 4.8

Siemens ≫ Sinamics S150 Version-

Siemens ≫ Sinamics Sl150 Firmware Version < 4.7

Siemens ≫ Sinamics Sl150 Version-

Siemens ≫ Sinamics Sl150 Firmware Version4.7 Update-

Siemens ≫ Sinamics Sl150 Version-

Siemens ≫ Sinamics Sm120 Firmware

Siemens ≫ Sinamics Sm120 Version-

Siemens ≫ Sinumerik 828d Version < 4.8

Siemens ≫ Sinumerik 828d Version4.8 Update-

Siemens ≫ Sinumerik 828d Version4.8 Updatesp1

Siemens ≫ Sinumerik 828d Version4.8 Updatesp2

Siemens ≫ Sinumerik 828d Version4.8 Updatesp3

Siemens ≫ Sinumerik 828d Version4.8 Updatesp4

Siemens ≫ Sinumerik 840d Sl

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.47%	0.616

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
productcert@siemens.com	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

https://cert-portal.siemens.com/productcert/html/ssa-349422.html

https://cert-portal.siemens.com/productcert/pdf/ssa-349422.pdf

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2019-10923

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2019-10923

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2019-10923

EUVD