CVE-2019-6568

EPSS 0.41%
Veröffentlicht 17.04.2019 14:29:03
Zuletzt bearbeitet 21.11.2024 04:46:42
Quelle productcert@siemens.com
Teams Watchlist Login
Unerledigt Login

The webserver of the affected devices contains a vulnerability that may lead to
a denial of service condition. An attacker may cause a denial of service
situation which leads to a restart of the webserver of the affected device.

The security vulnerability could be exploited by an attacker with network
access to the affected systems. Successful exploitation requires no system
privileges and no user interaction. An attacker could use the vulnerability
to compromise availability of the device.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 1 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Siemens ≫ Cp1604 Firmware

Siemens ≫ Cp1604 Version-

Siemens ≫ Cp1616 Firmware

Siemens ≫ Cp1616 Version-

Siemens ≫ Simatic Rf185c Firmware Version < 1.1.0

Siemens ≫ Simatic Rf185c Version-

Siemens ≫ Simatic Cp343-1 Advanced Firmware

Siemens ≫ Simatic Cp343-1 Advanced Version-

Siemens ≫ Simatic Cp443-1 Firmware

Siemens ≫ Simatic Cp443-1 Version-

Siemens ≫ Simatic Cp443-1 Advanced Firmware

Siemens ≫ Simatic Cp443-1 Advanced Version-

Siemens ≫ Simatic Et 200 Sp Open Controller Cpu 1515sp Pc Firmware Version < 2.1.6

Siemens ≫ Simatic Et 200 Sp Open Controller Cpu 1515sp Pc Version-

Siemens ≫ Simatic Et 200 Sp Open Controller Cpu 1515sp Pc2 Firmware Version < 2.7

Siemens ≫ Simatic Et 200 Sp Open Controller Cpu 1515sp Pc2 Version-

Siemens ≫ Simatic Hmi Comfort Outdoor Panels Firmware Version < 15.1

Siemens ≫ Simatic Hmi Comfort Outdoor Panels Version-

Siemens ≫ Simatic Hmi Comfort Outdoor Panels Firmware Version15.1 Update-

Siemens ≫ Simatic Hmi Comfort Outdoor Panels Version-

Siemens ≫ Simatic Hmi Comfort Panels Firmware Version < 15.1

Siemens ≫ Simatic Hmi Comfort Panels Version-

Siemens ≫ Simatic Hmi Comfort Panels Firmware Version15.1 Update-

Siemens ≫ Simatic Hmi Comfort Panels Version-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp400f Firmware Version < 15.1

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp400f Version-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp400f Firmware Version15.1 Update-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp400f Version-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp700 Firmware Version < 15.1

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp700 Version-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp700 Firmware Version15.1 Update-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp700 Version-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp700f Firmware Version < 15.1

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp700f Version-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp700f Firmware Version15.1 Update-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp700f Version-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp900 Firmware Version < 15.1

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp900 Version-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp900 Firmware Version15.1 Update-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp900 Version-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp900f Firmware Version < 15.1

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp900f Version-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp900f Firmware Version15.1 Update-

Siemens ≫ Simatic Hmi Ktp Mobile Panels Ktp900f Version-

Siemens ≫ Simatic Cp443-1 Opc Ua

Siemens ≫ Simatic Ipc Diagmonitor Version < 5.1.3

Siemens ≫ Simatic S7-1500 Software Controller Version < 2.7

Siemens ≫ Simatic S7-plcsim Advanced Version < 2.0

Siemens ≫ Simatic S7-plcsim Advanced Version2.0 Update-

Siemens ≫ Simatic S7-plcsim Advanced Version2.0 Updatesp1

Siemens ≫ Simatic Wincc Runtime Advanced Version < 15.1

Siemens ≫ Simatic Wincc Runtime Advanced Version15.1 Update-

Siemens ≫ Simatic Wincc Runtime Advanced Version15.1 Updateupdate1

Siemens ≫ Simatic Wincc Runtime Advanced Version15.1 Updateupdate2

Siemens ≫ Simatic Wincc Runtime Advanced Version15.1 Updateupdate3

Siemens ≫ Sitop Manager Version < 1.1

Siemens ≫ Simatic Rf600r Firmware Version < 3.2.1

Siemens ≫ Simatic Rf600r Version-

Siemens ≫ Simatic Rf188c Firmware Version < 1.1.0

Siemens ≫ Simatic Rf188c Version-

Siemens ≫ Simatic Rf186c Firmware Version < 1.1.0

Siemens ≫ Simatic Rf186c Version-

Siemens ≫ Simatic Rf182c Firmware

Siemens ≫ Simatic Rf182c Version-

Siemens ≫ Simatic Rf181-eip Firmware

Siemens ≫ Simatic Rf181-eip Version-

Siemens ≫ Simatic S7-1500 Firmware Version < 2.6.1

Siemens ≫ Simatic S7-1500 Version-

Siemens ≫ Simatic S7-300 Firmware Version < 3.3.17

Siemens ≫ Simatic S7-300 Version-

Siemens ≫ Simatic S7-400 Pn Firmware

Siemens ≫ Simatic S7-400 Pn Version-

Siemens ≫ Simatic S7-400 Pn/dp Firmware

Siemens ≫ Simatic S7-400 Pn/dp Version-

Siemens ≫ Simatic Teleservice Adapter Ie Advanced Firmware

Siemens ≫ Simatic Teleservice Adapter Ie Advanced Version-

Siemens ≫ Simatic Teleservice Adapter Ie Basic Firmware

Siemens ≫ Simatic Teleservice Adapter Ie Basic Version-

Siemens ≫ Simatic Teleservice Adapter Ie Standard Firmware

Siemens ≫ Simatic Teleservice Adapter Ie Standard Version-

Siemens ≫ Simatic Winac Rtx Firmware Version < 2010

Siemens ≫ Simatic Winac Rtx Version-

Siemens ≫ Simatic Winac Rtx Firmware Version2010 Update-

Siemens ≫ Simatic Winac Rtx Version-

Siemens ≫ Simocode Pro V Eip Firmware Version < 1.1.3

Siemens ≫ Simocode Pro V Eip Version-

Siemens ≫ Simocode Pro V Pn Firmware Version < 2.1.3

Siemens ≫ Simocode Pro V Pn Version-

Siemens ≫ Sinamics G130 Firmware Version < 5.2

Siemens ≫ Sinamics G130 Version-

Siemens ≫ Sinamics G150 Firmware Version < 5.2

Siemens ≫ Sinamics G150 Version-

Siemens ≫ Sinamics S120 Firmware Version < 5.2

Siemens ≫ Sinamics S120 Version-

Siemens ≫ Sinamics S150 Firmware Version < 5.1

Siemens ≫ Sinamics S150 Version-

Siemens ≫ Sinamics S150 Firmware Version5.1 Update-

Siemens ≫ Sinamics S150 Version-

Siemens ≫ Sinamics S150 Firmware Version5.1 Updatesp1

Siemens ≫ Sinamics S150 Version-

Siemens ≫ Sinamics S150 Firmware Version5.1 Updatesp1_hotfix2

Siemens ≫ Sinamics S150 Version-

Siemens ≫ Sinamics S210 Firmware Version < 5.1

Siemens ≫ Sinamics S210 Version-

Siemens ≫ Sinamics S210 Firmware Version5.1 Update-

Siemens ≫ Sinamics S210 Version-

Siemens ≫ Sinamics S210 Firmware Version5.1 Updatesp1

Siemens ≫ Sinamics S210 Version-

Siemens ≫ Sitop Psu8600 Firmware Version < 1.5

Siemens ≫ Sitop Psu8600 Version-

Siemens ≫ Sitop Ups1600 Firmware Version < 2.3

Siemens ≫ Sitop Ups1600 Version-

Siemens ≫ Tim 1531 Irc Firmware Version < 2.1

Siemens ≫ Tim 1531 Irc Version-

Siemens ≫ Simatic S7-1500f Firmware Version < 2.6.1

Siemens ≫ Simatic S7-1500f Version-

Siemens ≫ Simatic S7-1500s Firmware Version < 2.6.1

Siemens ≫ Simatic S7-1500s Version-

Siemens ≫ Simatic S7-1500t Firmware Version < 2.6.1

Siemens ≫ Simatic S7-1500t Version-

Siemens ≫ Sinamics Gh150 Firmware Version < 4.8

Siemens ≫ Sinamics Gh150 Version-

Siemens ≫ Sinamics Gh150 Firmware Version4.8 Update-

Siemens ≫ Sinamics Gh150 Version-

Siemens ≫ Sinamics Gl150 Firmware Version < 4.8

Siemens ≫ Sinamics Gl150 Version-

Siemens ≫ Sinamics Gl150 Firmware Version4.8 Update-

Siemens ≫ Sinamics Gl150 Version-

Siemens ≫ Sinamics Gm150 Firmware Version < 4.8

Siemens ≫ Sinamics Gm150 Version-

Siemens ≫ Sinamics Gm150 Firmware Version4.8 Update-

Siemens ≫ Sinamics Gm150 Version-

Siemens ≫ Sinamics Sl150 Firmware Version < 4.8

Siemens ≫ Sinamics Sl150 Version-

Siemens ≫ Sinamics Sl150 Firmware Version4.8 Update-

Siemens ≫ Sinamics Sl150 Version-

Siemens ≫ Sinamics Sm120 Firmware Version < 4.8

Siemens ≫ Sinamics Sm120 Version-

Siemens ≫ Sinamics Sm120 Firmware Version4.8 Update-

Siemens ≫ Sinamics Sm120 Version-

Siemens ≫ Sinamics Sm150 Firmware Version < 5.1

Siemens ≫ Sinamics Sm150 Version-

Siemens ≫ Sinamics Sm150 Firmware Version5.1 Update-

Siemens ≫ Sinamics Sm150 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.41%	0.603

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
productcert@siemens.com	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

https://cert-portal.siemens.com/productcert/pdf/ssa-480230.pdf

Vendor Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-530931.pdf

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2019-6568

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2019-6568

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2019-6568

EUVD