CVE-2022-34819

EPSS 0.66%
Veröffentlicht 12.07.2022 10:15:12
Zuletzt bearbeitet 21.11.2024 07:10:14
Quelle productcert@siemens.com
Teams Watchlist Login
Unerledigt Login

A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions < V3.3.46), SIMATIC CP 1243-1 (All versions < V3.3.46), SIMATIC CP 1243-7 LTE EU (All versions < V3.3.46), SIMATIC CP 1243-7 LTE US (All versions < V3.3.46), SIMATIC CP 1243-8 IRC (All versions < V3.3.46), SIMATIC CP 1542SP-1 IRC (All versions >= V2.0 < V2.2.28), SIMATIC CP 1543-1 (All versions < V3.0.22), SIMATIC CP 1543SP-1 (All versions >= V2.0 < V2.2.28), SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL (All versions >= V2.0 < V2.2.28), SIPLUS ET 200SP CP 1543SP-1 ISEC (All versions >= V2.0 < V2.2.28), SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL (All versions >= V2.0 < V2.2.28), SIPLUS NET CP 1242-7 V2 (All versions < V3.3.46), SIPLUS NET CP 1543-1 (All versions < V3.0.22), SIPLUS S7-1200 CP 1243-1 (All versions < V3.3.46), SIPLUS S7-1200 CP 1243-1 RAIL (All versions < V3.3.46). The application lacks proper validation of user-supplied data when parsing specific messages. This could result in a heap-based buffer overflow. An attacker could leverage this vulnerability to execute code in the context of device.

Betroffene Produkte Warnungen 0 Metriken 4 CWE 2 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Siemens ≫ Simatic Cp 1242-7 V2 Firmware

Siemens ≫ Simatic Cp 1242-7 V2 Version-

Siemens ≫ Simatic Cp 1243-1 Firmware

Siemens ≫ Simatic Cp 1243-1 Version-

Siemens ≫ Simatic Cp 1243-7 Lte Eu Firmware

Siemens ≫ Simatic Cp 1243-7 Lte Eu Version-

Siemens ≫ Simatic Cp 1243-7 Lte Us Firmware

Siemens ≫ Simatic Cp 1243-7 Lte Us Version-

Siemens ≫ Simatic Cp 1243-8 Irc Firmware

Siemens ≫ Simatic Cp 1243-8 Irc Version-

Siemens ≫ Simatic Cp 1542sp-1 Irc Firmware Version >= 2.0

Siemens ≫ Simatic Cp 1542sp-1 Irc Version-

Siemens ≫ Simatic Cp 1543-1 Firmware Version < 3.0.22

Siemens ≫ Simatic Cp 1543-1 Version-

Siemens ≫ Simatic Cp 1543sp-1 Firmware Version >= 2.0

Siemens ≫ Simatic Cp 1543sp-1 Version-

Siemens ≫ Siplus Et 200sp Cp 1542sp-1 Irc Tx Rail Firmware Version >= 2.0

Siemens ≫ Siplus Et 200sp Cp 1542sp-1 Irc Tx Rail Version-

Siemens ≫ Siplus Et 200sp Cp 1543sp-1 Isec Firmware Version >= 2.0

Siemens ≫ Siplus Et 200sp Cp 1543sp-1 Isec Version-

Siemens ≫ Siplus Et 200sp Cp 1543sp-1 Isec Tx Rail Firmware Version >= 2.0

Siemens ≫ Siplus Et 200sp Cp 1543sp-1 Isec Tx Rail Version-

Siemens ≫ Siplus Net Cp 1242-7 V2 Firmware

Siemens ≫ Siplus Net Cp 1242-7 V2 Version-

Siemens ≫ Siplus Net Cp 1543-1 Firmware Version < 3.0.22

Siemens ≫ Siplus Net Cp 1543-1 Version-

Siemens ≫ Siplus S7-1200 Cp 1243-1 Firmware

Siemens ≫ Siplus S7-1200 Cp 1243-1 Version-

Siemens ≫ Siplus S7-1200 Cp 1243-1 Rail Firmware

Siemens ≫ Siplus S7-1200 Cp 1243-1 Rail Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.66%	0.701

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.3	8.6	10	AV:N/AC:M/Au:N/C:C/I:C/A:C
nvd@nist.gov	10	3.9	6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
productcert@siemens.com	10	3.9	6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE-122 Heap-based Buffer Overflow

A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://cert-portal.siemens.com/productcert/pdf/ssa-517377.pdf

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-34819

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-34819

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-34819

EUVD