Lucene search

[email protected]CVE-2023-46284

HistoryDec 12, 2023 - 12:15 p.m.

CVE-2023-46284

2023-12-1212:15:14

CWE-787

CWE-120

[email protected]

web.nvd.nist.gov

siemens

opcenter quality

simatic pcs neo

sinumerik integrate runmyhmi

totally integrated automation portal

tia portal

cve-2023-46284

nvd

out of bounds write

buffer overflow

denial of service

remote attack

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.0005 Low

EPSS

Percentile

16.2%

JSON

A vulnerability has been identified in Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions < V17 Update 7), Totally Integrated Automation Portal (TIA Portal) V18 (All versions < V18 Update 3). The affected application contains an out of bounds write past the end of an allocated buffer when handling specific requests on port 4002/tcp and 4004/tcp. This could allow an attacker to crash the application. The corresponding service is auto-restarted after the crash.

CPENameOperatorVersion
siemens:opcenter_qualitysiemens opcenter qualityeq-
siemens:simatic_pcs_neosiemens simatic pcs neolt4.1
siemens:simatic_pcs_neosiemens simatic pcs neoeq4.0
siemens:simatic_pcs_neosiemens simatic pcs neoeq-
siemens:simatic_pcs_neosiemens simatic pcs neoeq3.1
siemens:simatic_pcs_neosiemens simatic pcs neoeq3.0
siemens:sinumerik_integrate_runmyhmi_\/automotivesiemens sinumerik integrate runmyhmi \/automotiveeq-
siemens:totally_integrated_automation_portalsiemens totally integrated automation portallt15
siemens:totally_integrated_automation_portalsiemens totally integrated automation portaleq14.0
siemens:totally_integrated_automation_portalsiemens totally integrated automation portallt16

CPE	Name	Operator	Version
siemens:opcenter_quality	siemens opcenter quality	eq	-
siemens:simatic_pcs_neo	siemens simatic pcs neo	lt	4.1
siemens:simatic_pcs_neo	siemens simatic pcs neo	eq	4.0
siemens:simatic_pcs_neo	siemens simatic pcs neo	eq	-
siemens:simatic_pcs_neo	siemens simatic pcs neo	eq	3.1
siemens:simatic_pcs_neo	siemens simatic pcs neo	eq	3.0
siemens:sinumerik_integrate_runmyhmi_\/automotive	siemens sinumerik integrate runmyhmi \/automotive	eq	-
siemens:totally_integrated_automation_portal	siemens totally integrated automation portal	lt	15
siemens:totally_integrated_automation_portal	siemens totally integrated automation portal	eq	14.0
siemens:totally_integrated_automation_portal	siemens totally integrated automation portal	lt	16

Rows per page:

1-10 of 191

References

cert-portal.siemens.com/productcert/html/ssa-999588.html

cert-portal.siemens.com/productcert/pdf/ssa-999588.pdf

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.8 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.0005 Low

EPSS

Percentile

16.2%

JSON

Related for CVE-2023-46284

prion1 cvelist1 ics1