Описание
A vulnerability has been identified in SIMATIC S7-200 SMART CPU family (All versions >= V2.2 < V2.5.1). Affected devices do not properly handle large numbers of new incomming connections and could crash under certain circumstances. An attacker may leverage this to cause a Denial-of-Service situation.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 2.2 (включая) до 2.5.1 (исключая)
Одновременно
cpe:2.3:o:siemens:simatic_s7-200_smart_sr_cpu_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_s7-200_smart_sr_cpu:-:*:*:*:*:*:*:*
Конфигурация 2Версия от 2.2 (включая) до 2.5.1 (исключая)
Одновременно
cpe:2.3:o:siemens:simatic_s7-200_smart_st_cpu_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:simatic_s7-200_smart_st_cpu:-:*:*:*:*:*:*:*
EPSS
Процентиль: 59%
0.00389
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-400
CWE-400
Связанные уязвимости
github
больше 3 лет назад
A vulnerability has been identified in SIMATIC S7-200 SMART CPU family (All versions >= V2.2 < V2.5.1). Affected devices do not properly handle large numbers of new incomming connections and could crash under certain circumstances. An attacker may leverage this to cause a Denial-of-Service situation.
EPSS
Процентиль: 59%
0.00389
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-400
CWE-400