Описание
A vulnerability has been identified in SIMATIC eaSie Core Package (All versions < V22.00). The affected systems do not properly validate input that is sent to the underlying message passing framework. This could allow an remote attacker to trigger a denial of service of the affected system.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 22.00 (исключая)
cpe:2.3:a:siemens:simatic_easie_core_package:*:*:*:*:*:*:*:*
EPSS
Процентиль: 67%
0.00539
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-20
CWE-20
Связанные уязвимости
CVSS3: 7.5
github
больше 3 лет назад
A vulnerability has been identified in SIMATIC eaSie Core Package (All versions < V22.00). The affected systems do not properly validate input that is sent to the underlying message passing framework. This could allow an remote attacker to trigger a denial of service of the affected system.
EPSS
Процентиль: 67%
0.00539
Низкий
7.5 High
CVSS3
5 Medium
CVSS2
Дефекты
CWE-20
CWE-20