Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2020-28400
HistoryJul 13, 2021 - 11:15 a.m.

CVE-2020-28400

2021-07-1311:15:00
CWE-770
[email protected]
web.nvd.nist.gov
82
4
cve-2020-28400
vulnerability
denial of service
unauthenticated attacker
dcp reset packets
nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

45.9%

JSON

Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a denial-of-service condition. The vulnerability can be triggered if a large amount of DCP reset packets are sent to the device.

CPENameOperatorVersion
siemens:dk_standard_ethernet_controller_evaluation_kit_firmwaresiemens dk standard ethernet controller evaluation kit firmwareeq*
siemens:ek-ertec_200_evaulation_kit_firmwaresiemens ek-ertec 200 evaulation kit firmwareeq*
siemens:ek-ertec_200p_evaluation_kit_firmwaresiemens ek-ertec 200p evaluation kit firmwarelt4.7
siemens:ruggedcom_rm1224_firmwaresiemens ruggedcom rm1224 firmwarelt6.4
siemens:scalance_m-800_firmwaresiemens scalance m-800 firmwarelt6.4
siemens:scalance_s615_firmwaresiemens scalance s615 firmwarelt6.4
siemens:scalance_w700_firmwaresiemens scalance w700 firmwareeq*
siemens:scalance_w1700_firmwaresiemens scalance w1700 firmwareeq*
siemens:scalance_x200-4_p_irt_firmwaresiemens scalance x200-4 p irt firmwarelt5.5.0
siemens:scalance_x201-3p_irt_firmwaresiemens scalance x201-3p irt firmwarelt5.5.0
Rows per page:
1-10 of 791

Social References

More

Related

nessus 1
prion 1
ics 1
nessus
nessus
Siemens PROFINET Devices Allocation of Resources Without Limits or Throttling (CVE-2020-28400)
2022-02-07 00:00:00
prion
prion
Race condition
2021-07-13 11:15:00
ics
ics
Siemens PROFINET Devices (Update D)
2022-04-14 12:00:00

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

45.9%

JSON
Related for CVE-2020-28400
nessus1prion1ics1