Lucene search

[email protected]NVD:CVE-2023-28831

HistorySep 12, 2023 - 10:15 a.m.

CVE-2023-28831

2023-09-1210:15:27

CWE-190

[email protected]

web.nvd.nist.gov

cve-2023-28831

opc ua

integer overflow

ansi c

c++

infinite loop

certificate validation

denial of service

unauthenticated

remote attacker

crafted certificate

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

48.4%

JSON

The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation.

This could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate.

Affected configurations

NVD

Node

siemenssimatic_cloud_connect_7_cc712Match-

AND

siemenssimatic_cloud_connect_7_cc712_firmwareRange<2.2

Node

siemenssimatic_cloud_connect_7_cc716Match-

AND

siemenssimatic_cloud_connect_7_cc716_firmwareRange<2.2

Node

siemenssimatic_drive_controller_cpu_1504d_tfMatch-

AND

siemenssimatic_drive_controller_cpu_1504d_tf_firmwareRange<2.2

Node

siemenssimatic_drive_controller_cpu_1507d_tfMatch-

AND

siemenssimatic_drive_controller_cpu_1507d_tf_firmwareRange<2.9.7

Node

siemenssimatic_et_200sp_open_controller_cpu_firmwareRange<2.9.7

AND

siemenssimatic_et_200sp_open_controller_cpuMatch-

Node

siemenssimatic_s7-1200_cpu_firmwareRange<3.0.3

AND

siemenssimatic_s7-1200_cpuMatch-

Node

siemenssimatic_s7-1500_cpu_1510sp-1_pn_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1510sp-1_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1510sp_f-1_pn_firmwareRange<3.0.3

AND

siemenssimatic_s7-1500_cpu_1510sp_f-1_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1511-1_pnMatch-

AND

siemenssimatic_s7-1500_cpu_1511-1_pn_firmwareRange<21.9.7

Node

siemenssimatic_s7-1500_cpu_1511c-1_pnMatch-

AND

siemenssimatic_s7-1500_cpu_1511c-1_pn_firmwareRange<30.0.0

Node

siemenssimatic_s7-1500_cpu_1511f-1_pnMatch-

AND

siemenssimatic_s7-1500_cpu_1511f-1_pn_firmwareRange<2.9.7

Node

siemenssimatic_s7-1500_cpu_1511t-1_pnMatch-

AND

siemenssimatic_s7-1500_cpu_1511t-1_pn_firmwareRange<2.9.7

Node

siemenssimatic_s7-1500_cpu_1511tf-1_pn_firmwareRange<3.0.3

AND

siemenssimatic_s7-1500_cpu_1511tf-1_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1512c-1_pn_firmwareRange<3.0.3

AND

siemenssimatic_s7-1500_cpu_1512c-1_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1512sp-1_pn_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1512sp-1_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1512sp_f-1_pn_firmwareRange<3.0.3

AND

siemenssimatic_s7-1500_cpu_1512sp_f-1_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1513-1_pn_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1513-1_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1513f-1_pn_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1513f-1_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1513r-1_pn_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1513r-1_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1514sp-2_pn_firmwareRange<3.0.3

AND

siemenssimatic_s7-1500_cpu_1514sp-2_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1514sp_f-2_pnMatch-

AND

siemenssimatic_s7-1500_cpu_1514sp_f-2_pn_firmwareRange<2.9.7

Node

siemenssimatic_s7-1500_cpu_1514spt-2_pn_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1514spt-2_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1514spt_f-2_pn_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1514spt_f-2_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1515-2_pn_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1515-2_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1515f-2_pn_firmwareRange<3.0.3

AND

siemenssimatic_s7-1500_cpu_1515f-2_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1515r-2_pn_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1515r-2_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1515t-2_pn_firmwareRange<3.0.3

AND

siemenssimatic_s7-1500_cpu_1515t-2_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1515tf-2_pn_firmwareRange<3.0.3

AND

siemenssimatic_s7-1500_cpu_1515tf-2_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1516-3_pn\/dp_firmwareRange<3.0.3

AND

siemenssimatic_s7-1500_cpu_1516-3_pn\/dpMatch-

Node

siemenssimatic_s7-1500_cpu_1516f-3_pn\/dp_firmwareRange<3.0.3

AND

siemenssimatic_s7-1500_cpu_1516f-3_pn\/dpMatch-

Node

siemenssimatic_s7-1500_cpu_1516t-3_pn\/dp_firmwareRange<3.0.3

AND

siemenssimatic_s7-1500_cpu_1516t-3_pn\/dpMatch-

Node

siemenssimatic_s7-1500_cpu_1516tf-3_pn\/dp_firmwareRange<3.0.3

AND

siemenssimatic_s7-1500_cpu_1516tf-3_pn\/dpMatch-

Node

siemenssimatic_s7-1500_cpu_1517-3_pn\/dp_firmwareRange<3.0.3

AND

siemenssimatic_s7-1500_cpu_1517-3_pn\/dpMatch-

Node

siemenssimatic_s7-1500_cpu_1517f-3_pn\/dp_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1517f-3_pn\/dpMatch-

Node

siemenssimatic_s7-1500_cpu_1517h-3_pn_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1517h-3_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1517t-3_pn\/dp_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1517t-3_pn\/dpMatch-

Node

siemenssimatic_s7-1500_cpu_1517tf-3_pn\/dp_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1517tf-3_pn\/dpMatch-

Node

siemenssimatic_s7-1500_cpu_1518-4_pn\/dp_firmwareRange<21.9.7

AND

siemenssimatic_s7-1500_cpu_1518-4_pn\/dpMatch-

Node

siemenssimatic_s7-1500_cpu_1518-4_pn\/dp_mfp_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1518-4_pn\/dp_mfpMatch-

Node

siemenssimatic_s7-1500_cpu_1518f-4_pn\/dp_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1518f-4_pn\/dpMatch-

Node

siemenssimatic_s7-1500_cpu_1518f-4_pn\/dp_mfp_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1518f-4_pn\/dp_mfpMatch-

Node

siemenssimatic_s7-1500_cpu_1518hf-4_pn_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1518hf-4_pnMatch-

Node

siemenssimatic_s7-1500_cpu_1518t-4_pn\/dp_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1518t-4_pn\/dpMatch-

Node

siemenssimatic_s7-1500_cpu_1518tf-4_pn\/dp_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_1518tf-4_pn\/dpMatch-

Node

siemenssimatic_s7-1500_cpu_s7-1518-4_pn\/dp_odk_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_s7-1518-4_pn\/dp_odkMatch-

Node

siemenssimatic_s7-1500_cpu_s7-1518f-4_pn\/dp_odk_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_cpu_s7-1518f-4_pn\/dp_odkMatch-

Node

siemenssimatic_s7-1500_et_200pro_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_et_200proMatch-

Node

siemenssimatic_s7-1500_software_controller_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_software_controllerMatchv2

Node

siemenssimatic_s7-1500_software_controller_firmwareRange<2.9.7

AND

siemenssimatic_s7-1500_software_controllerMatchv3

Node

siemenssimatic_s7-plcsim_advanced_firmwareRange<2.9.7

AND

siemenssimatic_s7-plcsim_advancedMatch-

Node

siemenssiplus_et_200sp_cpu_1510sp-1_pn_firmwareRange<2.9.7

AND

siemenssiplus_et_200sp_cpu_1510sp-1_pnMatch-

Node

siemenssiplus_et_200sp_cpu_1510sp-1_pn_rail_firmwareRange<2.9.7

AND

siemenssiplus_et_200sp_cpu_1510sp-1_pn_railMatch-

Node

siemenssiplus_et_200sp_cpu_1510sp_f-1_pn_firmwareRange<2.9.7

AND

siemenssiplus_et_200sp_cpu_1510sp_f-1_pnMatch-

Node

siemenssiplus_et_200sp_cpu_1510sp_f-1_pn_rail_firmwareRange<2.9.7

AND

siemenssiplus_et_200sp_cpu_1510sp_f-1_pn_railMatch-

Node

siemenssiplus_et_200sp_cpu_1512sp-1_pn_firmwareRange<2.9.7

AND

siemenssiplus_et_200sp_cpu_1512sp-1_pnMatch-

Node

siemenssiplus_et_200sp_cpu_1512sp-1_pn_rail_firmwareRange<2.9.7

AND

siemenssiplus_et_200sp_cpu_1512sp-1_pn_railMatch-

Node

siemenssiplus_et_200sp_cpu_1512sp_f-1_pn_firmwareRange<2.9.7

AND

siemenssiplus_et_200sp_cpu_1512sp_f-1_pnMatch-

Node

siemenssiplus_et_200sp_cpu_1512sp_f-1_pn_rail_firmwareRange<2.9.7

AND

siemenssiplus_et_200sp_cpu_1512sp_f-1_pn_railMatch-

Node

siemenssiplus_s7-1500_cpu_1511-1_pn_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1511-1_pnMatch-

Node

siemenssiplus_s7-1500_cpu_1511-1_pn_t1_rail_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1511-1_pn_t1_railMatch-

Node

siemenssiplus_s7-1500_cpu_1511-1_pn_tx_rail_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1511-1_pn_tx_railMatch-

Node

siemenssiplus_s7-1500_cpu_1511f-1_pn_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1511f-1_pnMatch-

Node

siemenssiplus_s7-1500_cpu_1513-1_pn_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1513-1_pnMatch-

Node

siemenssiplus_s7-1500_cpu_1513f-1_pn_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1513f-1_pnMatch-

Node

siemenssiplus_s7-1500_cpu_1515f-2_pn_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1515f-2_pnMatch-

Node

siemenssiplus_s7-1500_cpu_1515f-2_pn_rail_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1515f-2_pn_railMatch-

Node

siemenssiplus_s7-1500_cpu_1515f-2_pn_t2_rail_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1515f-2_pn_t2_railMatch-

Node

siemenssiplus_s7-1500_cpu_1515r-2_pn_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1515r-2_pnMatch-

Node

siemenssiplus_s7-1500_cpu_1515r-2_pn_tx_rail_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1515r-2_pn_tx_railMatch-

Node

siemenssiplus_s7-1500_cpu_1516-3_pn\/dp_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1516-3_pn\/dpMatch-

Node

siemenssiplus_s7-1500_cpu_1516-3_pn\/dp_rail_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1516-3_pn\/dp_railMatch-

Node

siemenssiplus_s7-1500_cpu_1516-3_pn\/dp_tx_rail_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1516-3_pn\/dp_tx_railMatch-

Node

siemenssiplus_s7-1500_cpu_1516f-3_pn\/dp_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1516f-3_pn\/dpMatch-

Node

siemenssiplus_s7-1500_cpu_1516f-3_pn\/dp_rail_firmwareRange<2.9.7

AND

siemenssiplus_s7-1500_cpu_1516f-3_pn\/dp_railMatch-

Node

siemenssiplus_s7-1500_cpu_1517h-3_pn_firmwareRange<3.0.3

AND

siemenssiplus_s7-1500_cpu_1517h-3_pnMatch-

Node

siemenssiplus_s7-1500_cpu_1518-4_pn\/dp_firmwareRange<3.0.3

AND

siemenssiplus_s7-1500_cpu_1518-4_pn\/dpMatch-

Node

siemenssiplus_s7-1500_cpu_1518-4_pn\/dp_mfp_firmwareRange<3.0.3

AND

siemenssiplus_s7-1500_cpu_1518-4_pn\/dp_mfpMatch-

Node

siemenssiplus_s7-1500_cpu_1518f-4_pn\/dp_firmwareRange<3.0.3

AND

siemenssiplus_s7-1500_cpu_1518f-4_pn\/dpMatch-

Node

siemenssiplus_s7-1500_cpu_1518hf-4_pn_firmwareRange<3.0.3

AND

siemenssiplus_s7-1500_cpu_1518hf-4_pnMatch-

References

cert-portal.siemens.com/productcert/html/ssa-118850.html

cert-portal.siemens.com/productcert/html/ssa-711309.html

cert-portal.siemens.com/productcert/pdf/ssa-118850.pdf

cert-portal.siemens.com/productcert/pdf/ssa-711309.pdf

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

48.4%

JSON

Related for NVD:CVE-2023-28831

ics2 cve1 prion1 nessus1 cnvd1 cvelist1