Design/Logic Flaw

2023-07-1110:15:00

PRIOn knowledge base

www.prio-n.com

simatic mv540

simatic mv550

simatic mv560

denial of service

unauthenticated remote attacker

vulnerability

ethernet frames.

7.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

35.1%

JSON

A vulnerability has been identified in SIMATIC MV540 H (All versions < V3.3.4), SIMATIC MV540 S (All versions < V3.3.4), SIMATIC MV550 H (All versions < V3.3.4), SIMATIC MV550 S (All versions < V3.3.4), SIMATIC MV560 U (All versions < V3.3.4), SIMATIC MV560 X (All versions < V3.3.4). Affected devices cannot properly process specially crafted Ethernet frames sent to the devices. This could allow an unauthenticated remote attacker to cause a denial of service condition. The affected devices must be restarted manually.

CPENameOperatorVersion
simatic_mv540_h_firmwarelt3.3.4
simatic_mv540_s_firmwarelt3.3.4
simatic_mv550_h_firmwarelt3.3.4
simatic_mv550_s_firmwarelt3.3.4
simatic_mv560_u_firmwarelt3.3.4
simatic_mv560_x_firmwarelt3.3.4

Name	Operator	Version
simatic_mv540_h_firmware	lt	3.3.4
simatic_mv540_s_firmware	lt	3.3.4
simatic_mv550_h_firmware	lt	3.3.4
simatic_mv550_s_firmware	lt	3.3.4
simatic_mv560_u_firmware	lt	3.3.4
simatic_mv560_x_firmware	lt	3.3.4

References

cert-portal.siemens.com/productcert/pdf/ssa-561322.pdf