Lucene search
+L

117 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:41 a.m.6 views

SUSE CVE-2021-31401

An issue was discovered in tcprcv in nptcp.c in HCC embedded InterNiche 4.0.1. The TCP header processing code doesn't sanitize the value of the IP total length field header length + data length. With a crafted IP packet, an integer overflow occurs whenever the value of the IP data length is...

7.5CVSS7.8AI score0.02252EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/04/28 12:0 a.m.60 views

Siemens PROFINET Stack Integrated on Interniche Stack Uncontrolled Resource Consumption (CVE-2022-25622)

A vulnerability has been identified in SIMATIC CFU DIQ All versions, SIMATIC CFU PA All versions, SIMATIC S7-1500 CPU family incl. related ET200 CPUs and SIPLUS variants All versions V2.0.0, SIMATIC S7-300 CPU family incl. related ET200 CPUs and SIPLUS variants All versions, SIMATIC S7-400 H V6 C...

7.5CVSS7.1AI score0.00849EPSS
Exploits0References3
CNVD
CNVD
added 2022/04/13 12:0 a.m.21 views

Siemens PROFINET Stack Integrated on Interniche Stack Denial of Service Vulnerability

The SIMATIC S7-400 CPU series is designed for process control in industrial environments.The SIMATIC S7-300 CPU series is designed for discrete and continuous control in industrial environments.The SIMATIC S7-1500 CPU series is designed for discrete and continuous control in industrial...

7.5CVSS6.8AI score0.00849EPSS
Exploits0References1
OSV
OSV
added 2022/04/12 9:15 a.m.3 views

CVE-2022-25622

The PROFINET PNIO stack, when integrated with the Interniche IP stack, improperly handles internal resources for TCP segments where the minimum TCP-Header length is less than defined. This could allow an attacker to create a denial of service condition for TCP services on affected devices by...

7.5CVSS7.1AI score0.00849EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/04/12 12:0 a.m.9 views

Siemens SIMATIC 资源管理错误漏洞

The SIMATIC S7-400 CPU series is designed for process control in industrial environments.The SIMATIC S7-300 CPU series is designed for discrete and continuous control in industrial environments.The SIMATIC S7-1500 CPU series is designed for discrete and continuous control in industrial...

7.5CVSS5.7AI score0.00849EPSS
Exploits0References7
ICS
ICS
added 2022/04/12 12:0 a.m.49 views

Siemens PROFINET Stack Integrated on Interniche Stack

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

7.5CVSS6.6AI score0.00849EPSS
Exploits0References10
Cvelist
Cvelist
added 2022/04/12 12:0 a.m.21 views

CVE-2022-25622

The PROFINET PNIO stack, when integrated with the Interniche IP stack, improperly handles internal resources for TCP segments where the minimum TCP-Header length is less than defined. This could allow an attacker to create a denial of service condition for TCP services on affected devices by...

5.3CVSS7.6AI score0.00849EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.9 views

The vulnerability of DNS-client TCP/IP clients of NicheLite and InterNiche allows a hacker to execute arbitrary code.

The vulnerability of TCP/IP client applications of NicheLite and InterNiche lies in errors during the processing of input data length parameters. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS8.4AI score0.03627EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.6 views

The vulnerability of DNS-client TCP/IP clients of NicheLite and InterNiche allows attackers to perform spoofing attacks.

The vulnerability of TCP/IP client applications of NicheLite and InterNiche is related to deficiencies in prediction capabilities. Exploiting this vulnerability allows a malicious actor to perform spear-phishing attacks remotely...

4CVSS7.4AI score0.0127EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.9 views

The vulnerability of the TCP protocol implementation in NicheLite and InterNiche TCP/IP implementations allows a attacker to cause service failures.

The vulnerability of the TCP protocol implementation in NicheLite and InterNiche protocols is related to an error in exception handling. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.8CVSS7.4AI score0.01493EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.6 views

The vulnerability of DNS-client TCP/IP clients of NicheLite and InterNiche allows a hacker to induce a service failure.

The vulnerability of DNS-client TCP/IP implementations like NicheLite and InterNiche involves an escape from the expected range of values for certain indicators. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.8CVSS7.4AI score0.01453EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.9 views

The vulnerability of TCP/IP NicheLite and InterNiche, related to comparing numerical ranges without minimal checks, allows attackers to cause service failures.

The vulnerability of TCP/IP NicheLite and InterNiche relates to the comparison of numerical ranges without any minimal checks during HTTP requests processing. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS7.5AI score0.01675EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.7 views

The vulnerability of DNS-client TCP/IP clients of NicheLite and InterNiche allows a hacker to induce a service failure.

The vulnerability of TCP/IP client applications of NicheLite and InterNiche lies in errors during the processing of input data length parameters. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

8.5CVSS7.4AI score0.0227EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.7 views

The vulnerability in the implementation of the ICMP checksum protocol for TCP/IP implementations like NicheLite and InterNiche allows a attacker to cause a service failure.

The vulnerability of the ICMP checksum implementation in TCP/IP implementations like NicheLite and InterNiche is related to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS7.5AI score0.02287EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.6 views

The vulnerability of the TCP protocol implementation in NicheLite and InterNiche TCP/IP implementations allows a attacker to cause service failures.

The vulnerability of the TCP protocol implementation in NicheLite and InterNiche TCP/IP protocols is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to cause service failures by sending specially crafted IP packets...

7.8CVSS7.4AI score0.02252EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.8 views

The vulnerability in the implementation of the TCP checksum function for TCP/IP protocols such as NicheLite and InterNiche allows a attacker to cause a service failure.

The vulnerability of the TCP checksum implementation in the TCP/IP protocols NicheLite and InterNiche is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

7.8CVSS7.4AI score0.02287EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.8 views

The vulnerability of TCP/IP NicheLite and InterNiche, related to improper handling of exceptional states, allows attackers to trigger a service failure.

The vulnerability of TCP/IP NicheLite and InterNiche relates to improper handling of exceptional states during HTTP requests processing. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS7.5AI score0.02588EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/09/15 12:0 a.m.7 views

The vulnerabilities of TCP/IP NicheLite and InterNiche, related to errors in handling HTTP requests, allow attackers to execute arbitrary code.

The vulnerability of TCP/IP NicheLite and InterNiche relates to errors in handling HTTP requests. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.4CVSS8.4AI score0.03155EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/08/25 12:0 a.m.6 views

The vulnerability of the implementation of TFTP packet processing functions in the TCP/IP NicheLite and InterNiche solutions allows a hacker to induce a service failure.

The vulnerability of the implementation of TFTP packet processing functions in TCP/IP NicheLite and InterNiche lies in errors that occur when a string or array is terminated with a NULL character. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

7.8CVSS7.4AI score0.023EPSS
Exploits0References6Affected Software2
BDU FSTEC
BDU FSTEC
added 2021/08/25 12:0 a.m.8 views

The vulnerability of DNS-client TCP/IP clients of NicheLite and InterNiche allows attackers to perform spoofing attacks.

The vulnerability of TCP/IP NicheLite and InterNiche clients stems from the use of insufficiently random values. Exploiting this vulnerability allows a malicious actor to perform spoofing attacks remotely...

4CVSS7.4AI score0.01262EPSS
Exploits0References6Affected Software2
Rows per page
Query Builder