Lucene search
K

39 matches found

Vulnrichment
Vulnrichment
added 2025/05/13 9:39 a.m.10 views

CVE-2025-40577

A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a specially crafted malicious packet, which leads to a crash o...

5.3CVSS6.3AI score0.00228EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/13 9:39 a.m.16 views

CVE-2025-40577

A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a specially crafted malicious packet, which leads to a crash o...

5.3CVSS0.00228EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/13 9:39 a.m.5 views

CVE-2025-40576

A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a specially crafted malicious packet, which leads to a crash o...

5.3CVSS6.3AI score0.00228EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/13 9:39 a.m.16 views

CVE-2025-40576

A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a specially crafted malicious packet, which leads to a crash o...

5.3CVSS0.00228EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/05/13 9:38 a.m.7 views

CVE-2025-40575

A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a specially crafted malicious packet, which leads to a crash o...

5.3CVSS6.3AI score0.00395EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/05/13 9:38 a.m.13 views

CVE-2025-40575

A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a specially crafted malicious packet, which leads to a crash o...

5.3CVSS0.00395EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.4 views

PT-2025-20871 · Siemens · Scalance Lpe9403

Name of the Vulnerable Software and Affected Versions: SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions Description: A vulnerability has been identified where affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a...

5.3CVSS6.3AI score0.00228EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.5 views

PT-2025-20872 · Siemens · Scalance Lpe9403

Name of the Vulnerable Software and Affected Versions: SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions Description: A vulnerability has been identified where affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a...

5.3CVSS6.3AI score0.00228EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/05/13 12:0 a.m.4 views

Siemens SCALANCE LPE9403 代码问题漏洞

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. The Siemens SCALANCE LPE9403 suffers from a null pointer dereference vulnerability due to an affected device failing to...

5.3CVSS6.4AI score0.00228EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.8 views

PT-2025-20873 · Siemens · Scalance Lpe9403

Name of the Vulnerable Software and Affected Versions: SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions Description: A flaw has been identified in the handling of multiple incoming Profinet packets received in rapid succession. An unauthenticated remote attacker can exploit this issue by sending...

5.3CVSS6.2AI score0.00228EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/05/13 12:0 a.m.4 views

Siemens SCALANCE LPE9403 安全漏洞

Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. A denial of service vulnerability exists in the Siemens SCALANCE LPE9403, which stems from not properly validating Profine...

5.3CVSS6.4AI score0.00395EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/05/13 12:0 a.m.5 views

PT-2025-20870 · Siemens · Scalance Lpe9403

Name of the Vulnerable Software and Affected Versions: SCALANCE LPE9403 versions all versions Description: A vulnerability has been identified in SCALANCE LPE9403 devices, where they do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by...

5.3CVSS6.2AI score0.00395EPSS
Exploits0References6
CNNVD
CNNVD
added 2022/12/13 12:0 a.m.5 views

Siemens SCALANCE Series 资源管理错误漏洞

The SCALANCE X-204RNA Industrial Ethernet Access Point enables non-PRP end devices to connect to separate parallel networks where required. An uncontrolled resource consumption vulnerability exists in Siemens SCALANCE X-200RNA Switch Devices, which can be exploited by an attacker to cause a denia...

7.5CVSS6.7AI score0.00665EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/02/07 12:0 a.m.13 views

Siemens SIMATIC S7-1200 Improper Input Validation (CVE-2014-2252)

Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service defect-mode transition via crafted PROFINET packets, a different vulnerability than CVE-2014-2253. This plugin only works with Tenable.ot. Please visit...

6.1CVSS5.5AI score0.01253EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2020/09/24 12:0 a.m.5 views

PT-2020-4182 · Cisco · Cisco Ios Xe +1

Name of the Vulnerable Software and Affected Versions: Cisco IOS Software affected versions not specified Cisco IOS XE Software affected versions not specified Description: The issue is related to insufficient processing logic for crafted PROFINET packets sent to affected devices, allowing an...

7.4CVSS7.2AI score0.00533EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2019/02/26 12:0 a.m.5 views

Siemens’ network software vulnerabilities, related to insufficient validation of input data, allow attackers to trigger service interruptions.

The vulnerability of Siemens network software is related to insufficient validation of input data in the Ethernet segment. Exploiting this vulnerability can allow attackers to cause failures in certain services by sending specially crafted PROFINET DCP broadcast packets...

6.5CVSS6.5AI score0.00469EPSS
Exploits0References3Affected Software8
OSV
OSV
added 2017/05/11 10:29 a.m.3 views

CVE-2017-2681

Specially crafted PROFINET DCP packets sent on a local Ethernet segment Layer 2 to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected...

6.5CVSS5.8AI score0.00906EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.7 views

The vulnerability of the microprogramming software of Siemens Simatic S7-1200 programmable logic controllers allows a malicious actor to cause malfunctions during maintenance operations.

The software of the Siemens SIMATIC S7-1200 programmable logic controller contains a vulnerability. When exploited, it is possible to switch the device into an emergency mode by sending specially crafted PROFINET packets. This emergency mode persists until a hardware restart is performed...

6.1CVSS5.5AI score0.01253EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2014/03/16 2:6 p.m.21 views

CVE-2014-2253

Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service defect-mode transition via crafted Profinet packets...

6.1CVSS6.5AI score0.0101EPSS
Exploits0References3
Rows per page
Query Builder