39 matches found
CVE-2025-40577
A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a specially crafted malicious packet, which leads to a crash o...
CVE-2025-40577
A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a specially crafted malicious packet, which leads to a crash o...
CVE-2025-40576
A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a specially crafted malicious packet, which leads to a crash o...
CVE-2025-40576
A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a specially crafted malicious packet, which leads to a crash o...
CVE-2025-40575
A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a specially crafted malicious packet, which leads to a crash o...
CVE-2025-40575
A vulnerability has been identified in SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions V4.0 HF0. Affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a specially crafted malicious packet, which leads to a crash o...
PT-2025-20871 · Siemens · Scalance Lpe9403
Name of the Vulnerable Software and Affected Versions: SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions Description: A vulnerability has been identified where affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a...
PT-2025-20872 · Siemens · Scalance Lpe9403
Name of the Vulnerable Software and Affected Versions: SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions Description: A vulnerability has been identified where affected devices do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by sending a...
Siemens SCALANCE LPE9403 代码问题漏洞
Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. The Siemens SCALANCE LPE9403 suffers from a null pointer dereference vulnerability due to an affected device failing to...
PT-2025-20873 · Siemens · Scalance Lpe9403
Name of the Vulnerable Software and Affected Versions: SCALANCE LPE9403 6GK5998-3GS00-2AC2 All versions Description: A flaw has been identified in the handling of multiple incoming Profinet packets received in rapid succession. An unauthenticated remote attacker can exploit this issue by sending...
Siemens SCALANCE LPE9403 安全漏洞
Siemens SCALANCE LPE9403 is a local processing engine for industrial field data processing from Siemens. It is used to capture, collect and pre-process industrial field data. A denial of service vulnerability exists in the Siemens SCALANCE LPE9403, which stems from not properly validating Profine...
PT-2025-20870 · Siemens · Scalance Lpe9403
Name of the Vulnerable Software and Affected Versions: SCALANCE LPE9403 versions all versions Description: A vulnerability has been identified in SCALANCE LPE9403 devices, where they do not properly validate incoming Profinet packets. An unauthenticated remote attacker can exploit this flaw by...
Siemens SCALANCE Series 资源管理错误漏洞
The SCALANCE X-204RNA Industrial Ethernet Access Point enables non-PRP end devices to connect to separate parallel networks where required. An uncontrolled resource consumption vulnerability exists in Siemens SCALANCE X-200RNA Switch Devices, which can be exploited by an attacker to cause a denia...
Siemens SIMATIC S7-1200 Improper Input Validation (CVE-2014-2252)
Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service defect-mode transition via crafted PROFINET packets, a different vulnerability than CVE-2014-2253. This plugin only works with Tenable.ot. Please visit...
PT-2020-4182 · Cisco · Cisco Ios Xe +1
Name of the Vulnerable Software and Affected Versions: Cisco IOS Software affected versions not specified Cisco IOS XE Software affected versions not specified Description: The issue is related to insufficient processing logic for crafted PROFINET packets sent to affected devices, allowing an...
Siemens’ network software vulnerabilities, related to insufficient validation of input data, allow attackers to trigger service interruptions.
The vulnerability of Siemens network software is related to insufficient validation of input data in the Ethernet segment. Exploiting this vulnerability can allow attackers to cause failures in certain services by sending specially crafted PROFINET DCP broadcast packets...
CVE-2017-2681
Specially crafted PROFINET DCP packets sent on a local Ethernet segment Layer 2 to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected...
The vulnerability of the microprogramming software of Siemens Simatic S7-1200 programmable logic controllers allows a malicious actor to cause malfunctions during maintenance operations.
The software of the Siemens SIMATIC S7-1200 programmable logic controller contains a vulnerability. When exploited, it is possible to switch the device into an emergency mode by sending specially crafted PROFINET packets. This emergency mode persists until a hardware restart is performed...
CVE-2014-2253
Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service defect-mode transition via crafted Profinet packets...