Siemens Industrial Products Uncontrolled Resource Consumption (CVE-2019-11478)

Multiple industrial products are affected by a vulnerability in the kernel known as TCP SACK PANIC. A remote attacker could cause a denial of service condition by sending specially crafted TCP Selective Acknowledgment SACK sequences to affected products. This plugin only works with Tenable.ot...

The vulnerability of the SSH network protocol implementation in microprogrammable industrial network interfaces SCALANCE SC622-2C, SC626-2C, SC632-2C, SC636-2C, SC642-2C, and SC646-2C arises from insufficient data authentication checks. This allows attackers to trigger service failures.

The vulnerability of the SSH network protocol implementation in microprogrammable industrial network interfaces such as SCALANCE SC622-2C, SC626-2C, SC632-2C, SC636-2C, SC642-2C, and SC646-2C is related to insufficient resource control during their lifespan. Exploiting this vulnerability could...

PT-2022-6083 · Siemens · Scalance Sc632-2C +8

Name of the Vulnerable Software and Affected Versions: SCALANCE SC622-2C versions prior to V3.0 SCALANCE SC626-2C versions prior to V3.0 SCALANCE SC632-2C versions prior to V3.0 SCALANCE SC636-2C versions prior to V3.0 SCALANCE SC642-2C versions prior to V3.0 SCALANCE SC646-2C versions prior to...

Siemens SCALANCE

As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please see Siemens' ProductCERT Security Advisories CERT Services | Services |...

ICSA-19-253-03_Siemens Industrial Products (Update P)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: Industrial Products Vulnerabilities: Excessive Data Query Operations in a Large Data Table, Integer Overflow or Wraparound, Uncontrolled Resource Consumption 2. UPDATE INFORMATION...