← Back

CVE-2019-10923

nvd nist
Published: Oct 10, 2019Modified: Nov 21, 2024

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD (Secondary)

Description

An attacker with network access to an affected product may cause a denial of service condition by breaking the real-time synchronization (IRT) of the affected installation.

Affected (60)

Products: Siemens: Cp1604 Firmware, Cp1616 Firmware, Dk Standard Ethernet Controller Firmware, Ek Ertec 200 Firmware, Ek Ertec 200p Firmware, Scalance X 200irt Firmware, Simatic Et 200m Firmware, Simatic Et 200s Firmware, Simatic Et 200ecopn Firmware, Simatic Pn/pn Coupler 6es7158 3ad01 0xa0 Firmware, Simatic S7 300 Cpu Firmware, Simatic S7 300 Cpu 312 Ifm Firmware, Simatic S7 300 Cpu 313 Firmware, Simatic S7 300 Cpu 314 Firmware, Simatic S7 300 Cpu 314 Ifm Firmware, Simatic S7 300 Cpu 315 Firmware, Simatic S7 300 Cpu 315 2 Dp Firmware, Simatic S7 300 Cpu 316 2 Dp Firmware, Simatic S7 300 Cpu 318 2 Firmware, Simatic S7 400 V6 Firmware, Simatic S7 400 Pn V7 Firmware, Simatic S7 400 Dp V7 Firmware, Simatic Winac Rtx (f) Firmware, Simotion Firmware, Sinamics Dcm Firmware, Sinamics Dcp Firmware, Sinamics G110m Firmware, Sinamics G120 Firmware, Sinamics G130 Firmware, Sinamics G150 Firmware, Sinamics Gh150 Firmware, Sinamics Gl150 Firmware, Sinamics Gm150 Firmware, Sinamics S110 Firmware, Sinamics S120 Firmware, Sinamics S150 Firmware, Sinamics Sl150 Firmware, Sinamics Sm120 Firmware, Sinumerik 828d, Sinumerik 840d Sl
Siemens
40 products
Cp1604 Firmware
Cp1616 Firmware
Dk Standard Ethernet Controller Firmware
Ek Ertec 200 Firmware
Ek Ertec 200p Firmware
Scalance X 200irt Firmware
Simatic Et 200m Firmware
Simatic Et 200s Firmware
Simatic Et 200ecopn Firmware
Simatic Pn/pn Coupler 6es7158 3ad01 0xa0 Firmware
Simatic S7 300 Cpu Firmware
Simatic S7 300 Cpu 312 Ifm Firmware
Simatic S7 300 Cpu 313 Firmware
Simatic S7 300 Cpu 314 Firmware
Simatic S7 300 Cpu 314 Ifm Firmware
Simatic S7 300 Cpu 315 Firmware
Simatic S7 300 Cpu 315 2 Dp Firmware
Simatic S7 300 Cpu 316 2 Dp Firmware
Simatic S7 300 Cpu 318 2 Firmware
Simatic S7 400 V6 Firmware
Simatic S7 400 Pn V7 Firmware
Simatic S7 400 Dp V7 Firmware
Simatic Winac Rtx (f) Firmware
Simotion Firmware
Sinamics Dcm Firmware
Sinamics Dcp Firmware
Sinamics G110m Firmware
Sinamics G120 Firmware
Sinamics G130 Firmware
Sinamics G150 Firmware
Sinamics Gh150 Firmware
Sinamics Gl150 Firmware
Sinamics Gm150 Firmware
Sinamics S110 Firmware
Sinamics S120 Firmware
Sinamics S150 Firmware
Sinamics Sl150 Firmware
Sinamics Sm120 Firmware
Sinumerik 828d
Sinumerik 840d Sl
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Cp1604 Firmware
Before 2.8
Running on/withPlatform Versions
Siemens
Cp1604
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Cp1616 Firmware
Before 2.8
Running on/withPlatform Versions
Siemens
Cp1616
All versions
Configuration C
3 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siemens
Dk Standard Ethernet Controller Firmware
Before 4.1.1
Dk Standard Ethernet Controller Firmware
Version 4.1.1
Dk Standard Ethernet Controller Firmware
Version 4.1.1 p4
Running on/withPlatform Versions
Siemens
Dk Standard Ethernet Controller
All versions
Configuration D
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siemens
Ek Ertec 200 Firmware
Before 4.5.0
Ek Ertec 200 Firmware
Version 4.5.0
Running on/withPlatform Versions
Siemens
Ek Ertec 200
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Ek Ertec 200p Firmware
Before 4.5.0
Running on/withPlatform Versions
Siemens
Ek Ertec 200p
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Scalance X 200irt Firmware
Before 5.2.1
Running on/withPlatform Versions
Siemens
Scalance X 200irt
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic Et 200m Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic Et 200m
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic Et 200s Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic Et 200s
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic Et 200ecopn Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic Et 200ecopn
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic Pn/pn Coupler 6es7158 3ad01 0xa0 Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic Pn/pn Coupler 6es7158 3ad01 0xa0
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu Firmware
Before 3.3.17
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 312 Ifm Firmware
Before 3.3.17
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 312 Ifm
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 313 Firmware
Before 3.3.17
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 313
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 314 Firmware
Before 3.3.17
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 314
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 314 Ifm Firmware
Before 3.3.17
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 314 Ifm
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 315 Firmware
Before 3.3.17
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 315
All versions
Configuration Q
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 315 2 Dp Firmware
Before 3.3.17
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 315 2 Dp
All versions
Configuration R
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 316 2 Dp Firmware
Before 3.3.17
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 316 2 Dp
All versions
Configuration S
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 318 2 Firmware
Before 3.3.17
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 318 2
All versions
Configuration T
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 400 V6 Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic S7 400 V6
All versions
Configuration U
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 400 Pn V7 Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic S7 400 Pn V7
All versions
Configuration V
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 400 Dp V7 Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic S7 400 Dp V7
All versions
Configuration W
4 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siemens
Simatic Winac Rtx (f) Firmware
Before 2010
Simatic Winac Rtx (f) Firmware
Version 2010
Simatic Winac Rtx (f) Firmware
Version 2010 sp1
Simatic Winac Rtx (f) Firmware
Version 2010 sp2
Running on/withPlatform Versions
Siemens
Simatic Winac Rtx (f)
All versions
Configuration X
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simotion Firmware
All versions
Running on/withPlatform Versions
Siemens
Simotion
All versions
Configuration Y
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siemens
Sinamics Dcm Firmware
Before 1.5
Sinamics Dcm Firmware
Version 1.5
Running on/withPlatform Versions
Siemens
Sinamics Dcm
All versions
Configuration Z
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sinamics Dcp Firmware
Before 1.3
Running on/withPlatform Versions
Siemens
Sinamics Dcp
All versions
Configuration A
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siemens
Sinamics G110m Firmware
Before 4.7
Sinamics G110m Firmware
Version 4.7
Running on/withPlatform Versions
Siemens
Sinamics G110m
All versions
Configuration B
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siemens
Sinamics G120 Firmware
Before 4.7
Sinamics G120 Firmware
Version 4.7
Running on/withPlatform Versions
Siemens
Sinamics G120
All versions
Configuration C
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siemens
Sinamics G130 Firmware
Before 4.7
Sinamics G130 Firmware
Version 4.7
Running on/withPlatform Versions
Siemens
Sinamics G130
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sinamics G150 Firmware
Before 4.8
Running on/withPlatform Versions
Siemens
Sinamics G150
All versions
Configuration E
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siemens
Sinamics Gh150 Firmware
Before 4.8
Sinamics Gh150 Firmware
Version 4.8
Running on/withPlatform Versions
Siemens
Sinamics Gh150
All versions
Configuration F
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siemens
Sinamics Gl150 Firmware
Before 4.8
Sinamics Gl150 Firmware
Version 4.8
Running on/withPlatform Versions
Siemens
Sinamics Gl150
All versions
Configuration G
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siemens
Sinamics Gm150 Firmware
Before 4.8
Sinamics Gm150 Firmware
Version 4.8
Running on/withPlatform Versions
Siemens
Sinamics Gm150
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sinamics S110 Firmware
All versions
Running on/withPlatform Versions
Siemens
Sinamics S110
All versions
Configuration I
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siemens
Sinamics S120 Firmware
Before 4.7
Sinamics S120 Firmware
Version 4.7
Running on/withPlatform Versions
Siemens
Sinamics S120
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sinamics S150 Firmware
Before 4.8
Running on/withPlatform Versions
Siemens
Sinamics S150
All versions
Configuration K
2 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siemens
Sinamics Sl150 Firmware
Before 4.7
Sinamics Sl150 Firmware
Version 4.7
Running on/withPlatform Versions
Siemens
Sinamics Sl150
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sinamics Sm120 Firmware
All versions
Running on/withPlatform Versions
Siemens
Sinamics Sm120
All versions
Configuration M
6 vulnerable
Vulnerable SoftwareAffected Versions
Siemens
Sinumerik 828d
Before 4.8
Sinumerik 828d
Version 4.8
Sinumerik 828d
Version 4.8 sp1
Sinumerik 828d
Version 4.8 sp2
Sinumerik 828d
Version 4.8 sp3
Sinumerik 828d
Version 4.8 sp4
Configuration N
1 vulnerable
Vulnerable SoftwareAffected Versions
Sinumerik 840d Sl
All versions

Related CWEs

CWE-400
Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References (3)

Source: productcert@siemens.com
Source: productcert@siemens.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.