← Back

CVE-2022-34819

nvd nist
Published: Jul 12, 2022Modified: Nov 21, 2024

JSON object

Loading...
10.0
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 6.0
Source: NVD (Secondary)

Description

A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions < V3.3.46), SIMATIC CP 1243-1 (All versions < V3.3.46), SIMATIC CP 1243-7 LTE EU (All versions < V3.3.46), SIMATIC CP 1243-7 LTE US (All versions < V3.3.46), SIMATIC CP 1243-8 IRC (All versions < V3.3.46), SIMATIC CP 1542SP-1 IRC (All versions >= V2.0 < V2.2.28), SIMATIC CP 1543-1 (All versions < V3.0.22), SIMATIC CP 1543SP-1 (All versions >= V2.0 < V2.2.28), SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL (All versions >= V2.0 < V2.2.28), SIPLUS ET 200SP CP 1543SP-1 ISEC (All versions >= V2.0 < V2.2.28), SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL (All versions >= V2.0 < V2.2.28), SIPLUS NET CP 1242-7 V2 (All versions < V3.3.46), SIPLUS NET CP 1543-1 (All versions < V3.0.22), SIPLUS S7-1200 CP 1243-1 (All versions < V3.3.46), SIPLUS S7-1200 CP 1243-1 RAIL (All versions < V3.3.46). The application lacks proper validation of user-supplied data when parsing specific messages. This could result in a heap-based buffer overflow. An attacker could leverage this vulnerability to execute code in the context of device.

Affected (15)

Siemens
15 products
Simatic Cp 1242 7 V2 Firmware
Simatic Cp 1243 1 Firmware
Simatic Cp 1243 7 Lte Eu Firmware
Simatic Cp 1243 7 Lte Us Firmware
Simatic Cp 1243 8 Irc Firmware
Simatic Cp 1542sp 1 Irc Firmware
Simatic Cp 1543 1 Firmware
Simatic Cp 1543sp 1 Firmware
Siplus Et 200sp Cp 1542sp 1 Irc Tx Rail Firmware
Siplus Et 200sp Cp 1543sp 1 Isec Firmware
Siplus Et 200sp Cp 1543sp 1 Isec Tx Rail Firmware
Siplus Net Cp 1242 7 V2 Firmware
Siplus Net Cp 1543 1 Firmware
Siplus S7 1200 Cp 1243 1 Firmware
Siplus S7 1200 Cp 1243 1 Rail Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic Cp 1242 7 V2 Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic Cp 1242 7 V2
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic Cp 1243 1 Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic Cp 1243 1
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic Cp 1243 7 Lte Eu Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic Cp 1243 7 Lte Eu
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic Cp 1243 7 Lte Us Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic Cp 1243 7 Lte Us
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic Cp 1243 8 Irc Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic Cp 1243 8 Irc
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic Cp 1542sp 1 Irc Firmware
From 2.0
Running on/withPlatform Versions
Siemens
Simatic Cp 1542sp 1 Irc
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic Cp 1543 1 Firmware
Before 3.0.22
Running on/withPlatform Versions
Siemens
Simatic Cp 1543 1
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic Cp 1543sp 1 Firmware
From 2.0
Running on/withPlatform Versions
Siemens
Simatic Cp 1543sp 1
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siplus Et 200sp Cp 1542sp 1 Irc Tx Rail Firmware
From 2.0
Running on/withPlatform Versions
Siemens
Siplus Et 200sp Cp 1542sp 1 Irc Tx Rail
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siplus Et 200sp Cp 1543sp 1 Isec Firmware
From 2.0
Running on/withPlatform Versions
Siemens
Siplus Et 200sp Cp 1543sp 1 Isec
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siplus Et 200sp Cp 1543sp 1 Isec Tx Rail Firmware
From 2.0
Running on/withPlatform Versions
Siemens
Siplus Et 200sp Cp 1543sp 1 Isec Tx Rail
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siplus Net Cp 1242 7 V2 Firmware
All versions
Running on/withPlatform Versions
Siemens
Siplus Net Cp 1242 7 V2
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siplus Net Cp 1543 1 Firmware
Before 3.0.22
Running on/withPlatform Versions
Siemens
Siplus Net Cp 1543 1
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siplus S7 1200 Cp 1243 1 Firmware
All versions
Running on/withPlatform Versions
Siemens
Siplus S7 1200 Cp 1243 1
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Siplus S7 1200 Cp 1243 1 Rail Firmware
All versions
Running on/withPlatform Versions
Siemens
Siplus S7 1200 Cp 1243 1 Rail
All versions

Related CWEs

CWE-122
Heap-based Buffer Overflow
A heap overflow condition is a buffer overflow, where the buffer that can be overwritten is allocated in the heap portion of memory, generally meaning that the buffer was allocated using a routine such as malloc().
CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

References (2)

Source: productcert@siemens.com
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory

Timeline

No history available yet.