← Back

Simatic Et200al Im 157 1 Pn Firmware

simatic_et200al_im_157-1_pn_firmware

Vendor: Siemens • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-13946
1Siemens
52Dk Standard Ethernet Controller
Ek Ertec 200 FirmwareEk Ertec 200p Firmware+49 more
Nov 21, 2024
Feb 11, 2020
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lead to a denial of ser...Show more
Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lead to a denial of service condition due to lack of memory for devices that include a vulnerable version of the stack. The security vulnerability could be exploited by an attacker with network access to an affected device. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise the availability of the device.Show less