Details of VAR-202002-0449

ID

VAR-202002-0449

CVE

CVE-2019-13946

TITLE

Resource exhaustion vulnerabilities in multiple Siemens products

Trust: 0.8

sources: JVNDB: JVNDB-2019-014603

DESCRIPTION

Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lead to a denial of service condition due to lack of memory for devices that include a vulnerable version of the stack. The security vulnerability could be exploited by an attacker with network access to an affected device. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise the availability of the device. Several Siemens products contain resource exhaustion vulnerabilities.Service operation interruption (DoS) It may be put into a state. Both Siemens SCALANCE X-200IRT and SCALANCE XB-200 are products of the German company Siemens. SCALANCE X-200IRT is an industrial Ethernet switch. SCALANCE XB-200 is a managed industrial Ethernet switch. The vulnerability stems from the program's failure to limit the allocation of memory resources. A remote attacker can use the vulnerability by sending a specially crafted package to cause a denial of service. A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller (All versions), Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 (All Versions < V4.5), Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P (All Versions < V4.6), PROFINET Driver for Controller (All Versions < V2.1), RUGGEDCOM RM1224 (All versions < V4.3), SCALANCE M-800 / S615 (All versions < V4.3), SCALANCE W700 IEEE 802.11n (All versions <= V6.0.1), SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All Versions < V5.3), SCALANCE X-300 switch family (incl. X408 and SIPLUS NET variants) (All versions), SCALANCE XB-200, XC-200, XP-200, XF-200BA and XR-300WG (All Versions < V3.0), SCALANCE XM-400 switch family (All Versions < V6.0), SCALANCE XR-500 switch family (All Versions < V6.0), SIMATIC CP 1616 and CP 1604 (All Versions < V2.8), SIMATIC CP 343-1 (incl. SIPLUS NET variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS NET variants) (All versions), SIMATIC CP 343-1 ERPC (All versions), SIMATIC CP 343-1 LEAN (incl. SIPLUS NET variants) (All versions), SIMATIC CP 443-1 (incl. SIPLUS NET variants) (All versions), SIMATIC CP 443-1 Advanced (incl. SIPLUS NET variants) (All versions), SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET200AL IM 157-1 PN (All versions), SIMATIC ET200M IM153-4 PN IO HF (incl. SIPLUS variants) (All versions), SIMATIC ET200M IM153-4 PN IO ST (incl. SIPLUS variants) (All versions), SIMATIC ET200MP IM155-5 PN HF (incl. SIPLUS variants) (All Versions < V4.2.0), SIMATIC ET200MP IM155-5 PN ST (incl. SIPLUS variants) (All Versions < V4.1.0), SIMATIC ET200S (incl. SIPLUS variants) (All versions), SIMATIC ET200SP IM155-6 PN Basic (incl. SIPLUS variants) (All versions), SIMATIC ET200SP IM155-6 PN HF (incl. SIPLUS variants) (All Versions < V3.3.1), SIMATIC ET200SP IM155-6 PN ST (incl. SIPLUS variants) (All Versions < V4.1.0), SIMATIC ET200ecoPN (except 6ES7148-6JD00-0AB0 and 6ES7146-6FF00-0AB0) (All versions), SIMATIC ET200pro, IM 154-3 PN HF (All versions), SIMATIC ET200pro, IM 154-4 PN HF (All versions), SIMATIC IPC Support, Package for VxWorks (All versions), SIMATIC MV400 family (All versions), SIMATIC PN/PN Coupler 6ES7158-3AD01-0XA0 (incl. SIPLUS NET variant) (All Versions), SIMATIC RF180C (All versions), SIMATIC RF182C (All versions), SIMATIC RF600 family (All versions < V3), SINAMICS DCP (All Versions < V1.3), SOFTNET-IE PNIO (All versions)

Trust: 2.43

sources: NVD: CVE-2019-13946 // JVNDB: JVNDB-2019-014603 // CNVD: CNVD-2020-23039 // IVD: 1044e3a5-dc26-4d11-bf22-4b3eb64f5cc9 // VULMON: CVE-2019-13946

IOT TAXONOMY

category:	['ICS', 'Network device']	sub_category:	-	Trust: 0.6
category:	['ICS']	sub_category:	-	Trust: 0.2

sources: IVD: 1044e3a5-dc26-4d11-bf22-4b3eb64f5cc9 // CNVD: CNVD-2020-23039

AFFECTED PRODUCTS

vendor:	siemens	model:	scalance xb-200	scope:	lt	version:	3.0	Trust: 1.6
vendor:	siemens	model:	scalance xc-200	scope:	lt	version:	3.0	Trust: 1.6
vendor:	siemens	model:	scalance xp-200	scope:	lt	version:	3.0	Trust: 1.6
vendor:	siemens	model:	scalance xf-200ba	scope:	lt	version:	3.0	Trust: 1.6
vendor:	siemens	model:	scalance xr-300wg	scope:	lt	version:	3.0	Trust: 1.6
vendor:	siemens	model:	sinamics dcp	scope:	lt	version:	1.3	Trust: 1.6
vendor:	siemens	model:	ruggedcom rm1224	scope:	lt	version:	4.3	Trust: 1.6
vendor:	siemens	model:	simatic et200mp im155-5 pn hf	scope:	lt	version:	4.2.0	Trust: 1.6
vendor:	siemens	model:	simatic et200mp im155-5 pn st	scope:	lt	version:	4.1.0	Trust: 1.6
vendor:	siemens	model:	simatic et200sp im155-6 pn hf	scope:	lt	version:	3.3.1	Trust: 1.6
vendor:	siemens	model:	simatic et200sp im155-6 pn st	scope:	lt	version:	4.1.0	Trust: 1.6
vendor:	siemens	model:	scalance xb-200	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic mv440	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic ipc support	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic rf600	scope:	lt	version:	3.0	Trust: 1.0
vendor:	siemens	model:	im 154-4 pn hf	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	scalance m-800	scope:	lt	version:	4.3	Trust: 1.0
vendor:	siemens	model:	simatic et200m im153-4 pn io st	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic cp 343-1	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic et200ecopn	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic mv420	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	scalance x-200irt	scope:	lt	version:	5.3	Trust: 1.0
vendor:	siemens	model:	simatic rf180c	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic et200al im 157-1 pn	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	scalance w700 ieee 802.11n	scope:	lte	version:	6.0.1	Trust: 1.0
vendor:	siemens	model:	scalance x-400	scope:	lt	version:	6.0	Trust: 1.0
vendor:	siemens	model:	scalance xr528	scope:	lt	version:	6.0	Trust: 1.0
vendor:	siemens	model:	simatic cp 443-1	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	scalance xm-400	scope:	lt	version:	6.0	Trust: 1.0
vendor:	siemens	model:	simatic cp 1616	scope:	lt	version:	2.8	Trust: 1.0
vendor:	siemens	model:	scalance xc-200	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	scalance x-300	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	scalance xr524	scope:	lt	version:	6.0	Trust: 1.0
vendor:	siemens	model:	simatic et200sp im155-6 pn basic	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	profinet driver	scope:	lt	version:	2.1	Trust: 1.0
vendor:	siemens	model:	ek-ertec 200p	scope:	lt	version:	4.6	Trust: 1.0
vendor:	siemens	model:	scalance xp-200	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic cp 343-1 advanced	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic cp 343-1 erpc	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	scalance xr552	scope:	lt	version:	6.0	Trust: 1.0
vendor:	siemens	model:	simatic et200pro	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic cp 343-1 lean	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic cp 443-1 advanced	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic et200s	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	scalance xr526	scope:	lt	version:	6.0	Trust: 1.0
vendor:	siemens	model:	simatic cp 443-1 opc ua	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	im 154-3 pn hf	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic pn\/pn coupler	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic cp 1604	scope:	lt	version:	2.8	Trust: 1.0
vendor:	siemens	model:	scalance xf-200	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	ek-ertec 200	scope:	lt	version:	4.5	Trust: 1.0
vendor:	siemens	model:	scalance s615	scope:	lt	version:	4.3	Trust: 1.0
vendor:	siemens	model:	simatic rf182c	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	dk standard ethernet controller	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic et200m im153-4 pn io hf	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	dk standard ethernet controller	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	ek-ertec 200	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	ek-ertec 200p p	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	profinet driver	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	ruggedcom rm1224	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	scalance m-800	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	scalance s615	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	scalance w700 ieee 802.11n	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	scalance xc-200	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic ipc support	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cp lean	scope:	eq	version:	343-1	Trust: 0.6
vendor:	siemens	model:	simatic cp advanced	scope:	eq	version:	343-1	Trust: 0.6
vendor:	siemens	model:	simatic rf182c	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	simatic pn/pn coupler 6es7158-3ad01-0xa0	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	simatic cp	scope:	eq	version:	1616<2.8	Trust: 0.6
vendor:	siemens	model:	simatic cp	scope:	eq	version:	1604<2.8	Trust: 0.6
vendor:	siemens	model:	simatic cp advanced	scope:	eq	version:	443-1	Trust: 0.6
vendor:	siemens	model:	development/evaluation kits for profinet io dk standard ethernet controller	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	development/evaluation kits for profinet io ek-ertec	scope:	eq	version:	200<4.5	Trust: 0.6
vendor:	siemens	model:	development/evaluation kits for profinet io ek-ertec 200p	scope:	lt	version:	4.6	Trust: 0.6
vendor:	siemens	model:	profinet driver for controller	scope:	lt	version:	2.1	Trust: 0.6
vendor:	siemens	model:	scalance m-800/s615	scope:	lt	version:	4.3	Trust: 0.6
vendor:	siemens	model:	scalance w700 ieee 802.11n	scope:	lte	version:	<=6.0.1	Trust: 0.6
vendor:	siemens	model:	scalance switch	scope:	eq	version:	x-200	Trust: 0.6
vendor:	siemens	model:	scalance x-200irt switch	scope:	lt	version:	5.3	Trust: 0.6
vendor:	siemens	model:	scalance switch	scope:	eq	version:	x-300	Trust: 0.6
vendor:	siemens	model:	scalance xm-400 switch	scope:	lt	version:	6.0	Trust: 0.6
vendor:	siemens	model:	scalance xr-500 switch	scope:	lt	version:	6.0	Trust: 0.6
vendor:	siemens	model:	simatic cp	scope:	eq	version:	343-1	Trust: 0.6
vendor:	siemens	model:	simatic cp erpc	scope:	eq	version:	343-1	Trust: 0.6
vendor:	siemens	model:	simatic cp	scope:	eq	version:	443-1	Trust: 0.6
vendor:	siemens	model:	simatic cp opc ua	scope:	eq	version:	443-1	Trust: 0.6
vendor:	siemens	model:	simatic et200al im pn	scope:	eq	version:	157-1	Trust: 0.6
vendor:	siemens	model:	simatic et200m im153-4 pn io hf	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	simatic et200m im153-4 pn io st	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	simatic et200s	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	simatic et200sp im155-6 pn basic	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	simatic et200ecopn	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	simatic ipc support,package for vxworks	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	simatic et200pro,im pn hf	scope:	eq	version:	154-3	Trust: 0.6
vendor:	siemens	model:	simatic et200pro,im pn hf	scope:	eq	version:	154-4	Trust: 0.6
vendor:	siemens	model:	simatic mv400	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	simatic rf180c	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	simatic rf600	scope:	lt	version:	3	Trust: 0.6
vendor:	scalance xp 200	model:	-	scope:	eq	version:	*	Trust: 0.4
vendor:	scalance xb 200	model:	-	scope:	eq	version:	*	Trust: 0.4
vendor:	scalance xr 300wg	model:	-	scope:	eq	version:	*	Trust: 0.4
vendor:	scalance xc 200	model:	-	scope:	eq	version:	*	Trust: 0.4
vendor:	dk standard ethernet controller	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	profinet driver	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic ipc support	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	scalance x 200irt	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	scalance x 200irt pro	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	scalance x 300	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	scalance xr 300	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	ek ertec 200	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	scalance xf 200ba	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	scalance x 400	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	scalance xm 400	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	scalance xr524	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	scalance xr526	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	scalance xr528	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	scalance xr552	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic cp 1616	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic cp 1604	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	ek ertec 200p	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic cp 343 1	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic cp 343 1 advanced	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic cp 343 1 erpc	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic cp 343 1 lean	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic cp 443 1	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic cp 443 1 advanced	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic cp 443 1 opc ua	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic et200al im 157 1 pn	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic et200m im153 4 pn io hf	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic et200m im153 4 pn io st	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	ruggedcom rm1224	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic et200mp im155 5 pn hf	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic et200mp im155 5 pn st	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic et200s	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic et200sp im155 6 pn basic	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic et200sp im155 6 pn hf	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic et200sp im155 6 pn st	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic et200ecopn	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic et200pro	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	im 154 3 pn hf	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	im 154 4 pn hf	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	scalance m 800	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic mv440	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic mv420	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic pn pn coupler	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic rf180c	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic rf182c	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic rf600	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	sinamics dcp	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	scalance s615	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	scalance w700 ieee 802 11n	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	scalance xf 200	model:	-	scope:	eq	version:	*	Trust: 0.2

sources: IVD: 1044e3a5-dc26-4d11-bf22-4b3eb64f5cc9 // CNVD: CNVD-2020-23039 // JVNDB: JVNDB-2019-014603 // NVD: CVE-2019-13946

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-13946
value:	HIGH
Trust: 1.0
productcert@siemens.com:	CVE-2019-13946
value:	HIGH
Trust: 1.0
NVD:	JVNDB-2019-014603
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2020-23039
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-202002-455
value:	HIGH
Trust: 0.6
IVD:	1044e3a5-dc26-4d11-bf22-4b3eb64f5cc9
value:	HIGH
Trust: 0.2
VULMON:	CVE-2019-13946
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2019-13946
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.1
NVD:	JVNDB-2019-014603
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8
CNVD:	CNVD-2020-23039
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	1044e3a5-dc26-4d11-bf22-4b3eb64f5cc9
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2

nvd@nist.gov:	CVE-2019-13946
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.1
Trust: 2.0
NVD:	JVNDB-2019-014603
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: IVD: 1044e3a5-dc26-4d11-bf22-4b3eb64f5cc9 // CNVD: CNVD-2020-23039 // VULMON: CVE-2019-13946 // JVNDB: JVNDB-2019-014603 // CNNVD: CNNVD-202002-455 // NVD: CVE-2019-13946 // NVD: CVE-2019-13946

PROBLEMTYPE DATA

problemtype:

CWE-400

Trust: 1.8

sources: JVNDB: JVNDB-2019-014603 // NVD: CVE-2019-13946

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202002-455

TYPE

Resource management error

Trust: 0.8

sources: IVD: 1044e3a5-dc26-4d11-bf22-4b3eb64f5cc9 // CNNVD: CNNVD-202002-455

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-014603

PATCH

title:	SSA-780073	url:	https://cert-portal.siemens.com/productcert/pdf/ssa-780073.pdf	Trust: 0.8
title:	Patch for Multiple Siemens product resource management error vulnerabilities	url:	https://www.cnvd.org.cn/patchInfo/show/214023	Trust: 0.6
title:	Multiple Siemens Product resource management error vulnerability fixes	url:	http://123.124.177.30/web/xxk/bdxqById.tag?id=108751	Trust: 0.6
title:	Siemens Security Advisories: Siemens Security Advisory	url:	https://vulmon.com/vendoradvisory?qidtp=siemens_security_advisories&qid=8b423421a5be04457be73209a34b15cb	Trust: 0.1

sources: CNVD: CNVD-2020-23039 // VULMON: CVE-2019-13946 // JVNDB: JVNDB-2019-014603 // CNNVD: CNNVD-202002-455

EXTERNAL IDS

db:	NVD	id:	CVE-2019-13946	Trust: 3.3
db:	SIEMENS	id:	SSA-780073	Trust: 1.7
db:	ICS CERT	id:	ICSA-20-042-04	Trust: 1.5
db:	ICS CERT	id:	ICSA-20-042-05	Trust: 1.2
db:	CNVD	id:	CNVD-2020-23039	Trust: 0.8
db:	CNNVD	id:	CNNVD-202002-455	Trust: 0.8
db:	JVNDB	id:	JVNDB-2019-014603	Trust: 0.8
db:	ICS CERT	id:	ICSA-20-042-08	Trust: 0.6
db:	ICS CERT	id:	ICSA-20-042-07	Trust: 0.6
db:	ICS CERT	id:	ICSA-20-042-03	Trust: 0.6
db:	ICS CERT	id:	ICSA-20-042-09	Trust: 0.6
db:	ICS CERT	id:	ICSA-20-042-02	Trust: 0.6
db:	ICS CERT	id:	ICSA-20-042-06	Trust: 0.6
db:	ICS CERT	id:	ICSA-20-042-01	Trust: 0.6
db:	ICS CERT	id:	ICSA-20-042-10	Trust: 0.6
db:	AUSCERT	id:	ESB-2020.0486	Trust: 0.6
db:	AUSCERT	id:	ESB-2020.0486.2	Trust: 0.6
db:	AUSCERT	id:	ESB-2020.0486.3	Trust: 0.6
db:	IVD	id:	1044E3A5-DC26-4D11-BF22-4B3EB64F5CC9	Trust: 0.2
db:	VULMON	id:	CVE-2019-13946	Trust: 0.1

REFERENCES

url:	https://www.us-cert.gov/ics/advisories/icsa-20-042-04	Trust: 2.1
url:	https://cert-portal.siemens.com/productcert/pdf/ssa-780073.pdf	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2019-13946	Trust: 1.4
url:	https://www.us-cert.gov/ics/advisories/icsa-20-042-05	Trust: 1.2
url:	https://cert-portal.siemens.com/productcert/html/ssa-780073.html	Trust: 1.0
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-13946	Trust: 0.8
url:	https://www.us-cert.gov/ics/advisories/icsa-20-042-10	Trust: 0.6
url:	https://www.us-cert.gov/ics/advisories/icsa-20-042-09	Trust: 0.6
url:	https://www.us-cert.gov/ics/advisories/icsa-20-042-08	Trust: 0.6
url:	https://www.us-cert.gov/ics/advisories/icsa-20-042-07	Trust: 0.6
url:	https://www.us-cert.gov/ics/advisories/icsa-20-042-06	Trust: 0.6
url:	https://www.us-cert.gov/ics/advisories/icsa-20-042-03	Trust: 0.6
url:	https://www.us-cert.gov/ics/advisories/icsa-20-042-02	Trust: 0.6
url:	https://www.us-cert.gov/ics/advisories/icsa-20-042-01	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2020.0486/	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2020.0486.2/	Trust: 0.6
url:	https://www.auscert.org.au/bulletins/esb-2020.0486.3/	Trust: 0.6
url:	https://us-cert.cisa.gov/ics/advisories/icsa-20-042-04	Trust: 0.6
url:	https://cwe.mitre.org/data/definitions/400.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1
url:	https://www.cisa.gov/uscert/ics/advisories/icsa-20-042-04	Trust: 0.1

sources: CNVD: CNVD-2020-23039 // VULMON: CVE-2019-13946 // JVNDB: JVNDB-2019-014603 // CNNVD: CNNVD-202002-455 // NVD: CVE-2019-13946

CREDITS

Yuval Ardon and Matan Dobrushin of OTORIO reported this vulnerability to CISA and Siemens.

Trust: 0.6

sources: CNNVD: CNNVD-202002-455

SOURCES

db:	IVD	id:	1044e3a5-dc26-4d11-bf22-4b3eb64f5cc9
db:	CNVD	id:	CNVD-2020-23039
db:	VULMON	id:	CVE-2019-13946
db:	JVNDB	id:	JVNDB-2019-014603
db:	CNNVD	id:	CNNVD-202002-455
db:	NVD	id:	CVE-2019-13946

LAST UPDATE DATE

2024-08-14T13:07:26.862000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2020-23039	date:	2020-04-16T00:00:00
db:	VULMON	id:	CVE-2019-13946	date:	2022-04-12T00:00:00
db:	JVNDB	id:	JVNDB-2019-014603	date:	2020-03-11T00:00:00
db:	CNNVD	id:	CNNVD-202002-455	date:	2023-04-12T00:00:00
db:	NVD	id:	CVE-2019-13946	date:	2024-07-09T12:15:04.920

SOURCES RELEASE DATE

db:	IVD	id:	1044e3a5-dc26-4d11-bf22-4b3eb64f5cc9	date:	2020-02-11T00:00:00
db:	CNVD	id:	CNVD-2020-23039	date:	2020-04-16T00:00:00
db:	VULMON	id:	CVE-2019-13946	date:	2020-02-11T00:00:00
db:	JVNDB	id:	JVNDB-2019-014603	date:	2020-03-04T00:00:00
db:	CNNVD	id:	CNNVD-202002-455	date:	2020-02-11T00:00:00
db:	NVD	id:	CVE-2019-13946	date:	2020-02-11T16:15:15.023