ID
VAR-202403-3300
TITLE
Discovery and Basic Configuration Protocol Access Control Error Vulnerability
Trust: 0.6
sources:
CNVD: CNVD-2024-14910
DESCRIPTION
The Discovery and Basic Configuration Protocol is a discovery and basic configuration protocol used by engineering tools and controllers to discover devices in a PROFINET network, identify device information, and configure PROFINET device names, IP addresses, and other device settings. . The Discovery and Basic Configuration Protocol has an access control error vulnerability that an attacker can exploit to create a denial of service condition by changing the parameters of a component.
Trust: 0.6
sources:
CNVD: CNVD-2024-14910
IOT TAXONOMY
| category: | ['ICS'] | sub_category: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2024-14910
AFFECTED PRODUCTS
| vendor: | profibus profinet | model: | international discovery and basic configuration protocol | scope: | - | version: | - | Trust: 0.6 |
sources:
CNVD: CNVD-2024-14910
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||
|
|
sources:
CNVD: CNVD-2024-14910
PATCH
| title: | Patch for Discovery and Basic Configuration Protocol Access Control Error Vulnerability | url: | https://www.cnvd.org.cn/patchinfo/show/537441 | Trust: 0.6 |
sources:
CNVD: CNVD-2024-14910
EXTERNAL IDS
| db: | CNVD | id: | CNVD-2024-14910 | Trust: 0.6 |
sources:
CNVD: CNVD-2024-14910
REFERENCES
| url: | https://cert-portal.siemens.com/productcert/html/ssb-201698.html | Trust: 0.6 |
sources:
CNVD: CNVD-2024-14910
SOURCES
| db: | CNVD | id: | CNVD-2024-14910 |
LAST UPDATE DATE
2024-04-28T22:37:37.938000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2024-14910 | date: | 2024-03-27T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2024-14910 | date: | 2024-03-27T00:00:00 |