Sign-up

ID

VAR-202407-1103


TITLE

Siemens (China) Co., Ltd. has multiple products with a denial of service vulnerability (CNVD-C-2024-309064)

Trust: 0.6

sources: CNVD: CNVD-2024-25231

DESCRIPTION

Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digitalization. Many products of Siemens (China) Co., Ltd. have denial of service vulnerabilities. Attackers can exploit the vulnerabilities to cause abnormal processing of the device and crash. The device can only be restored by manually restarting the PLC.

Trust: 0.6

sources: CNVD: CNVD-2024-25231

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2024-25231

AFFECTED PRODUCTS

vendor:siemensmodel:cpu pn/dpscope:eqversion:319-3v3.2.14

Trust: 0.6

vendor:siemensmodel:cpscope:eqversion:343-1v2.6.0

Trust: 0.6

sources: CNVD: CNVD-2024-25231

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2024-25231
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2024-25231
severity: MEDIUM
baseScore: 6.1
vectorString: AV:A/AC:L/AU:N/C:N/I:N/A:C
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 6.5
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2024-25231

PATCH

title:Patch for Siemens (China) Co., Ltd. has multiple products with a denial of service vulnerability (CNVD-C-2024-309064)url:https://www.cnvd.org.cn/patchinfo/show/554921

Trust: 0.6

sources: CNVD: CNVD-2024-25231

EXTERNAL IDS

db:CNVDid:CNVD-2024-25231

Trust: 0.6

sources: CNVD: CNVD-2024-25231

SOURCES

db:CNVDid:CNVD-2024-25231

LAST UPDATE DATE

2024-07-25T04:12:43.839000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2024-25231date:2024-06-11T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2024-25231date:2024-07-06T00:00:00