ID

VAR-202407-2188


TITLE

Siemens (China) Co., Ltd. has multiple products with a denial of service vulnerability (CNVD-C-2024-309062)

Trust: 0.6

sources: CNVD: CNVD-2024-25230

DESCRIPTION

Siemens (China) Co., Ltd. is a company focusing on electrification, automation and digitalization. Many products of Siemens (China) Co., Ltd. have denial of service vulnerabilities. Attackers can exploit the vulnerabilities to cause abnormal processing of the device and crash. The device can only be restored by manually restarting the PLC.

Trust: 0.6

sources: CNVD: CNVD-2024-25230

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2024-25230

AFFECTED PRODUCTS

vendor:siemensmodel:cpu pn/dpscope:eqversion:315-2v3.3

Trust: 0.6

vendor:siemensmodel:cpscope:eqversion:343-1v3.0

Trust: 0.6

sources: CNVD: CNVD-2024-25230

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2024-25230
value: MEDIUM

Trust: 0.6

CNVD: CNVD-2024-25230
severity: MEDIUM
baseScore: 6.1
vectorString: AV:A/AC:L/AU:N/C:N/I:N/A:C
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 6.5
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2024-25230

PATCH

title:Patch for Siemens (China) Co., Ltd. has multiple products with a denial of service vulnerability (CNVD-C-2024-309062)url:https://www.cnvd.org.cn/patchinfo/show/554926

Trust: 0.6

sources: CNVD: CNVD-2024-25230

EXTERNAL IDS

db:CNVDid:CNVD-2024-25230

Trust: 0.6

sources: CNVD: CNVD-2024-25230

SOURCES

db:CNVDid:CNVD-2024-25230

LAST UPDATE DATE

2024-07-25T04:13:43.991000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2024-25230date:2024-06-11T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2024-25230date:2024-07-06T00:00:00