CVE-2022-29884
N/A
N/A
Summary
A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70°C (All versions < CPC80 V16.30), CP-8000 MASTER MODULE WITH I/O -40/+70°C (All versions < CPC80 V16.30), CP-8021 MASTER MODULE (All versions < CPC80 V16.30), CP-8022 MASTER MODULE WITH GPRS (All versions < CPC80 V16.30). When using the HTTPS server under specific conditions, affected devices do not properly free resources. This could allow an unauthenticated remote attacker to put the device into a denial of service condition.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Siemens | CP-8000 MASTER MODULE WITH I/O -25/+70°C | All versions < CPC80 V16.30 | affected |
| Siemens | CP-8000 MASTER MODULE WITH I/O -40/+70°C | All versions < CPC80 V16.30 | affected |
| Siemens | CP-8021 MASTER MODULE | All versions < CPC80 V16.30 | affected |
| Siemens | CP-8022 MASTER MODULE WITH GPRS | All versions < CPC80 V16.30 | affected |
Weaknesses
- CWE-772: CWE-772: Missing Release of Resource after Effective Lifetime
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.