CVE-2022-46352

Summary

A vulnerability has been identified in SCALANCE X204RNA (HSR) (All versions < V3.2.7), SCALANCE X204RNA (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (HSR) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP/HSR) (All versions < V3.2.7). Specially crafted PROFINET DCP packets could cause a denial of service condition of affected products.

Affected Software

VendorProductVersion RangeStatus
SiemensSCALANCE X204RNA (HSR)All versions < V3.2.7affected
SiemensSCALANCE X204RNA (PRP)All versions < V3.2.7affected
SiemensSCALANCE X204RNA EEC (HSR)All versions < V3.2.7affected
SiemensSCALANCE X204RNA EEC (PRP)All versions < V3.2.7affected
SiemensSCALANCE X204RNA EEC (PRP/HSR)All versions < V3.2.7affected

Weaknesses

  • CWE-400: CWE-400: Uncontrolled Resource Consumption

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References