CVE-2023-46280
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H/E:P/RL:O/RC:C
Summary
A vulnerability has been identified in Security Configuration Tool (SCT) (All versions), SIMATIC Automation Tool (All versions < V5.0 SP2), SIMATIC BATCH V9.1 (All versions < V9.1 SP2 Upd5), SIMATIC NET PC Software V16 (All versions < V16 Update 8), SIMATIC NET PC Software V17 (All versions), SIMATIC NET PC Software V18 (All versions < V18 SP1), SIMATIC NET PC Software V19 (All versions < V19 Update 2), SIMATIC PCS 7 V9.1 (All versions < V9.1 SP2 UC05), SIMATIC PDM V9.2 (All versions < V9.2 SP2 Upd3), SIMATIC Route Control V9.1 (All versions < V9.1 SP2 Upd3), SIMATIC S7-PCT (All versions < V3.5 SP3 Update 6), SIMATIC STEP 7 V5 (All versions < V5.7 SP3), SIMATIC WinCC OA V3.17 (All versions), SIMATIC WinCC OA V3.18 (All versions < V3.18 P025), SIMATIC WinCC OA V3.19 (All versions < V3.19 P010), SIMATIC WinCC Runtime Advanced (All versions < V17 Update 8), SIMATIC WinCC Runtime Professional V16 (All versions < V16 Update 6), SIMATIC WinCC Runtime Professional V17 (All versions < V17 Update 8), SIMATIC WinCC Runtime Professional V18 (All versions < V18 Update 4), SIMATIC WinCC Runtime Professional V19 (All versions < V19 Update 2), SIMATIC WinCC V7.4 (All versions), SIMATIC WinCC V7.5 (All versions < V7.5 SP2 Update 17), SIMATIC WinCC V8.0 (All versions < V8.0 Update 5), SINAMICS Startdrive (All versions < V19 SP1), SINEC NMS (All versions < V3.0), SINUMERIK ONE virtual (All versions < V6.23), SINUMERIK PLC Programming Tool (All versions < V3.3.12), TIA Portal Cloud Connector (All versions < V2.0), Totally Integrated Automation Portal (TIA Portal) V15.1 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions < V17 Update 8), Totally Integrated Automation Portal (TIA Portal) V18 (All versions < V18 Update 4), Totally Integrated Automation Portal (TIA Portal) V19 (All versions < V19 Update 2), SINEC NMS (All versions < V3.0 SP1). The affected applications contain an out of bounds read vulnerability. This could allow an attacker to cause a Blue Screen of Death (BSOD) crash of the underlying Windows kernel.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Siemens | Security Configuration Tool (SCT) | 0 < * | affected |
| Siemens | SIMATIC Automation Tool | 0 < V5.0 SP2 | affected |
| Siemens | SIMATIC BATCH V9.1 | 0 < V9.1 SP2 Upd5 | affected |
| Siemens | SIMATIC NET PC Software V16 | 0 < V16 Update 8 | affected |
| Siemens | SIMATIC NET PC Software V17 | 0 < * | affected |
| Siemens | SIMATIC NET PC Software V18 | 0 < V18 SP1 | affected |
| Siemens | SIMATIC NET PC Software V19 | 0 < V19 Update 2 | affected |
| Siemens | SIMATIC PCS 7 V9.1 | 0 < V9.1 SP2 UC05 | affected |
| Siemens | SIMATIC PDM V9.2 | 0 < V9.2 SP2 Upd3 | affected |
| Siemens | SIMATIC Route Control V9.1 | 0 < V9.1 SP2 Upd3 | affected |
| Siemens | SIMATIC S7-PCT | 0 < V3.5 SP3 Update 6 | affected |
| Siemens | SIMATIC STEP 7 V5 | 0 < V5.7 SP3 | affected |
| Siemens | SIMATIC WinCC OA V3.17 | 0 < * | affected |
| Siemens | SIMATIC WinCC OA V3.18 | 0 < V3.18 P025 | affected |
| Siemens | SIMATIC WinCC OA V3.19 | 0 < V3.19 P010 | affected |
| Siemens | SIMATIC WinCC Runtime Advanced | 0 < V17 Update 8 | affected |
| Siemens | SIMATIC WinCC Runtime Professional V16 | 0 < V16 Update 6 | affected |
| Siemens | SIMATIC WinCC Runtime Professional V17 | 0 < V17 Update 8 | affected |
| Siemens | SIMATIC WinCC Runtime Professional V18 | 0 < V18 Update 4 | affected |
| Siemens | SIMATIC WinCC Runtime Professional V19 | 0 < V19 Update 2 | affected |
| Siemens | SIMATIC WinCC V7.4 | 0 < * | affected |
| Siemens | SIMATIC WinCC V7.5 | 0 < V7.5 SP2 Update 17 | affected |
| Siemens | SIMATIC WinCC V8.0 | 0 < V8.0 Update 5 | affected |
| Siemens | SINAMICS Startdrive | 0 < V19 SP1 | affected |
| Siemens | SINEC NMS | 0 < V3.0 | affected |
| Siemens | SINUMERIK ONE virtual | 0 < V6.23 | affected |
| Siemens | SINUMERIK PLC Programming Tool | 0 < V3.3.12 | affected |
| Siemens | TIA Portal Cloud Connector | 0 < V2.0 | affected |
| Siemens | Totally Integrated Automation Portal (TIA Portal) V15.1 | 0 < * | affected |
| Siemens | Totally Integrated Automation Portal (TIA Portal) V16 | 0 < * | affected |
| Siemens | Totally Integrated Automation Portal (TIA Portal) V17 | 0 < V17 Update 8 | affected |
| Siemens | Totally Integrated Automation Portal (TIA Portal) V18 | 0 < V18 Update 4 | affected |
| Siemens | Totally Integrated Automation Portal (TIA Portal) V19 | 0 < V19 Update 2 | affected |
| Siemens | SINEC NMS | 0 < V3.0 SP1 | affected |
Weaknesses
- CWE-125: CWE-125: Out-of-bounds Read
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
CVE Program Container
Additional References
References
- https://cert-portal.siemens.com/productcert/html/ssa-962515.html
- https://cert-portal.siemens.com/productcert/html/ssa-784301.html
- https://cert-portal.siemens.com/productcert/html/ssa-331112.html
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.