CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

siemens

simatic_cfu_pa_firmware

3 known vulnerabilities · sorted by CVSS score

CVE-2020-28400

HIGH7.5

Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a denial of service condition. The vulnerability can be triggered if a large amount of DCP reset packets are sent to the device.

siemens / dk_standard_ethernet_controller_evaluation_kit_firmware+78

Network

Published Jul 13, 2021

CVE-2019-10936

HIGH7.5

Affected devices improperly handle large amounts of specially crafted UDP packets. This could allow an unauthenticated remote attacker to trigger a denial of service condition.

siemens / dk_standard_ethernet_controller_firmware+82

Network

Published Oct 10, 2019

CVE-2022-25622

MEDIUM5.3

The PROFINET (PNIO) stack, when integrated with the Interniche IP stack, improperly handles internal resources for TCP segments where the minimum TCP-Header length is less than defined. This could allow an attacker to create a denial of service condition for TCP services on affected devices by sending specially crafted TCP segments.

siemens / simatic_cfu_diq_firmware+11

Network

Published Apr 12, 2022