CVE-2023-51440

A vulnerability has been identified in SIMATIC CP 343-1 (6GK7343-1EX30-0XE0) (All versions), SIMATIC CP 343-1 Lean (6GK7343-1CX10-0XE0) (All versions), SIPLUS NET CP 343-1 (6AG1343-1EX30-7XE0) (All versions), SIPLUS NET CP 343-1 Lean (6AG1343-1CX10-2XE0) (All versions). Affected products incorrectly validate TCP sequence numbers. This could allow an unauthenticated remote attacker to create a denial of service condition by injecting spoofed TCP RST packets.

CVSS v3 7.5 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://cert-portal.siemens.com/productcert/html/ssa-516818.html	Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-516818.html	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:h:siemens:simatic_cp_343-1:-:*:*:*:*:*:*:*

cpe:2.3:o:siemens:simatic_cp_343-1_firmware:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:h:siemens:simatic_cp_343-1_lean:-:*:*:*:*:*:*:*

cpe:2.3:o:siemens:simatic_cp_343-1_lean_firmware:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:h:siemens:siplus_net_cp_343-1:-:*:*:*:*:*:*:*

cpe:2.3:o:siemens:siplus_net_cp_343-1_firmware:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:h:siemens:siplus_net_cp_343-1_lean:-:*:*:*:*:*:*:*

cpe:2.3:o:siemens:siplus_net_cp_343-1_lean_firmware:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2024-02-13 09:15

Updated : 2024-12-16 15:17

NVD link : CVE-2023-51440

Mitre link : CVE-2023-51440

CVE.ORG link : CVE-2023-51440

JSON object : View

Products Affected

siemens

siplus_net_cp_343-1_lean_firmware
simatic_cp_343-1_lean_firmware
siplus_net_cp_343-1_firmware
simatic_cp_343-1_firmware
siplus_net_cp_343-1
simatic_cp_343-1_lean
siplus_net_cp_343-1_lean
simatic_cp_343-1

CWE

CWE-940

Improper Verification of Source of a Communication Channel

NVD-CWE-noinfo

{"id": "CVE-2023-51440", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}, {"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2024-02-13T09:15:46.830", "references": [{"url": "https://cert-portal.siemens.com/productcert/html/ssa-516818.html", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "https://cert-portal.siemens.com/productcert/html/ssa-516818.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-940"}]}, {"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in SIMATIC CP 343-1 (6GK7343-1EX30-0XE0) (All versions), SIMATIC CP 343-1 Lean (6GK7343-1CX10-0XE0) (All versions), SIPLUS NET CP 343-1 (6AG1343-1EX30-7XE0) (All versions), SIPLUS NET CP 343-1 Lean (6AG1343-1CX10-2XE0) (All versions). Affected products incorrectly validate TCP sequence numbers. This could allow an unauthenticated remote attacker to create a denial of service condition by injecting spoofed TCP RST packets."}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad en: \nSIMATIC CP 343-1 (6GK7343-1EX30-0XE0) (todas las versiones), \nSIMATIC CP 343-1 Lean (6GK7343-1CX10-0XE0) (todas las versiones), \nSIPLUS NET CP 343-1 (6AG1343- 1EX30-7XE0) (todas las versiones), \nSIPLUS NET CP 343-1 Lean (6AG1343-1CX10-2XE0) (todas las versiones). \nLos productos afectados validan incorrectamente los n\u00fameros de secuencia TCP. Esto podr\u00eda permitir que un atacante remoto no autenticado cree una condici\u00f3n de denegaci\u00f3n de servicio inyectando paquetes TCP RST falsificados."}], "lastModified": "2024-12-16T15:17:29.160", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_cp_343-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C100D7C1-EAD2-455D-8A72-5BBBD85F2F77"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_cp_343-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "611E1F0F-D55F-4F40-87A0-4783876182B0"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_cp_343-1_lean:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EE2A18E2-F88F-4DC1-81E9-AC836C85A248"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_cp_343-1_lean_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "065874F0-45A3-45D8-8EAC-657B04567570"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:siplus_net_cp_343-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C04E90BF-FA49-40B2-AEA2-A64A6E5A8B77"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:siplus_net_cp_343-1_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E5941347-0E16-41D1-BC6C-4FC62916F20F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:siplus_net_cp_343-1_lean:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "31A4A9A6-25FF-4FEF-8081-E827CCC87FAF"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:siplus_net_cp_343-1_lean_firmware:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "98B87B82-1949-498F-A922-8DF26B9F6414"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "[email protected]"}