CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-27640
https://notcve.org/view.php?id=CVE-2022-27640
A vulnerability has been identified in SIMATIC CP 442-1 RNA (All versions < V1.5.18), SIMATIC CP 443-1 RNA (All versions < V1.5.18). The affected devices improperly handles excessive ARP broadcast requests. This could allow an attacker to create a denial of service condition by performing ARP storming attacks, which can cause the device to reboot. Se ha identificado una vulnerabilidad en SIMATIC CP 442-1 RNA (Todas las versiones anteriores a V1.5.18), SIMATIC CP 443-1 RNA (Todas las versiones anteriores a V1.5.18). Los dispositivos afectados manejan inapropiadamente el exceso de peticiones de difusión ARP. • https://cert-portal.siemens.com/productcert/pdf/ssa-480937.pdf • CWE-400: Uncontrolled Resource Consumption •