CVE-2023-30755
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions < V3.5.20), SIMATIC CP 1243-1 (incl. SIPLUS variants) (All versions < V3.5.20), SIMATIC CP 1243-1 DNP3 (incl. SIPLUS variants) (All versions < V3.5.20), SIMATIC CP 1243-1 IEC (incl. SIPLUS variants) (All versions < V3.5.20), SIMATIC CP 1243-7 LTE (All versions < V3.5.20), SIMATIC CP 1243-8 IRC (6GK7243-8RX30-0XE0) (All versions < V3.5.20), SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions), SIMATIC IPC DiagBase (All versions), SIMATIC IPC DiagMonitor (All versions), SIMATIC WinCC Runtime Advanced (All versions), SIPLUS TIM 1531 IRC (6AG1543-1MX00-7XE0) (All versions < V2.4.8), TIM 1531 IRC (6GK7543-1MX00-0XE0) (All versions < V2.4.8). The web server of the affected devices do not properly handle the shutdown or reboot request, which could lead to the clean up of certain resources.
This could allow a remote attacker with elevated privileges to cause a denial of service condition in the system.
CVSS Scores
SSVC
- Decision:Track
Timeline
- 2023-04-14 CVE Reserved
- 2024-09-10 CVE Published
- 2024-09-10 CVE Updated
- 2024-09-11 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-476: NULL Pointer Dereference
CAPEC
References (1)
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Siemens Search vendor "Siemens" | SIMATIC HMI Comfort Panels (incl. SIPLUS Variants) Search vendor "Siemens" for product "SIMATIC HMI Comfort Panels (incl. SIPLUS Variants)" | <= Search vendor "Siemens" for product "SIMATIC HMI Comfort Panels (incl. SIPLUS Variants)" and version " <= " | en |
Affected
| ||||||
| Siemens Search vendor "Siemens" | SIMATIC IPC DiagBase Search vendor "Siemens" for product "SIMATIC IPC DiagBase" | 0 Search vendor "Siemens" for product "SIMATIC IPC DiagBase" and version "0" | en |
Affected
| ||||||
| Siemens Search vendor "Siemens" | SIMATIC IPC DiagMonitor Search vendor "Siemens" for product "SIMATIC IPC DiagMonitor" | <= Search vendor "Siemens" for product "SIMATIC IPC DiagMonitor" and version " <= " | en |
Affected
| ||||||
| Siemens Search vendor "Siemens" | SIMATIC WinCC Runtime Advanced Search vendor "Siemens" for product "SIMATIC WinCC Runtime Advanced" | <= Search vendor "Siemens" for product "SIMATIC WinCC Runtime Advanced" and version " <= " | en |
Affected
| ||||||