CVE-2023-38380

Severity Score

8.7

*CVSS v4

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A vulnerability has been identified in SIMATIC CP 1242-7 V2 (incl. SIPLUS variants) (All versions < V3.4.29), SIMATIC CP 1243-1 (incl. SIPLUS variants) (All versions < V3.4.29), SIMATIC CP 1243-1 DNP3 (incl. SIPLUS variants) (All versions), SIMATIC CP 1243-1 IEC (incl. SIPLUS variants) (All versions < V3.4.29), SIMATIC CP 1243-7 LTE (All versions < V3.4.29), SIMATIC CP 1243-8 IRC (6GK7243-8RX30-0XE0) (All versions < V3.4.29), SIMATIC CP 1542SP-1 (6GK7542-6UX00-0XE0) (All versions < V2.3), SIMATIC CP 1542SP-1 IRC (6GK7542-6VX00-0XE0) (All versions < V2.3), SIMATIC CP 1543-1 (6GK7543-1AX00-0XE0) (All versions < V3.0.37), SIMATIC CP 1543SP-1 (6GK7543-6WX00-0XE0) (All versions < V2.3), SINAMICS S210 (6SL5...) (All versions >= V6.1 < V6.1 HF2), SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL (6AG2542-6VX00-4XE0) (All versions < V2.3), SIPLUS ET 200SP CP 1543SP-1 ISEC (6AG1543-6WX00-7XE0) (All versions < V2.3), SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL (6AG2543-6WX00-4XE0) (All versions < V2.3), SIPLUS NET CP 1543-1 (6AG1543-1AX00-2XE0) (All versions < V3.0.37). The webserver implementation of the affected products does not correctly release allocated memory after it has been used.

An attacker with network access could use this vulnerability to cause a denial-of-service condition in the webserver of the affected product.

Se ha identificado una vulnerabilidad en:
SIMATIC CP 1242-7 V2 (incluidas las variantes SIPLUS) (todas las versiones),
SIMATIC CP 1243-1 (incluidas las variantes SIPLUS) (todas las versiones),
SIMATIC CP 1243-1 DNP3 (incluidas las variantes SIPLUS) ) (todas las versiones),
SIMATIC CP 1243-1 IEC (incl. variantes SIPLUS) (todas las versiones),
SIMATIC CP 1243-7 LTE (todas las versiones),
SIMATIC CP 1243-8 IRC (todas las versiones),
SIMATIC CP 1543-1 (Todas las versiones),
SINAMICS S210 (6SL5...) (Todas las versiones >= V6.1 < V6.1 HF2),
SIPLUS NET CP 1543-1 (Todas las versiones).
La implementación del servidor web de los productos afectados no libera correctamente la memoria asignada una vez utilizada. Un atacante con acceso a la red podría utilizar esta vulnerabilidad para provocar una condición de denegación de servicio en el servidor web del producto afectado.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Attack Requirements

None

Privileges Required

None

User Interaction

None

System

Vulnerable | Subsequent

Confidentiality

None

Integrity

None

Availability

High

None

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2023-07-17 CVE Reserved
2023-12-12 CVE Published
2024-08-02 CVE Updated
2024-11-11 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-401: Missing Release of Memory after Effective Lifetime

CAPEC

References (4)

URL	Tag	Source
https://cert-portal.siemens.com/productcert/html/ssa-139628.html
https://cert-portal.siemens.com/productcert/html/ssa-625862.html
https://cert-portal.siemens.com/productcert/html/ssa-693975.html

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://cert-portal.siemens.com/productcert/pdf/ssa-693975.pdf	2024-06-11

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Siemens Search vendor "Siemens"	6gk7243-8rx30-0xe0 Firmware Search vendor "Siemens" for product "6gk7243-8rx30-0xe0 Firmware"	-	-	Affected	in	Siemens Search vendor "Siemens"	6gk7243-8rx30-0xe0 Search vendor "Siemens" for product "6gk7243-8rx30-0xe0"	-	-	Safe
Siemens Search vendor "Siemens"	6gk7543-1ax00-0xe0 Firmware Search vendor "Siemens" for product "6gk7543-1ax00-0xe0 Firmware"	-	-	Affected	in	Siemens Search vendor "Siemens"	6gk7543-1ax00-0xe0 Search vendor "Siemens" for product "6gk7543-1ax00-0xe0"	-	-	Safe
Siemens Search vendor "Siemens"	6ag1543-1ax00-2xe0 Firmware Search vendor "Siemens" for product "6ag1543-1ax00-2xe0 Firmware"	-	-	Affected	in	Siemens Search vendor "Siemens"	6ag1543-1ax00-2xe0 Search vendor "Siemens" for product "6ag1543-1ax00-2xe0"	-	-	Safe
Siemens Search vendor "Siemens"	Simatic Cp 1242-7 V2 Firmware Search vendor "Siemens" for product "Simatic Cp 1242-7 V2 Firmware"	-	-	Affected	in	Siemens Search vendor "Siemens"	Simatic Cp 1242-7 V2 Search vendor "Siemens" for product "Simatic Cp 1242-7 V2"	-	-	Safe
Siemens Search vendor "Siemens"	Simatic Cp 1243-1 Firmware Search vendor "Siemens" for product "Simatic Cp 1243-1 Firmware"	-	-	Affected	in	Siemens Search vendor "Siemens"	Simatic Cp 1243-1 Search vendor "Siemens" for product "Simatic Cp 1243-1"	-	-	Safe
Siemens Search vendor "Siemens"	Simatic Cp 1243-1 Dnp3 Firmware Search vendor "Siemens" for product "Simatic Cp 1243-1 Dnp3 Firmware"	-	-	Affected	in	Siemens Search vendor "Siemens"	Simatic Cp 1243-1 Dnp3 Search vendor "Siemens" for product "Simatic Cp 1243-1 Dnp3"	-	-	Safe
Siemens Search vendor "Siemens"	Simatic Cp 1243-1 Iec Firmware Search vendor "Siemens" for product "Simatic Cp 1243-1 Iec Firmware"	-	-	Affected	in	Siemens Search vendor "Siemens"	Simatic Cp 1243-1 Iec Search vendor "Siemens" for product "Simatic Cp 1243-1 Iec"	-	-	Safe
Siemens Search vendor "Siemens"	Simatic Cp 1243-7 Lte Firmware Search vendor "Siemens" for product "Simatic Cp 1243-7 Lte Firmware"	-	-	Affected	in	Siemens Search vendor "Siemens"	Simatic Cp 1243-7 Lte Search vendor "Siemens" for product "Simatic Cp 1243-7 Lte"	*	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	5.1 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "5.1"	-	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	5.1 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "5.1"	sp1	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	5.1 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "5.1"	sp1_hotfix8	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	5.2 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "5.2"	-	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	5.2 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "5.2"	hotfix2	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	5.2 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "5.2"	hotfix5	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	5.2 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "5.2"	hotfix6	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	5.2 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "5.2"	hotfix7	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	5.2 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "5.2"	sp3	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	5.2 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "5.2"	sp3_hotfix3	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	5.2 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "5.2"	sp3_hotfix5	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	5.2 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "5.2"	sp3_hotfix6	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	5.2 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "5.2"	sp3_hotfix9	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	6.1 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "6.1"	-	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe
Siemens Search vendor "Siemens"	Sinamics S210 Firmware Search vendor "Siemens" for product "Sinamics S210 Firmware"	6.1 Search vendor "Siemens" for product "Sinamics S210 Firmware" and version "6.1"	hotfix1	Affected	in	Siemens Search vendor "Siemens"	Sinamics S210 Search vendor "Siemens" for product "Sinamics S210"	-	-	Safe