CVE-2023-51440
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability has been identified in SIMATIC CP 343-1 (6GK7343-1EX30-0XE0) (All versions), SIMATIC CP 343-1 Lean (6GK7343-1CX10-0XE0) (All versions), SIPLUS NET CP 343-1 (6AG1343-1EX30-7XE0) (All versions), SIPLUS NET CP 343-1 Lean (6AG1343-1CX10-2XE0) (All versions). Affected products incorrectly validate TCP sequence numbers. This could allow an unauthenticated remote attacker to create a denial of service condition by injecting spoofed TCP RST packets.
Se ha identificado una vulnerabilidad en:
SIMATIC CP 343-1 (6GK7343-1EX30-0XE0) (todas las versiones),
SIMATIC CP 343-1 Lean (6GK7343-1CX10-0XE0) (todas las versiones),
SIPLUS NET CP 343-1 (6AG1343- 1EX30-7XE0) (todas las versiones),
SIPLUS NET CP 343-1 Lean (6AG1343-1CX10-2XE0) (todas las versiones).
Los productos afectados validan incorrectamente los números de secuencia TCP. Esto podría permitir que un atacante remoto no autenticado cree una condición de denegación de servicio inyectando paquetes TCP RST falsificados.
CVSS Scores
SSVC
- Decision:Track
Timeline
- 2023-12-19 CVE Reserved
- 2024-02-13 CVE Published
- 2024-02-14 EPSS Updated
- 2024-08-02 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-940: Improper Verification of Source of a Communication Channel
CAPEC
References (1)
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Siemens Search vendor "Siemens" | SIMATIC CP 343-1 Search vendor "Siemens" for product "SIMATIC CP 343-1" | <= Search vendor "Siemens" for product "SIMATIC CP 343-1" and version " <= " | en |
Affected
| ||||||
Siemens Search vendor "Siemens" | SIMATIC CP 343-1 Lean Search vendor "Siemens" for product "SIMATIC CP 343-1 Lean" | <= Search vendor "Siemens" for product "SIMATIC CP 343-1 Lean" and version " <= " | en |
Affected
| ||||||
Siemens Search vendor "Siemens" | SIPLUS NET CP 343-1 Search vendor "Siemens" for product "SIPLUS NET CP 343-1" | <= Search vendor "Siemens" for product "SIPLUS NET CP 343-1" and version " <= " | en |
Affected
| ||||||
Siemens Search vendor "Siemens" | SIPLUS NET CP 343-1 Lean Search vendor "Siemens" for product "SIPLUS NET CP 343-1 Lean" | <= Search vendor "Siemens" for product "SIPLUS NET CP 343-1 Lean" and version " <= " | en |
Affected
|