Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistSiemensCVELIST:CVE-2020-25241
HistoryMar 15, 2021 - 5:03 p.m.

CVE-2020-25241

2021-03-1517:03:30
CWE-1285
siemens
www.cve.org
5
simatic mv400
tcp stack
sequence number
tcp rst packages
arbitrary tcp sessions

EPSS

0.001

Percentile

42.5%

JSON

A vulnerability has been identified in SIMATIC MV400 family (All Versions < V7.0.6). The underlying TCP stack of the affected products does not correctly validate the sequence number for incoming TCP RST packages. An attacker could exploit this to terminate arbitrary TCP sessions.

CNA Affected

[
  {
    "product": "SIMATIC MV400 family",
    "vendor": "Siemens",
    "versions": [
      {
        "status": "affected",
        "version": "All Versions <  V7.0.6"
      }
    ]
  }
]

Related

nvd 1
prion 1
cve 1
ics 1
nvd
nvd
CVE-2020-25241
2021-03-15 17:15:20
prion
prion
Design/Logic Flaw
2021-03-15 17:15:00
cve
cve
CVE-2020-25241
2021-03-15 17:15:20
ics
ics
Siemens TCP Stack of SIMATIC MV400
2021-03-09 12:00:00

EPSS

0.001

Percentile

42.5%

JSON
Related for CVELIST:CVE-2020-25241
nvd1prion1cve1ics1