CVE-2023-51440

2024-02-1309:00:04

CWE-940

siemens

www.cve.org

remote attacker

denial of service

spoofed tcp rst packets

tcp sequence numbers validation

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:T/RC:C

EPSS

0.001

Percentile

17.0%

JSON

A vulnerability has been identified in SIMATIC CP 343-1 (6GK7343-1EX30-0XE0) (All versions), SIMATIC CP 343-1 Lean (6GK7343-1CX10-0XE0) (All versions), SIPLUS NET CP 343-1 (6AG1343-1EX30-7XE0) (All versions), SIPLUS NET CP 343-1 Lean (6AG1343-1CX10-2XE0) (All versions). Affected products incorrectly validate TCP sequence numbers. This could allow an unauthenticated remote attacker to create a denial of service condition by injecting spoofed TCP RST packets.

CNA Affected

[
  {
    "vendor": "Siemens",
    "product": "SIMATIC CP 343-1",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC CP 343-1 Lean",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIPLUS NET CP 343-1",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIPLUS NET CP 343-1 Lean",
    "versions": [
      {
        "status": "affected",
        "version": "All versions"
      }
    ],
    "defaultStatus": "unknown"
  }
]