CVE-2022-47374

12.12.2023, 12:15

A vulnerability has been identified in SIMATICPC-Station Plus (All versions), SIMATIC S7-400 CPU 412-2 PN V7 (All versions), SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions), SINAMICS S120 (incl. SIPLUS variants) (All versions < V5.2 SP3 HF15), SIPLUS S7-400 CPU 414-3 PN/DP V7 (All versions), SIPLUS S7-400 CPU 416-3 PN/DP V7 (All versions). The affected products do not handle HTTP(S) requests to the web server correctly.

This could allow an attacker to exhaust system resources and create a denial of service condition for the device.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
siemens	CNA	7.5 HIGH				CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 44%

Vendor	Product	Version
siemens	6es7412-2ek07-0ab0_firmware	*
siemens	6es7414-3em07-0ab0_firmware	*
siemens	6es7414-3fm07-0ab0_firmware	*
siemens	6es7416-3es07-0ab0_firmware	*
siemens	6es7416-3fs07-0ab0_firmware	*
siemens	6ag1414-3em07-7ab0_firmware	*
siemens	6ag1416-3es07-7ab0_firmware	*
siemens	sinamics_s120_firmware	-
siemens	sinamics_s120_firmware	4.7
siemens	sinamics_s120_firmware	4.8
siemens	sinamics_s120_firmware	4.9
siemens	sinamics_s120_firmware	5.0
siemens	sinamics_s120_firmware	5.1:sp1
siemens	sinamics_s120_firmware	5.1:sp1_hotfix1
siemens	sinamics_s120_firmware	5.1:sp1_hotfix13
siemens	sinamics_s120_firmware	5.2
siemens	sinamics_s120_firmware	5.2:hotfix1
siemens	sinamics_s120_firmware	5.2:hotfix11
siemens	sinamics_s120_firmware	5.2:hotfix7
siemens	sinamics_s120_firmware	5.2:sp3
siemens	sinamics_s120_firmware	5.2:sp3_hotfix1
siemens	sinamics_s120_firmware	5.2:sp3_hotfix13
siemens	sinamics_s120_firmware	5.2:sp3_hotfix6
siemens	sinamics_s120_firmware	5.2:sp3_hotfix9
siemens	simatic_pc-station_plus_firmware	*

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-674 - Uncontrolled Recursion
The product does not properly control the amount of recursion which takes place, consuming excessive resources, such as allocated memory or the program stack.

References

https://cert-portal.siemens.com/productcert/pdf/ssa-892915.pdf