CVE-2023-36521

11.07.2023, 10:15

A vulnerability has been identified in SIMATIC MV540 H (All versions < V3.3.4), SIMATIC MV540 S (All versions < V3.3.4), SIMATIC MV550 H (All versions < V3.3.4), SIMATIC MV550 S (All versions < V3.3.4), SIMATIC MV560 U (All versions < V3.3.4), SIMATIC MV560 X (All versions < V3.3.4). The result synchronization server of the affected products contains a
vulnerability that may lead to a denial of service condition. An attacker may
cause a denial of service situation of all socket-based communication of the
affected products if the result server is enabled.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8.6 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
siemens	CNA	8.6 HIGH				CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H/E:P/RL:O/RC:C
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 44%

Vendor	Product	Version
siemens	simatic_mv540_h_firmware	𝑥 < 3.3.4
siemens	simatic_mv540_s_firmware	𝑥 < 3.3.4
siemens	simatic_mv550_h_firmware	𝑥 < 3.3.4
siemens	simatic_mv550_s_firmware	𝑥 < 3.3.4
siemens	simatic_mv560_u_firmware	𝑥 < 3.3.4
siemens	simatic_mv560_x_firmware	𝑥 < 3.3.4

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-770 - Allocation of Resources Without Limits or Throttling
The software allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

References

https://cert-portal.siemens.com/productcert/pdf/ssa-561322.pdf