CVE-2025-15467
EUVD-2025-20637927.01.2026, 16:16
Issue summary: Parsing CMS AuthEnvelopedData or EnvelopedData message with maliciously crafted AEAD parameters can trigger a stack buffer overflow. Impact summary: A stack buffer overflow may lead to a crash, causing Denial of Service, or potentially remote code execution. When parsing CMS (Auth)EnvelopedData structures that use AEAD ciphers such as AES-GCM, the IV (Initialization Vector) encoded in the ASN.1 parameters is copied into a fixed-size stack buffer without verifying that its length fits the destination. An attacker can supply a crafted CMS message with an oversized IV, causing a stack-based out-of-bounds write before any authentication or tag verification occurs. Applications and services that parse untrusted CMS or PKCS#7 content using AEAD ciphers (e.g., S/MIME (Auth)EnvelopedData with AES-GCM) are vulnerable. Because the overflow occurs prior to authentication, no valid key material is required to trigger it. While exploitability to remote code execution depends on platform and toolchain mitigations, the stack-based write primitive represents a severe risk. The FIPS modules in 3.6, 3.5, 3.4, 3.3 and 3.0 are not affected by this issue, as the CMS implementation is outside the OpenSSL FIPS module boundary. OpenSSL 3.6, 3.5, 3.4, 3.3 and 3.0 are vulnerable to this issue. OpenSSL 1.1.1 and 1.0.2 are not affected by this issue.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| openssl | openssl | 3.0.0 ≤ 𝑥 < 3.0.19 |
| openssl | openssl | 3.1.0 ≤ 𝑥 < 3.3.6 |
| openssl | openssl | 3.4.0 ≤ 𝑥 < 3.4.4 |
| openssl | openssl | 3.5.0 ≤ 𝑥 < 3.5.5 |
| openssl | openssl | 3.6.0 ≤ 𝑥 < 3.6.1 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| Siemens | AI Lightweight Inference Server | 𝑥 < * | ADP |
| Siemens | Connector for Azure | 𝑥 < V1.8.0 | ADP |
| Siemens | Databus | 𝑥 < V3.3.2 | ADP |
| Siemens | HiMed Cockpit | 𝑥 < * | ADP |
| Siemens | RUGGEDCOM RM1224 LTE\(4G\) EU | 𝑥 < * | ADP |
| Siemens | RUGGEDCOM RM1224 LTE\(4G\) NAM | 𝑥 < * | ADP |
| Siemens | SCALANCE LPE9403 | 𝑥 < * | ADP |
| Siemens | SCALANCE LPE9413 | 𝑥 < * | ADP |
| Siemens | SCALANCE LPE9433 | 𝑥 < * | ADP |
| Siemens | SCALANCE M804PB | 𝑥 < * | ADP |
| Siemens | SCALANCE M812-1 ADSL-Router family | 𝑥 < * | ADP |
| Siemens | SCALANCE M816-1 ADSL-Router family | 𝑥 < * | ADP |
| Siemens | SCALANCE M826-2 SHDSL-Router | 𝑥 < * | ADP |
| Siemens | SCALANCE M874-2 | 𝑥 < * | ADP |
| Siemens | SCALANCE M874-3 | 𝑥 < * | ADP |
| Siemens | SCALANCE M874-3 3G-Router \(CN\) | 𝑥 < * | ADP |
| Siemens | SCALANCE M876-3 | 𝑥 < * | ADP |
| Siemens | SCALANCE M876-3 \(ROK\) | 𝑥 < * | ADP |
| Siemens | SCALANCE M876-4 | 𝑥 < * | ADP |
| Siemens | SCALANCE M876-4 \(EU\) | 𝑥 < * | ADP |
| Siemens | SCALANCE M876-4 \(NAM\) | 𝑥 < * | ADP |
| Siemens | SCALANCE MUB852-1 \(A1\) | 𝑥 < * | ADP |
| Siemens | SCALANCE MUB852-1 \(B1\) | 𝑥 < * | ADP |
| Siemens | SCALANCE MUM853-1 \(A1\) | 𝑥 < * | ADP |
| Siemens | SCALANCE MUM853-1 \(B1\) | 𝑥 < * | ADP |
| Siemens | SCALANCE MUM853-1 \(EU\) | 𝑥 < * | ADP |
| Siemens | SCALANCE MUM856-1 \(A1\) | 𝑥 < * | ADP |
| Siemens | SCALANCE MUM856-1 \(B1\) | 𝑥 < * | ADP |
| Siemens | SCALANCE MUM856-1 \(CN\) | 𝑥 < * | ADP |
| Siemens | SCALANCE MUM856-1 \(EU\) | 𝑥 < * | ADP |
| Siemens | SCALANCE MUM856-1 \(RoW\) | 𝑥 < * | ADP |
| Siemens | SCALANCE S615 EEC LAN-Router | 𝑥 < * | ADP |
| Siemens | SCALANCE S615 LAN-Router | 𝑥 < * | ADP |
| Siemens | SCALANCE SC622-2C | 𝑥 < * | ADP |
| Siemens | SCALANCE SC626-2C | 𝑥 < * | ADP |
| Siemens | SCALANCE SC632-2C | 𝑥 < * | ADP |
| Siemens | SCALANCE SC636-2C | 𝑥 < * | ADP |
| Siemens | SCALANCE SC642-2C | 𝑥 < * | ADP |
| Siemens | SCALANCE SC646-2C | 𝑥 < * | ADP |
| Siemens | SCALANCE WAB762-1 | 𝑥 < * | ADP |
| Siemens | SCALANCE WAM763-1 | 𝑥 < * | ADP |
| Siemens | SCALANCE WAM763-1 \(ME\) | 𝑥 < * | ADP |
| Siemens | SCALANCE WAM763-1 \(US\) | 𝑥 < * | ADP |
| Siemens | SCALANCE WAM766-1 | 𝑥 < * | ADP |
| Siemens | SCALANCE WAM766-1 \(ME\) | 𝑥 < * | ADP |
| Siemens | SCALANCE WAM766-1 \(US\) | 𝑥 < * | ADP |
| Siemens | SCALANCE WAM766-1 EEC | 𝑥 < * | ADP |
| Siemens | SCALANCE WAM766-1 EEC \(ME\) | 𝑥 < * | ADP |
| Siemens | SCALANCE WAM766-1 EEC \(US\) | 𝑥 < * | ADP |
| Siemens | SCALANCE WUB762-1 | 𝑥 < * | ADP |
| Siemens | SCALANCE WUB762-1 iFeatures | 𝑥 < * | ADP |
| Siemens | SCALANCE WUM763-1 | 𝑥 < * | ADP |
| Siemens | SCALANCE WUM763-1 | 𝑥 < * | ADP |
| Siemens | SCALANCE WUM763-1 \(US\) | 𝑥 < * | ADP |
| Siemens | SCALANCE WUM763-1 \(US\) | 𝑥 < * | ADP |
| Siemens | SCALANCE WUM766-1 | 𝑥 < * | ADP |
| Siemens | SCALANCE WUM766-1 \(ME\) | 𝑥 < * | ADP |
| Siemens | SCALANCE WUM766-1 \(USA\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X200-4P IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE X200-4P IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE X201-3P IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE X201-3P IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE X201-3P IRT PRO | 𝑥 < * | ADP |
| Siemens | SCALANCE X201-3P IRT PRO | 𝑥 < * | ADP |
| Siemens | SCALANCE X202-2IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE X202-2IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE X202-2P IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE X202-2P IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE X202-2P IRT PRO | 𝑥 < * | ADP |
| Siemens | SCALANCE X202-2P IRT PRO | 𝑥 < * | ADP |
| Siemens | SCALANCE X204-2 | 𝑥 < * | ADP |
| Siemens | SCALANCE X204-2FM | 𝑥 < * | ADP |
| Siemens | SCALANCE X204-2LD | 𝑥 < * | ADP |
| Siemens | SCALANCE X204-2LD TS | 𝑥 < * | ADP |
| Siemens | SCALANCE X204-2TS | 𝑥 < * | ADP |
| Siemens | SCALANCE X204IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE X204IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE X204IRT PRO | 𝑥 < * | ADP |
| Siemens | SCALANCE X204IRT PRO | 𝑥 < * | ADP |
| Siemens | SCALANCE X204RNA \(HSR\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X204RNA \(PRP\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X204RNA EEC \(HSR\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X204RNA EEC \(PRP\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X204RNA EEC \(PRP/HSR\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X206-1 | 𝑥 < * | ADP |
| Siemens | SCALANCE X206-1LD | 𝑥 < * | ADP |
| Siemens | SCALANCE X208 | 𝑥 < * | ADP |
| Siemens | SCALANCE X208PRO | 𝑥 < * | ADP |
| Siemens | SCALANCE X212-2 | 𝑥 < * | ADP |
| Siemens | SCALANCE X212-2LD | 𝑥 < * | ADP |
| Siemens | SCALANCE X216 | 𝑥 < * | ADP |
| Siemens | SCALANCE X224 | 𝑥 < * | ADP |
| Siemens | SCALANCE X302-7 EEC \(230V\, coated\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X302-7 EEC \(230V\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X302-7 EEC \(24V\, coated\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X302-7 EEC \(24V\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X302-7 EEC \(2x 230V\, coated\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X302-7 EEC \(2x 230V\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X302-7 EEC \(2x 24V\, coated\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X302-7 EEC \(2x 24V\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X304-2FE | 𝑥 < * | ADP |
| Siemens | SCALANCE X306-1LD FE | 𝑥 < * | ADP |
| Siemens | SCALANCE X307-2 EEC \(230V\, coated\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X307-2 EEC \(230V\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X307-2 EEC \(24V\, coated\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X307-2 EEC \(24V\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X307-2 EEC \(2x 230V\, coated\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X307-2 EEC \(2x 230V\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X307-2 EEC \(2x 24V\, coated\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X307-2 EEC \(2x 24V\) | 𝑥 < * | ADP |
| Siemens | SCALANCE X307-3 | 𝑥 < * | ADP |
| Siemens | SCALANCE X307-3 | 𝑥 < * | ADP |
| Siemens | SCALANCE X307-3LD | 𝑥 < * | ADP |
| Siemens | SCALANCE X307-3LD | 𝑥 < * | ADP |
| Siemens | SCALANCE X308-2 | 𝑥 < * | ADP |
| Siemens | SCALANCE X308-2 | 𝑥 < * | ADP |
| Siemens | SCALANCE X308-2LD | 𝑥 < * | ADP |
| Siemens | SCALANCE X308-2LD | 𝑥 < * | ADP |
| Siemens | SCALANCE X308-2LH | 𝑥 < * | ADP |
| Siemens | SCALANCE X308-2LH | 𝑥 < * | ADP |
| Siemens | SCALANCE X308-2LH\+ | 𝑥 < * | ADP |
| Siemens | SCALANCE X308-2LH\+ | 𝑥 < * | ADP |
| Siemens | SCALANCE X308-2M | 𝑥 < * | ADP |
| Siemens | SCALANCE X308-2M | 𝑥 < * | ADP |
| Siemens | SCALANCE X308-2M PoE | 𝑥 < * | ADP |
| Siemens | SCALANCE X308-2M PoE | 𝑥 < * | ADP |
| Siemens | SCALANCE X308-2M TS | 𝑥 < * | ADP |
| Siemens | SCALANCE X308-2M TS | 𝑥 < * | ADP |
| Siemens | SCALANCE X310 | 𝑥 < * | ADP |
| Siemens | SCALANCE X310 | 𝑥 < * | ADP |
| Siemens | SCALANCE X310FE | 𝑥 < * | ADP |
| Siemens | SCALANCE X310FE | 𝑥 < * | ADP |
| Siemens | SCALANCE X320-1 FE | 𝑥 < * | ADP |
| Siemens | SCALANCE X320-1-2LD FE | 𝑥 < * | ADP |
| Siemens | SCALANCE X408-2 | 𝑥 < * | ADP |
| Siemens | SCALANCE XC316-8 | 𝑥 < * | ADP |
| Siemens | SCALANCE XC324-4 | 𝑥 < * | ADP |
| Siemens | SCALANCE XC324-4 EEC | 𝑥 < * | ADP |
| Siemens | SCALANCE XC332 | 𝑥 < * | ADP |
| Siemens | SCALANCE XC416-8 | 𝑥 < * | ADP |
| Siemens | SCALANCE XC424-4 | 𝑥 < * | ADP |
| Siemens | SCALANCE XC432 | 𝑥 < * | ADP |
| Siemens | SCALANCE XF201-3P IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE XF202-2P IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE XF204 | 𝑥 < * | ADP |
| Siemens | SCALANCE XF204-2 | 𝑥 < * | ADP |
| Siemens | SCALANCE XF204-2BA IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE XF204IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE XF204IRT | 𝑥 < * | ADP |
| Siemens | SCALANCE XF206-1 | 𝑥 < * | ADP |
| Siemens | SCALANCE XF208 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR302-32 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR302-32 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR302-32 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR322-12 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR322-12 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR322-12 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-12M \(230V\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-12M \(230V\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-12M \(230V\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-12M \(230V\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-12M \(24V\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-12M \(24V\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-12M \(24V\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-12M \(24V\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-12M TS \(24V\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-12M TS \(24V\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(100-240VAC/60-250VDC\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(100-240VAC/60-250VDC\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(100-240VAC/60-250VDC\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(100-240VAC/60-250VDC\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(24V\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(24V\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(24V\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(24V\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(2x 100-240VAC/60-250VDC\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(2x 100-240VAC/60-250VDC\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(2x 100-240VAC/60-250VDC\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(2x 100-240VAC/60-250VDC\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(2x 24V\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(2x 24V\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(2x 24V\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M EEC \(2x 24V\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M PoE \(230V\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M PoE \(230V\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M PoE \(230V\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M PoE \(230V\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M PoE \(24V\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M PoE \(24V\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M PoE \(24V\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M PoE \(24V\, ports on rear\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M PoE TS \(24V\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR324-4M PoE TS \(24V\, ports on front\) | 𝑥 < * | ADP |
| Siemens | SCALANCE XR326-8 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR326-8 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR326-8 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR326-8 EEC | 𝑥 < * | ADP |
| Siemens | SCALANCE XR502-32 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR502-32 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR502-32 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR522-12 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR522-12 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR522-12 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR524-8WG | 𝑥 < * | ADP |
| Siemens | SCALANCE XR524-8WG | 𝑥 < * | ADP |
| Siemens | SCALANCE XR524-8WG | 𝑥 < * | ADP |
| Siemens | SCALANCE XR524-8WG | 𝑥 < * | ADP |
| Siemens | SCALANCE XR526-8 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR526-8 | 𝑥 < * | ADP |
| Siemens | SCALANCE XR526-8 | 𝑥 < * | ADP |
| Siemens | Shopfloor IT Suite | 𝑥 < * | ADP |
| Siemens | SIDIS Prime | V4.0.700 ≤ 𝑥 < * | ADP |
| Siemens | Siemens OPC UA Modelling Editor \(SiOME\) | 𝑥 < * | ADP |
| Siemens | SIMATIC Comfort/Mobile RT | 𝑥 < * | ADP |
| Siemens | SIMATIC eaSie Core Package | 𝑥 < * | ADP |
| Siemens | SIMATIC eaSie PCS 7 Skill Package | 𝑥 < * | ADP |
| Siemens | SIMATIC HMI Basic Panels | 𝑥 < V17.9 | ADP |
| Siemens | SIMATIC HMI Comfort Panels | 𝑥 < V17.9 | ADP |
| Siemens | SIMATIC HMI Mobile Panels | 𝑥 < V17 Update 9 | ADP |
| Siemens | SIMATIC IOT2050 | 𝑥 < * | ADP |
| Siemens | SIMATIC IPC BX-21A | 𝑥 < * | ADP |
| Siemens | SIMATIC IPC MD-57A | 𝑥 < * | ADP |
| Siemens | SIMATIC IPC ORCLA | 𝑥 < * | ADP |
| Siemens | SIMATIC MV530 H | 𝑥 < * | ADP |
| Siemens | SIMATIC MV530 S | 𝑥 < * | ADP |
| Siemens | SIMATIC MV540 H | 𝑥 < * | ADP |
| Siemens | SIMATIC MV540 H CRANES | 𝑥 < * | ADP |
| Siemens | SIMATIC MV540 S | 𝑥 < * | ADP |
| Siemens | SIMATIC MV550 H | 𝑥 < * | ADP |
| Siemens | SIMATIC MV550 S | 𝑥 < * | ADP |
| Siemens | SIMATIC MV560 U | 𝑥 < * | ADP |
| Siemens | SIMATIC MV560 X | 𝑥 < * | ADP |
| Siemens | SIMATIC PDM V9.3 | 𝑥 < * | ADP |
| Siemens | SIMATIC RTLS Locating Manager | 𝑥 < * | ADP |
| Siemens | SIMATIC RTLS Locating Manager | 𝑥 < * | ADP |
| Siemens | SIMATIC RTLS Locating Manager | 𝑥 < * | ADP |
| Siemens | SIMATIC RTLS Locating Manager | 𝑥 < * | ADP |
| Siemens | SIMATIC RTLS Locating Manager | 𝑥 < * | ADP |
| Siemens | SIMATIC RTLS Locating Manager | 𝑥 < * | ADP |
| Siemens | SIMATIC RTLS Locating Manager | 𝑥 < * | ADP |
| Siemens | SIMATIC STEP 7 V5 | 𝑥 < V5.7 SP4 | ADP |
| Siemens | SIMATIC Target | 𝑥 < * | ADP |
| Siemens | SIMATIC WinCC OA V3.19 | 𝑥 < V3.19 P024 | ADP |
| Siemens | SIMATIC WinCC OA V3.20 | 𝑥 < V3.20 P012 | ADP |
| Siemens | SIMATIC WinCC OA V3.21 | 𝑥 < V3.21 P02 | ADP |
| Siemens | SIMATIC WinCC Runtime Advanced V17 | 𝑥 < V17 Update 9 | ADP |
| Siemens | SIMATIC WinCC Unified Sequence | 𝑥 < V21 | ADP |
| Siemens | SIMATIC WinCC V7.5 | 𝑥 < * | ADP |
| Siemens | SIMATIC WinCC V8.0 | 𝑥 < * | ADP |
| Siemens | SIMATIC WinCC V8.1 | 𝑥 < * | ADP |
| Siemens | SIMOTION OACAMGEN | 𝑥 < * | ADP |
| Siemens | SIMOVE Fleetmanager V3.1 | 𝑥 < * | ADP |
| Siemens | SIMOVE Fleetmanager V3.2 | 𝑥 < * | ADP |
| Siemens | SIMOVE Fleetmanager V3.3 | 𝑥 < * | ADP |
| Siemens | SINAMICS G200 | V6.3 ≤ 𝑥 < * | ADP |
| Siemens | SINAMICS G220 | V6.3 ≤ 𝑥 < * | ADP |
| Siemens | SINAMICS S200 | V6.3 ≤ 𝑥 < * | ADP |
| Siemens | SINAMICS S210 | V6.3 ≤ 𝑥 < * | ADP |
| Siemens | SINAMICS S220 | V6.3 ≤ 𝑥 < * | ADP |
| Siemens | SINEC INS | 𝑥 < V1.0 SP2 Update 5 | ADP |
| Siemens | SINEC NMS | 𝑥 < * | ADP |
| Siemens | SINEC Security Monitor | 𝑥 < * | ADP |
| Siemens | SINUMERIK Access MyMachine /OPC UA | 𝑥 < * | ADP |
| Siemens | SIPLANT | 𝑥 < * | ADP |
| Siemens | SIPLUS NET SCALANCE X202-2P IRT | 𝑥 < * | ADP |
| Siemens | SIPLUS NET SCALANCE X308-2 | 𝑥 < * | ADP |
| Siemens | SITRANS ASM IQ | 𝑥 < * | ADP |
| Siemens | SITRANS Soft Sensor Engine IQ \(SITRANS SSE IQ\) | 𝑥 < * | ADP |
| Siemens | User Management Component \(UMC\) | 𝑥 < V2.15.3.0 | ADP |
| Siemens | Visual Inspection Cockpit | 𝑥 < * | ADP |
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| edk2 |
| ||||||||||||||||||
| nodejs |
| ||||||||||||||||||
| openssl |
| ||||||||||||||||||
| openssl1.0 |
|
openSUSE / SLES Releases
openSUSE Product | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| libopenssl-3-devel |
| ||||||||||||
| libopenssl-3-fips-provider |
| ||||||||||||
| libopenssl-3-fips-provider-32bit |
| ||||||||||||
| libopenssl3 |
| ||||||||||||
| libopenssl3-32bit |
| ||||||||||||
| openssl-3 |
|
Red Hat Enterprise Linux Releases
Amazon Linux Releases
Amazon Package | |||
|---|---|---|---|
| openssl |
| ||
| openssl-debuginfo |
| ||
| openssl-debugsource |
| ||
| openssl-devel |
| ||
| openssl-fips-provider-latest |
| ||
| openssl-fips-provider-latest-debuginfo |
| ||
| openssl-libs |
| ||
| openssl-libs-debuginfo |
| ||
| openssl-perl |
| ||
| openssl-snapsafe-libs |
| ||
| openssl-snapsafe-libs-debuginfo |
|
Azure Linux Releases
Common Weakness Enumeration
- CWE-787 - Out-of-bounds WriteThe software writes data past the end, or before the beginning, of the intended buffer.
- CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')The program copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.
References