CVE-2019-10937

Name of the Vulnerable Software and Affected Versions SIMATIC TDC CP51M1 versions prior to V1.1.7

Description The issue is related to insufficient data validation when handling UDP traffic in the communication module of the Siemens SIMATIC TDC CP51M1. This can be exploited by a remote attacker to cause a Denial-of-Service condition by sending specially crafted UDP packets. The vulnerability affects the device's UDP communication and can be exploited without authentication, requiring no user interaction. Successful exploitation compromises the availability of the targeted system. There are no known public exploits of this issue at the time of reporting.

Recommendations For versions prior to V1.1.7, update to version V1.1.7 or later to resolve the issue.