PT-2020-10128 · Siemens · Scalance X208Pro+46
Published
2020-04-14
·
Updated
2023-04-11
·
CVE-2019-19301
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
SCALANCE X200-4P IRT
SCALANCE X201-3P IRT
SCALANCE X201-3P IRT PRO
SCALANCE X202-2IRT
SCALANCE X202-2P IRT
SCALANCE X202-2P IRT PRO
SCALANCE X204-2
SCALANCE X204-2FM
SCALANCE X204-2LD
SCALANCE X204-2LD TS
SCALANCE X204-2TS
SCALANCE X204IRT
SCALANCE X204IRT PRO
SCALANCE X206-1
SCALANCE X206-1LD
SCALANCE X208
SCALANCE X208PRO
SCALANCE X212-2
SCALANCE X212-2LD
SCALANCE X216
SCALANCE X224
SCALANCE X302-7 EEC (230V, coated)
SCALANCE X302-7 EEC (230V)
SCALANCE X302-7 EEC (24V, coated)
SCALANCE X302-7 EEC (24V)
SCALANCE X302-7 EEC (2x 230V, coated)
SCALANCE X302-7 EEC (2x 230V)
SCALANCE X302-7 EEC (2x 24V, coated)
SCALANCE X302-7 EEC (2x 24V)
SCALANCE X304-2FE
SCALANCE X306-1LD FE
SCALANCE X307-2 EEC (230V, coated)
SCALANCE X307-2 EEC (230V)
SCALANCE X307-2 EEC (24V, coated)
SCALANCE X307-2 EEC (24V)
SCALANCE X307-2 EEC (2x 230V, coated)
SCALANCE X307-2 EEC (2x 230V)
SCALANCE X307-2 EEC (2x 24V, coated)
SCALANCE X307-2 EEC (2x 24V)
SCALANCE X307-3
SCALANCE X307-3LD
SCALANCE X308-2
SCALANCE X308-2LD
SCALANCE X308-2LH
SCALANCE X308-2LH+
SCALANCE X308-2M
SCALANCE X308-2M PoE
SCALANCE X308-2M TS
SCALANCE X310
SCALANCE X310FE
SCALANCE X320-1 FE
SCALANCE X320-1-2LD FE
SCALANCE X408-2
SCALANCE XF201-3P IRT
SCALANCE XF202-2P IRT
SCALANCE XF204
SCALANCE XF204-2
SCALANCE XF204-2BA IRT
SCALANCE XF204IRT
SCALANCE XF206-1
SCALANCE XF208
SCALANCE XR324-12M (230V, ports on front)
SCALANCE XR324-12M (230V, ports on rear)
SCALANCE XR324-12M (24V, ports on front)
SCALANCE XR324-12M (24V, ports on rear)
SCALANCE XR324-12M TS (24V)
SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front)
SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear)
SCALANCE XR324-4M EEC (24V, ports on front)
SCALANCE XR324-4M EEC (24V, ports on rear)
SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front)
SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear)
SCALANCE XR324-4M EEC (2x 24V, ports on front)
SCALANCE XR324-4M EEC (2x 24V, ports on rear)
SCALANCE XR324-4M PoE (230V, ports on front)
SCALANCE XR324-4M PoE (230V, ports on rear)
SCALANCE XR324-4M PoE (24V, ports on front)
SCALANCE XR324-4M PoE (24V, ports on rear)
SCALANCE XR324-4M PoE TS (24V, ports on front)
SIMATIC CP 343-1 Advanced
SIMATIC CP 442-1 RNA
SIMATIC CP 443-1
SIMATIC CP 443-1 Advanced
SIMATIC CP 443-1 RNA
SIMATIC RF180C
SIMATIC RF182C
SIPLUS NET CP 343-1 Advanced
SIPLUS NET CP 443-1
SIPLUS NET CP 443-1 Advanced
SIPLUS NET SCALANCE X308-2
Description
A vulnerability has been identified in the VxWorks-based Profinet TCP Stack, which can be forced to make very expensive calls for every incoming packet, leading to a denial of service.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Scalance X200-4P Irt
Scalance X201-3P Irt
Scalance X201-3P Irt Pro
Scalance X202-2P Irt
Scalance X204-2Fm
Scalance X204-2Ld
Scalance X204-2Ld Ts
Scalance X204-2Ts
Scalance X204Irt
Scalance X204Irt Pro
Scalance X206-1Ld
Scalance X208
Scalance X208Pro
Scalance X212-2Ld
Scalance X216
Scalance X224
Scalance X302-7 Eec
Scalance X304-2Fe
Scalance X306-1Ld Fe
Scalance X307-2 Eec
Scalance X307-3Ld
Scalance X308-2
Scalance X308-2M
Scalance X308-2M Poe
Scalance X310
Scalance X320-1 Fe
Scalance X320-1-2Ld Fe
Scalance X408-2
Scalance Xf204
Scalance Xf204-2
Scalance Xf204-2Ba Irt
Scalance Xf206-1
Scalance Xf208
Scalance Xr324-12M
Scalance Xr324-4M Eec
Scalance Xr324-4M Poe
Simatic Cp 343-1 Advanced
Simatic Cp 442-1 Rna
Simatic Cp 443-1
Simatic Cp 443-1 Advanced
Simatic Cp 443-1 Rna
Simatic Rf180C
Simatic Rf182C
Siplus Net Cp 343-1 Advanced
Siplus Net Cp 443-1
Siplus Net Cp 443-1 Advanced
Siplus Net Scalance X308-2