CVE-2019-19279

Name of the Vulnerable Software and Affected Versions SIPROTEC 4 and SIPROTEC Compact relays equipped with EN100 Ethernet communication modules (All versions)

Description The issue is related to insufficient input validation, which can be exploited by sending specially crafted packets to the port 50000/UDP endpoint. This can cause a Denial-of-Service, requiring a manual reboot to recover the device's service. At the time of reporting, there were no known public exploits of this security issue.

Recommendations For SIPROTEC 4 and SIPROTEC Compact relays equipped with EN100 Ethernet communication modules, restrict access to the port 50000/UDP endpoint to minimize the risk of exploitation. As a temporary workaround, consider implementing network traffic filtering to block specially crafted packets sent to this endpoint until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.