PT-2022-27834 · Siemens · Scalance X204Rna Eec+1
Published
2022-12-13
·
Updated
2022-12-15
·
CVE-2022-46351
CVSS v3.1
5.5
Medium
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
SCALANCE X204RNA (HSR) versions prior to V3.2.7
SCALANCE X204RNA (PRP) versions prior to V3.2.7
SCALANCE X204RNA EEC (HSR) versions prior to V3.2.7
SCALANCE X204RNA EEC (PRP) versions prior to V3.2.7
SCALANCE X204RNA EEC (PRP/HSR) versions prior to V3.2.7
Description
A vulnerability has been identified that could cause a denial of service condition of affected products on a local Ethernet segment (Layer 2) when specially crafted PROFINET DCP packets are sent.
Recommendations
For SCALANCE X204RNA (HSR) versions prior to V3.2.7, update to version V3.2.7 or later.
For SCALANCE X204RNA (PRP) versions prior to V3.2.7, update to version V3.2.7 or later.
For SCALANCE X204RNA EEC (HSR) versions prior to V3.2.7, update to version V3.2.7 or later.
For SCALANCE X204RNA EEC (PRP) versions prior to V3.2.7, update to version V3.2.7 or later.
For SCALANCE X204RNA EEC (PRP/HSR) versions prior to V3.2.7, update to version V3.2.7 or later.
Fix
Resource Exhaustion
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Scalance X204Rna
Scalance X204Rna Eec