CVE-2022-25622

Description

The PROFINET (PNIO) stack, when integrated with the Interniche IP stack, improperly handles internal resources for TCP segments where the minimum TCP-Header length is less than defined. This could allow an attacker to create a denial of service condition for TCP services on affected devices by sending specially crafted TCP segments.

CVSS breakdown

Affected products

• Siemens / SIMATIC CFU DIQ0 – V2.0.0
• Siemens / SIMATIC CFU PA0 – V2.0.0
• Siemens / SIMATIC ET 200AL IM 157-1 PNAll versions – All versions
• Siemens / SIMATIC ET200ecoPN, AI 8xRTD/TC, M12-LV5.1.1 – V5.1.2
• Siemens / SIMATIC ET200ecoPN, CM 4x IO-Link, M12-LV5.1.1 – V5.1.2
• Siemens / SIMATIC ET200ecoPN, CM 8x IO-Link, M12-LV5.1.1 – V5.1.2
• Siemens / SIMATIC ET200ecoPN, DI 16x24VDC, M12-LV5.1.1 – V5.1.2
• Siemens / SIMATIC ET200ecoPN, DI 8x24VDC, M12-LV5.1.1 – V5.1.2
• Siemens / SIMATIC ET200ecoPN, DIQ 16x24VDC/2A, M12-LV5.1.1 – V5.1.3
• Siemens / SIMATIC ET200ecoPN, DQ 8x24VDC/0,5A, M12-LV5.1.1 – V5.1.2
• Siemens / SIMATIC ET200ecoPN, DQ 8x24VDC/2A, M12-LV5.1.1 – V5.1.2
• Siemens / SIMATIC ET 200MP IM 155-5 PN HFV4.2.0 – *
• Siemens / SIMATIC ET 200pro IM 154-8F PN/DP CPUAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIMATIC ET 200pro IM 154-8FX PN/DP CPUAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIMATIC ET 200pro IM 154-8 PN/DP CPUAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIMATIC ET 200S IM 151-8F PN/DP CPUAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIMATIC ET 200S IM 151-8 PN/DP CPUAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIMATIC ET 200SP IM 155-6 MF HF0 – *
• Siemens / SIMATIC ET 200SP IM 155-6 PN/2 HFV4.2.0 – *
• Siemens / SIMATIC ET 200SP IM 155-6 PN/3 HFV4.2.0 – *
• Siemens / SIMATIC ET 200SP IM 155-6 PN HA (incl. SIPLUS variants)All versions – All versions
• Siemens / SIMATIC ET 200SP IM 155-6 PN HFV4.2.0 – *
• Siemens / SIMATIC PN/MF CouplerAll versions – All versions
• Siemens / SIMATIC PN/PN CouplerAll versions >= 4.2 – All versions >= 4.2
• Siemens / SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)All versions < V2.0.0 – All versions < V2.0.0
• Siemens / SIMATIC S7-300 CPU 314C-2 PN/DPAll versions < V3.3.19 – All versions < V3.3.19
• Siemens / SIMATIC S7-300 CPU 315-2 PN/DPAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIMATIC S7-300 CPU 315F-2 PN/DPAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIMATIC S7-300 CPU 315T-3 PN/DPAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIMATIC S7-300 CPU 317-2 PN/DPAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIMATIC S7-300 CPU 317F-2 PN/DPAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIMATIC S7-300 CPU 317T-3 PN/DPAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIMATIC S7-300 CPU 317TF-3 PN/DPAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIMATIC S7-300 CPU 319-3 PN/DPAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIMATIC S7-300 CPU 319F-3 PN/DPAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIMATIC S7-400 CPU 412-2 PN V70 – *
• Siemens / SIMATIC S7-400 CPU 414-3 PN/DP V70 – *
• Siemens / SIMATIC S7-400 CPU 414F-3 PN/DP V70 – *
• Siemens / SIMATIC S7-400 CPU 416-3 PN/DP V70 – *
• Siemens / SIMATIC S7-400 CPU 416F-3 PN/DP V70 – *
• Siemens / SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)0 – V6.0.10
• Siemens / SIMATIC S7-410 V10 CPU family (incl. SIPLUS variants)All versions < V10.1.1 – All versions < V10.1.1
• Siemens / SIMATIC S7-410 V8 CPU family (incl. SIPLUS variants)0 – V8.2.3
• Siemens / SIMATIC TDC CP51M10 – V1.1.10
• Siemens / SIMATIC TDC CPU5550 – V1.2.1
• Siemens / SIMATIC WinAC RTX 2010All versions – All versions
• Siemens / SIMATIC WinAC RTX F 2010All versions – All versions
• Siemens / SINAMICS DCM0 – V1.5 SP1
• Siemens / SINAMICS G110M0 – V4.7.14
• Siemens / SINAMICS G115D0 – V4.7.14
• Siemens / SINAMICS G120 (incl. SIPLUS variants)0 – V4.7 SP14
• Siemens / SINAMICS G1300 – V5.2.3.13
• Siemens / SINAMICS G1500 – V5.2.3.13
• Siemens / SINAMICS S1100 – *
• Siemens / SINAMICS S120 (incl. SIPLUS variants)0 – V5.2 SP3 HF13
• Siemens / SINAMICS S1500 – V5.2.3.13
• Siemens / SINAMICS S210 (6SL5...)0 – V5.2 SP3 HF18
• Siemens / SINAMICS V900 – V1.04.04
• Siemens / SIPLUS ET 200MP IM 155-5 PN HFV4.2.0 – *
• Siemens / SIPLUS ET 200MP IM 155-5 PN HF T1 RAILV4.2.0 – *
• Siemens / SIPLUS ET 200S IM 151-8F PN/DP CPUAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIPLUS ET 200S IM 151-8 PN/DP CPUAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIPLUS ET 200SP IM 155-6 PN HFV4.2.0 – *
• Siemens / SIPLUS ET 200SP IM 155-6 PN HF T1 RAILV4.2.0 – *
• Siemens / SIPLUS ET 200SP IM 155-6 PN HF TX RAILV4.2.0 – *
• Siemens / SIPLUS HCS4200 CIM4210All versions – All versions
• Siemens / SIPLUS HCS4200 CIM4210CAll versions – All versions
• Siemens / SIPLUS HCS4300 CIM4310All versions – All versions
• Siemens / SIPLUS NET PN/PN CouplerAll versions >= 4.2 – All versions >= 4.2
• Siemens / SIPLUS S7-300 CPU 314C-2 PN/DPAll versions < V3.3.19 – All versions < V3.3.19
• Siemens / SIPLUS S7-300 CPU 315-2 PN/DPAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIPLUS S7-300 CPU 315F-2 PN/DPAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIPLUS S7-300 CPU 317-2 PN/DPAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIPLUS S7-300 CPU 317F-2 PN/DPAll versions < V3.2.19 – All versions < V3.2.19
• Siemens / SIPLUS S7-400 CPU 414-3 PN/DP V70 – *
• Siemens / SIPLUS S7-400 CPU 416-3 PN/DP V70 – *

References

• MISChttps://cert-portal.siemens.com/productcert/pdf/ssa-446448.pdf
• MISChttps://cert-portal.siemens.com/productcert/html/ssa-446448.html