CVE-2024-23814

MEDIUM6.9Denial of service

Description

The integrated ICMP service of the network stack of affected devices can be forced to exhaust its available memory resources when receiving specially crafted messages targeting IP fragment re-assembly. This could allow an unauthenticated remote attacker to cause a temporary denial of service condition of the ICMP service, other communication services are not affected. Affected devices will resume normal operation after the attack terminates.

CVSS breakdown

CVSS 4.0

Attack Vector

Network

Attack Complexity

Low

Attack Requirements

None

Privileges Required

None

User Interaction

None

Confidentiality (Vulnerable System)

None

Integrity (Vulnerable System)

None

Availability (Vulnerable System)

Low

Confidentiality (Subsequent System)

None

Integrity (Subsequent System)

None

Availability (Subsequent System)

None

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

Low

Physical

Changed

Affected products

Siemens / SIDOOR ATD430W0 – *
Siemens / SIDOOR ATE530G COATED0 – *
Siemens / SIDOOR ATE530S COATED0 – *
Siemens / SIMATIC CFU DIQ0 – V2.0.0
Siemens / SIMATIC CFU PA0 – V2.0.0
Siemens / SIMATIC CFU PA0 – V2.0
Siemens / SIMATIC ET 200AL IM 157-1 PN0 – *
Siemens / SIMATIC ET 200M IM 153-4 PN IO HF0 – *
Siemens / SIMATIC ET 200M IM 153-4 PN IO ST0 – *
Siemens / SIMATIC ET 200MP IM 155-5 PN BA0 – *
Siemens / SIMATIC ET 200MP IM 155-5 PN HF0 – *
Siemens / SIMATIC ET 200MP IM 155-5 PN ST0 – *
Siemens / SIMATIC ET 200pro IM 154-3 PN HF0 – *
Siemens / SIMATIC ET 200pro IM 154-4 PN HF0 – *
Siemens / SIMATIC ET 200pro IM 154-8F PN/DP CPU0 – *
Siemens / SIMATIC ET 200pro IM 154-8FX PN/DP CPU0 – *
Siemens / SIMATIC ET 200pro IM 154-8 PN/DP CPU0 – *
Siemens / SIMATIC ET 200S IM 151-3 PN FO0 – *
Siemens / SIMATIC ET 200S IM 151-3 PN HF0 – *
Siemens / SIMATIC ET 200S IM 151-3 PN HS0 – *
Siemens / SIMATIC ET 200S IM 151-3 PN ST0 – *
Siemens / SIMATIC ET 200S IM 151-8F PN/DP CPU0 – *
Siemens / SIMATIC ET 200S IM 151-8 PN/DP CPU0 – *
Siemens / SIMATIC ET 200SP CPU 1510SP-1 PN0 – *
Siemens / SIMATIC ET 200SP CPU 1510SP F-1 PN0 – *
Siemens / SIMATIC ET 200SP CPU 1512SP-1 PN0 – *
Siemens / SIMATIC ET 200SP CPU 1512SP F-1 PN0 – *
Siemens / SIMATIC ET 200SP IM 155-6 MF HF0 – *
Siemens / SIMATIC ET 200SP IM 155-6 PN/2 HF0 – *
Siemens / SIMATIC ET 200SP IM 155-6 PN/3 HF0 – *
Siemens / SIMATIC ET 200SP IM 155-6 PN BA0 – *
Siemens / SIMATIC ET 200SP IM 155-6 PN HA (incl. SIPLUS variants)0 – V1.3
Siemens / SIMATIC ET 200SP IM 155-6 PN HF0 – *
Siemens / SIMATIC ET 200SP IM 155-6 PN HS0 – *
Siemens / SIMATIC ET 200SP IM 155-6 PN ST0 – *
Siemens / SIMATIC ET 200SP IM 155-6 PN ST BA0 – *
Siemens / SIMATIC PN/PN Coupler0 – V6.0.0
Siemens / SIMATIC Power Line Booster PLB, Base Module0 – *
Siemens / SIMATIC Power Line Booster PLB, Modem Module ST0 – *
Siemens / SIMATIC S7-1200 CPU 1211C AC/DC/Rly0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1211C DC/DC/DC0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1211C DC/DC/Rly0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1212C AC/DC/Rly0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1212C DC/DC/DC0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1212C DC/DC/Rly0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1212FC DC/DC/DC0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1212FC DC/DC/Rly0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1214C AC/DC/Rly0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1214C DC/DC/DC0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1214C DC/DC/Rly0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1214FC DC/DC/DC0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1214FC DC/DC/Rly0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1215C AC/DC/Rly0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1215C DC/DC/DC0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1215C DC/DC/Rly0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1215FC DC/DC/DC0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1215FC DC/DC/Rly0 – V4.4
Siemens / SIMATIC S7-1200 CPU 1217C DC/DC/DC0 – V4.4
Siemens / SIMATIC S7-1500 CPU 1511-1 PN0 – *
Siemens / SIMATIC S7-1500 CPU 1511F-1 PN0 – *
Siemens / SIMATIC S7-1500 CPU 1513-1 PN0 – *
Siemens / SIMATIC S7-1500 CPU 1513F-1 PN0 – *
Siemens / SIMATIC S7-1500 CPU 1515-2 PN0 – *
Siemens / SIMATIC S7-1500 CPU 1515F-2 PN0 – *
Siemens / SIMATIC S7-1500 CPU 1516-3 PN/DP0 – *
Siemens / SIMATIC S7-1500 CPU 1516F-3 PN/DP0 – *
Siemens / SIMATIC S7-300 CPU 314C-2 PN/DP0 – *
Siemens / SIMATIC S7-300 CPU 315-2 PN/DP0 – *
Siemens / SIMATIC S7-300 CPU 315F-2 PN/DP0 – *
Siemens / SIMATIC S7-300 CPU 315T-3 PN/DP0 – *
Siemens / SIMATIC S7-300 CPU 317-2 PN/DP0 – *
Siemens / SIMATIC S7-300 CPU 317F-2 PN/DP0 – *
Siemens / SIMATIC S7-300 CPU 317T-3 PN/DP0 – *
Siemens / SIMATIC S7-300 CPU 317TF-3 PN/DP0 – *
Siemens / SIMATIC S7-300 CPU 319-3 PN/DP0 – *
Siemens / SIMATIC S7-300 CPU 319F-3 PN/DP0 – *
Siemens / SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)0 – *
Siemens / SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)0 – *
Siemens / SIMATIC S7-410 V10 CPU family (incl. SIPLUS variants)0 – V10.2
Siemens / SIMATIC S7-410 V8 CPU family (incl. SIPLUS variants)0 – V8.3
Siemens / SIMATIC TDC CP51M10 – *
Siemens / SIMATIC TDC CPU5550 – *
Siemens / SIMOCODE pro V Ethernet/IP (incl. SIPLUS variants)0 – *
Siemens / SIMOCODE pro V PROFINET0 – *
Siemens / SINUMERIK 840D sl0 – *
Siemens / SIPLUS ET 200M IM 153-4 PN IO HF0 – *
Siemens / SIPLUS ET 200M IM 153-4 PN IO ST0 – *
Siemens / SIPLUS ET 200MP IM 155-5 PN HF0 – *
Siemens / SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL0 – *
Siemens / SIPLUS ET 200MP IM 155-5 PN ST0 – *
Siemens / SIPLUS ET 200MP IM 155-5 PN ST TX RAIL0 – *
Siemens / SIPLUS ET 200S IM151-3 PN HF0 – *
Siemens / SIPLUS ET 200S IM151-3 PN ST0 – *
Siemens / SIPLUS ET 200S IM 151-8F PN/DP CPU0 – *
Siemens / SIPLUS ET 200S IM 151-8 PN/DP CPU0 – *
Siemens / SIPLUS ET 200SP CPU 1512SP F-1 PN0 – *
Siemens / SIPLUS ET 200SP IM 155-6 PN HF0 – *
Siemens / SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL0 – *
Siemens / SIPLUS ET 200SP IM 155-6 PN HF TX RAIL0 – *
Siemens / SIPLUS ET 200SP IM 155-6 PN ST0 – *
Siemens / SIPLUS ET 200SP IM 155-6 PN ST BA0 – *
Siemens / SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL0 – *
Siemens / SIPLUS ET 200SP IM 155-6 PN ST TX RAIL0 – *
Siemens / SIPLUS HCS4200 CIM42100 – *
Siemens / SIPLUS HCS4200 CIM4210C0 – *
Siemens / SIPLUS HCS4300 CIM43100 – *
Siemens / SIPLUS NET PN/PN Coupler0 – V6.0.0
Siemens / SIPLUS S7-1200 CPU 1212 AC/DC/RLY0 – V4.4
Siemens / SIPLUS S7-1200 CPU 1212C DC/DC/DC0 – V4.4
Siemens / SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL0 – V4.4
Siemens / SIPLUS S7-1200 CPU 1212 DC/DC/RLY0 – V4.4
Siemens / SIPLUS S7-1200 CPU 1214 AC/DC/RLY0 – V4.4
Siemens / SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL0 – V4.4
Siemens / SIPLUS S7-1200 CPU 1214 DC/DC/DC0 – V4.4
Siemens / SIPLUS S7-1200 CPU 1214 DC/DC/RLY0 – V4.4
Siemens / SIPLUS S7-1200 CPU 1214FC DC/DC/DC0 – V4.4
Siemens / SIPLUS S7-1200 CPU 1214FC DC/DC/RLY0 – V4.4
Siemens / SIPLUS S7-1200 CPU 1215 AC/DC/RLY0 – V4.4
Siemens / SIPLUS S7-1200 CPU 1215C DC/DC/DC0 – V4.4
Siemens / SIPLUS S7-1200 CPU 1215 DC/DC/DC0 – V4.4
Siemens / SIPLUS S7-1200 CPU 1215 DC/DC/RLY0 – V4.4
Siemens / SIPLUS S7-1200 CPU 1215FC DC/DC/DC0 – V4.4
Siemens / SIPLUS S7-1500 CPU 1511-1 PN0 – *
Siemens / SIPLUS S7-1500 CPU 1511F-1 PN0 – *
Siemens / SIPLUS S7-1500 CPU 1513-1 PN0 – *
Siemens / SIPLUS S7-1500 CPU 1513F-1 PN0 – *
Siemens / SIPLUS S7-1500 CPU 1516-3 PN/DP0 – *
Siemens / SIPLUS S7-1500 CPU 1516F-3 PN/DP0 – *
Siemens / SIPLUS S7-300 CPU 314C-2 PN/DP0 – *
Siemens / SIPLUS S7-300 CPU 315-2 PN/DP0 – *
Siemens / SIPLUS S7-300 CPU 315F-2 PN/DP0 – *
Siemens / SIPLUS S7-300 CPU 317-2 PN/DP0 – *
Siemens / SIPLUS S7-300 CPU 317F-2 PN/DP0 – *
Siemens / SIWAREX WP2310 – *
Siemens / SIWAREX WP2410 – *
Siemens / SIWAREX WP2510 – *
Siemens / SIWAREX WP521 ST0 – *
Siemens / SIWAREX WP522 ST0 – *

CVE-2024-23814

Description

CVSS breakdown

Affected products

References