CVE-2019-13946

{"id": "CVE-2019-13946", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "productcert@siemens.com", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}, {"type": "Secondary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2020-02-11T16:15:15.023", "references": [{"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-780073.pdf", "tags": ["Vendor Advisory"], "source": "productcert@siemens.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "productcert@siemens.com", "description": [{"lang": "en", "value": "CWE-400"}]}, {"type": "Secondary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-400"}]}], "descriptions": [{"lang": "en", "value": "Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit\ninternal resource allocation when multiple legitimate diagnostic package\nrequests are sent to the DCE-RPC interface.\nThis could lead to a denial of service condition due to lack of memory\nfor devices that include a vulnerable version of the stack.\n\nThe security vulnerability could be exploited by an attacker with network\naccess to an affected device. Successful exploitation requires no system\nprivileges and no user interaction. An attacker could use the vulnerability\nto compromise the availability of the device."}, {"lang": "es", "value": "Las versiones de la pila Profinet-IO (PNIO) anteriores a la V06.00 no limitan adecuadamente la asignaci\u00f3n de recursos internos cuando se env\u00edan m\u00faltiples solicitudes leg\u00edtimas de paquetes de diagn\u00f3stico a la interfaz DCE-RPC. Esto podr\u00eda conducir a una condici\u00f3n de denegaci\u00f3n de servicio debido a la falta de memoria para los dispositivos que incluyen una versi\u00f3n vulnerable de la pila. La vulnerabilidad de seguridad podr\u00eda ser explotada por un atacante con acceso de red a un dispositivo afectado. La explotaci\u00f3n exitosa no requiere privilegios del sistema ni interacci\u00f3n del usuario. Un atacante podr\u00eda utilizar la vulnerabilidad para comprometer la disponibilidad del dispositivo"}], "lastModified": "2023-04-11T10:15:08.540", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:siemens:dk_standard_ethernet_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "61011393-B517-4D6C-A048-296DD1102481"}, {"criteria": "cpe:2.3:a:siemens:profinet_driver:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7652A071-795B-43AF-9AAE-D2CD5A402E16", "versionEndExcluding": "2.1"}, {"criteria": "cpe:2.3:a:siemens:simatic_ipc_support:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "23138553-6BE3-49C4-A620-00A005334DBB"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:ek-ertec_200_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "73529415-179F-414B-8CC5-31D3DA8A7EC0", "versionEndExcluding": "4.5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:ek-ertec_200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B47CF3BB-08E4-4B86-B793-8253C172D846"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:ek-ertec_200p_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2773F4B7-095E-4A33-93F2-765FA58B828C", "versionEndExcluding": "4.6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:ek-ertec_200p:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FB75CD44-5223-40A7-A835-111BF3C25D23"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:ruggedcom_rm1224_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9CAC6A5-9968-4A29-800C-6FCD75E07E44", "versionEndExcluding": "4.3"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:ruggedcom_rm1224:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "284DF779-D900-48B4-A177-7281CD445AB5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_m-800_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DE353DA7-61C5-45B0-B84D-87C960F5C223", "versionEndExcluding": "4.3"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_m-800:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DFB9921A-5204-40A3-88AB-B7755F5C6875"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_s615_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2474D551-2605-46AA-9E53-8DD4B059E08C", "versionEndExcluding": "4.3"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_s615:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E917CBBB-EF41-4113-B0CA-EB91889235E7"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_w700_ieee_802.11n_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9FBC29FB-270F-4F7D-9528-402EF92908FE", "versionEndIncluding": "6.0.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_w700_ieee_802.11n:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "880644DA-9280-4498-AD72-5CBD59CC8142"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xc-200_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C08F92C8-0A5D-470E-8CFC-F622C3014336"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xc-200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7719E194-EE3D-4CE8-8C85-CF0D82A553AA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xf-200_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "96432C6B-6A9E-406F-9A64-9448CB786352"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xf-200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BB503096-C528-478C-BD07-019C2CC882E4"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xp-200_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3491A486-47F3-4B30-B613-DCC412F6EF5B"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xp-200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8F962FC7-0616-467F-8CCA-ADEA224B5F7B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xb-200_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E673B450-C436-49F3-B2F3-872B704FE075"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xb-200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6CB3CC2D-CBF0-4F53-A412-01BBC39E34C2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_x-200irt_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "40F9AA24-B159-423F-80A0-F13D87D9C152", "versionEndExcluding": "5.3"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_x-200irt:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "94C7BE35-D3A6-488C-BB3D-D17D65DF4B80"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xr-300wg_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C5CA2E13-EDD4-4B8C-AA8F-6359FFF66606", "versionEndExcluding": "3.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xr-300wg:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "434BC9BE-C5DB-4DAF-8E07-DFE4EEA0D7FE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_x-300_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3F2C50BB-CC63-40BE-A5F0-0F0C342586CA"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_x-300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B2D0AB50-6F0B-4232-8C8E-1647410D362D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xb-200_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AEB10860-FB18-4E97-B0F7-9D499DDB92C3", "versionEndExcluding": "3.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xb-200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6CB3CC2D-CBF0-4F53-A412-01BBC39E34C2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xc-200_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D552797-8CD7-46CA-BB36-123CCFF38A2A", "versionEndExcluding": "3.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xc-200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7719E194-EE3D-4CE8-8C85-CF0D82A553AA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xp-200_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "79964DA8-C4E9-4E90-8D47-FE77F56E7D67", "versionEndExcluding": "3.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xp-200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8F962FC7-0616-467F-8CCA-ADEA224B5F7B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xf-200ba_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "07322DA6-C3BA-4042-B5FB-9BF966AB3113", "versionEndExcluding": "3.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xf-200ba:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "58377C58-F660-4C17-A3CB-BFC2F28848CD"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xr-300wg_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C5CA2E13-EDD4-4B8C-AA8F-6359FFF66606", "versionEndExcluding": "3.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xr-300wg:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "434BC9BE-C5DB-4DAF-8E07-DFE4EEA0D7FE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_x-400_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A511E865-88A1-4B1E-909E-291350B41F56", "versionEndExcluding": "6.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_x-400:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D9434103-A85B-45F1-B63B-8C596BF0DE18"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xm-400_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5CAA4114-E06D-4723-A04D-A5316ED1500D", "versionEndExcluding": "6.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xm-400:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "798E900F-5EF9-4B39-B8C2-79FAE659E7F5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xr524_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9524094D-9BF7-4A86-A939-0A8367C8B36E", "versionEndExcluding": "6.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xr524:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7DEEA300-16C3-4FEE-88A8-674DE2AEEC95"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xr526_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "48AAD4D9-25C3-42B1-A36F-CA22A7FCE8F7", "versionEndExcluding": "6.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xr526:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "756A07F8-4F9F-4A76-942E-82CB92216943"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xr528_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5EDC2D0B-1986-491D-9864-69C2B9EF51C1", "versionEndExcluding": "6.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xr528:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FDE5E54D-FFED-4C2C-B89D-E085E61D44E4"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:scalance_xr552_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D3897836-E47F-4606-BE7A-CEB96CC24DE5", "versionEndExcluding": "6.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:scalance_xr552:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AB16A0BE-5AF3-4168-B755-D023E497A35F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_cp_1616_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F08A1742-47FA-45D2-A62F-0ED5A0285486", "versionEndExcluding": "2.8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_cp_1616:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CA074FBE-1C3E-4441-8C51-52B555B85D9F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_cp_1604_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D4CB1C18-DF85-4072-8435-52AB9DD9E02E", "versionEndExcluding": "2.8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_cp_1604:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6304FA24-F194-4EE2-95F5-35D086F82C01"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_cp_343-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "611E1F0F-D55F-4F40-87A0-4783876182B0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_cp_343-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C100D7C1-EAD2-455D-8A72-5BBBD85F2F77"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_cp_343-1_advanced_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "794168D5-B763-42D4-9D31-55D284BFECE2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_cp_343-1_advanced:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CD85C545-5D9A-4A96-AFC3-5D6D645E0D5F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_cp_343-1_erpc_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "368AFAB1-3B35-41E1-9EF6-F3826181A074"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_cp_343-1_erpc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7F46730D-FD5A-42EC-8796-0702E8922E85"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_cp_343-1_lean_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E3B76697-8D6F-4CBC-9333-561613CA0492"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_cp_343-1_lean:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EE2A18E2-F88F-4DC1-81E9-AC836C85A248"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_cp_443-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "88638890-5ABE-4824-A41F-FCF30532A538"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_cp_443-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F58423D0-954E-426E-9F8F-3DD95FBDF50C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_cp_443-1_advanced_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5B01B39C-0039-4126-95F2-6F691C5158A0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_cp_443-1_advanced:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E478FE71-32D1-4FE4-8AC9-1C898EFFD0B3"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_cp_443-1_opc_ua_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "892B0B41-2C67-4BE5-BF99-3E4840078A21"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_cp_443-1_opc_ua:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5A952EB9-11C3-4E99-895D-B101F16008BA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_et200al_im_157-1_pn_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B2CA8228-974B-4356-966E-763C30C1A916"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_et200al_im_157-1_pn:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A25EC630-914B-4906-8840-8B1ACBE81FEF"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_et200m_im153-4_pn_io_hf_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "41E8BE6F-FF36-4C40-BC88-7224B0C77427"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_et200m_im153-4_pn_io_hf:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EC1E527C-2622-43F2-8CC0-AB52EE383A2F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_et200m_im153-4_pn_io_st_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "34F22E8D-4CB0-4685-92C0-23DD29709BDA"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_et200m_im153-4_pn_io_st:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D6670FFC-EF9F-429C-AECC-0677C7DAE38E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_et200mp_im155-5_pn_hf_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4EAF506A-0F5E-414F-B6D8-50BC14C8C8CB", "versionEndExcluding": "4.2.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_et200mp_im155-5_pn_hf:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0B26FB23-4646-4786-82B1-C24CBF9AE517"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_et200mp_im155-5_pn_st_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2F463025-2099-4A6C-8014-F5AAABC7D4F5", "versionEndExcluding": "4.1.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_et200mp_im155-5_pn_st:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7404251E-37B7-4C70-A1E1-FB030E925487"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_et200s_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "09F91703-C8EE-45B1-B94F-6688D6CB4F8A"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_et200s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C50FF52E-3FF7-4398-9D65-9AFC9E3D30C8"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_et200sp_im155-6_pn_basic_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F10D55AD-37E2-49BB-8FD6-F02776507442"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_et200sp_im155-6_pn_basic:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C4858340-5A05-4958-995E-4A5AF98B4848"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_et200sp_im155-6_pn_hf_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B9B94AF1-3621-4980-89D3-390377D1DD12", "versionEndExcluding": "3.3.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_et200sp_im155-6_pn_hf:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AE9CBE59-18F4-40E9-A8DF-4873F8796FDA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_et200sp_im155-6_pn_st_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A33CF191-ED02-4F5E-854A-EB650612D215", "versionEndExcluding": "4.1.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_et200sp_im155-6_pn_st:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F896FE89-0BCD-41F4-8F3A-4D1D09FB638C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_et200ecopn_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CEC2C970-9EE1-4B16-B8B1-EAAEFC1450EB"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_et200ecopn:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5906B9AC-B5FF-493F-9956-DE2CE7570FD7"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_et200pro_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E0C7AB4-03DB-4E6E-86C6-E7E85D83B6B4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_et200pro:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CC28C9DA-C4EA-48F6-8E6D-5375BCB1D732"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:im_154-3_pn_hf_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "316A89B6-17ED-4551-9BC7-13EAAD190CA4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:im_154-3_pn_hf:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C530439C-3FC8-4F2A-BFAF-F36733E4074B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:im_154-4_pn_hf_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "05C95643-56B5-4A1C-8D92-A01B34E47DB0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:im_154-4_pn_hf:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1CB88AEB-5EAD-4B59-AD8A-4BFCEB09CE26"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_mv440_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0B53B628-F96C-40B1-A952-659406759472"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_mv440:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6408042E-7E06-4AED-9853-29B176EDFE9F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_mv420_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C802EF05-03DD-4BE0-ACDA-8BDA11EA6D25"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_mv420:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "79B15C1B-2510-434B-A589-5903CA0C00EE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_pn\\/pn_coupler_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "94587A2A-019D-4DA1-B655-35B45356F189"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_pn\\/pn_coupler:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "49FB85F8-7D45-433E-805B-360725F2980C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_rf180c_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "167F39FD-FFB5-4C82-BE39-0787ED369546"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_rf180c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "62129B85-7C98-4951-8194-2E602A8DCDBD"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_rf182c_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0FC4F972-3A3B-421C-8D62-9C5C4D1992CF"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_rf182c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7540DAD9-2AAC-46A9-B1C5-BB1AC4FCE710"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_rf600_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "774297C3-0A57-4902-AA98-A22ED6F4735C", "versionEndExcluding": "3.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_rf600:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A5708C3C-833E-4239-B249-CEC031F8CCC5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:sinamics_dcp_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "83803F1C-4842-43BB-B903-C2E91FF7DC08", "versionEndExcluding": "1.3"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:sinamics_dcp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B75F50CA-7371-4BC7-8D8A-13F8BC69E4EB"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "productcert@siemens.com"}