A vulnerability has been identified in SICAM PAS/PQS (All versions < V7.0), SICAM PAS/PQS (All versions >= 7.0 < V8.06). Affected software does not properly validate the input for a certain parameter in the s7ontcp.dll. This could allow an unauthenticated remote attacker to send messages and create a denial of service condition as the application crashes. At the time of assigning the CVE, the affected firmware version of the component has already been superseded by succeeding mainline versions.
References
Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-849072.pdf | Patch Vendor Advisory |
Configurations
History
17 Oct 2023, 19:05
Type | Values Removed | Values Added |
---|---|---|
First Time |
Siemens sicam Pas\/pqs
Siemens |
|
CPE | cpe:2.3:a:siemens:sicam_pas\/pqs:*:*:*:*:*:*:*:* |
13 Oct 2023, 16:45
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:siemens:sicam_pas:*:*:*:*:*:*:*:* |
15 Dec 2022, 20:03
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:siemens:sicam_pqs:*:*:*:*:*:*:*:* cpe:2.3:a:siemens:sicam_pas:*:*:*:*:*:*:*:* |
|
References | (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-849072.pdf - Patch, Vendor Advisory | |
CWE | CWE-20 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.5 |
First Time |
Siemens
Siemens sicam Pqs Siemens sicam Pas |
13 Dec 2022, 17:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-12-13 16:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-43723
Mitre link : CVE-2022-43723
CVE.ORG link : CVE-2022-43723
JSON object : View
Products Affected
siemens
- sicam_pas\/pqs