CVE-2023-28831
HIGHSIMATIC OPC UA - Unauthenticated Denial of Service via Integer Overflow in Certificate Validation
Title source: llmDescription
The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation. This could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate.
References (4)
Core 4
Core References
Mitigation, Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-118850.html
Mitigation, Vendor Advisory
https://cert-portal.siemens.com/productcert/html/ssa-711309.html
Mitigation, Vendor Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-118850.pdf
Vendor Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-711309.pdf
Scores
CVSS v3
7.5
EPSS
0.0064
EPSS Percentile
70.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-190
Status
published
Products (50)
siemens/simatic_cloud_connect_7_cc712_firmware
< 2.2
siemens/simatic_cloud_connect_7_cc716_firmware
< 2.2
siemens/simatic_drive_controller_cpu_1504d_tf_firmware
< 2.2
siemens/simatic_drive_controller_cpu_1507d_tf_firmware
< 2.9.7
siemens/simatic_et_200sp_open_controller_cpu_firmware
< 2.9.7
siemens/simatic_s7-1200_cpu_firmware
< 3.0.3
siemens/simatic_s7-1500_cpu_1510sp-1_pn_firmware
< 2.9.7
siemens/simatic_s7-1500_cpu_1510sp_f-1_pn_firmware
< 3.0.3
siemens/simatic_s7-1500_cpu_1511-1_pn_firmware
< 21.9.7
siemens/simatic_s7-1500_cpu_1511c-1_pn_firmware
< 30.0.0
... and 40 more
Published
Sep 12, 2023
Tracked Since
Feb 18, 2026