CVE-2023-46280

MEDIUM

SIMATIC - Multiple Vulns

Title source: llm

Description

A vulnerability has been identified in Security Configuration Tool (SCT) (All versions), SIMATIC Automation Tool (All versions < V5.0 SP2), SIMATIC BATCH V9.1 (All versions < V9.1 SP2 Upd5), SIMATIC NET PC Software V16 (All versions < V16 Update 8), SIMATIC NET PC Software V17 (All versions), SIMATIC NET PC Software V18 (All versions < V18 SP1), SIMATIC NET PC Software V19 (All versions < V19 Update 2), SIMATIC PCS 7 V9.1 (All versions < V9.1 SP2 UC05), SIMATIC PDM V9.2 (All versions < V9.2 SP2 Upd3), SIMATIC Route Control V9.1 (All versions < V9.1 SP2 Upd3), SIMATIC S7-PCT (All versions < V3.5 SP3 Update 6), SIMATIC STEP 7 V5 (All versions < V5.7 SP3), SIMATIC WinCC OA V3.17 (All versions), SIMATIC WinCC OA V3.18 (All versions < V3.18 P025), SIMATIC WinCC OA V3.19 (All versions < V3.19 P010), SIMATIC WinCC Runtime Advanced (All versions < V17 Update 8), SIMATIC WinCC Runtime Professional V16 (All versions < V16 Update 6), SIMATIC WinCC Runtime Professional V17 (All versions < V17 Update 8), SIMATIC WinCC Runtime Professional V18 (All versions < V18 Update 4), SIMATIC WinCC Runtime Professional V19 (All versions < V19 Update 2), SIMATIC WinCC V7.4 (All versions), SIMATIC WinCC V7.5 (All versions < V7.5 SP2 Update 17), SIMATIC WinCC V8.0 (All versions < V8.0 Update 5), SINAMICS Startdrive (All versions < V19 SP1), SINEC NMS (All versions < V3.0), SINEC NMS (All versions < V3.0 SP1), SINUMERIK ONE virtual (All versions < V6.23), SINUMERIK PLC Programming Tool (All versions < V3.3.12), TIA Portal Cloud Connector (All versions < V2.0), Totally Integrated Automation Portal (TIA Portal) V15.1 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions < V17 Update 8), Totally Integrated Automation Portal (TIA Portal) V18 (All versions < V18 Update 4), Totally Integrated Automation Portal (TIA Portal) V19 (All versions < V19 Update 2). The affected applications contain an out of bounds read vulnerability. This could allow an attacker to cause a Blue Screen of Death (BSOD) crash of the underlying Windows kernel.

References (3)

Core 3

Core References

Vendor Advisory

https://cert-portal.siemens.com/productcert/html/ssa-962515.html

Vendor Advisory

https://cert-portal.siemens.com/productcert/html/ssa-331112.html

Vendor Advisory

https://cert-portal.siemens.com/productcert/html/ssa-784301.html

Scores

CVSS v3 6.5

EPSS 0.0005

EPSS Percentile 14.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-125

Status published

Products (34)

Siemens/Security Configuration Tool (SCT)

Siemens/SIMATIC Automation Tool < V5.0 SP2

Siemens/SIMATIC BATCH V9.1 < V9.1 SP2 Upd5

Siemens/SIMATIC NET PC Software V16 < V16 Update 8

Siemens/SIMATIC NET PC Software V17

Siemens/SIMATIC NET PC Software V18 < V18 SP1

Siemens/SIMATIC NET PC Software V19 < V19 Update 2

Siemens/SIMATIC PCS 7 V9.1 < V9.1 SP2 UC05

Siemens/SIMATIC PDM V9.2 < V9.2 SP2 Upd3

Siemens/SIMATIC Route Control V9.1 < V9.1 SP2 Upd3

... and 24 more

Published May 14, 2024

Tracked Since Feb 18, 2026