CVE-2019-13942
Description
A vulnerability has been identified in EN100 Ethernet module DNP3 variant (All versions), EN100 Ethernet module IEC 61850 variant (All versions < V4.37), EN100 Ethernet module IEC104 variant (All versions), EN100 Ethernet module Modbus TCP variant (All versions), EN100 Ethernet module PROFINET IO variant (All versions). An unauthorized user could exploit a buffer overflow vulnerability in the webserver. Specially crafted packets sent could cause a Denial-of-Service condition and if certain conditions are met, the affected devices must be restarted manually to fully recover. At the time of advisory publication no public exploitation of this security vulnerability was known.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A buffer overflow in the webserver of Siemens EN100 Ethernet modules allows remote unauthenticated attackers to cause a denial-of-service condition requiring manual restart.
Vulnerability
A buffer overflow vulnerability exists in the webserver of Siemens EN100 Ethernet modules. The affected products include the EN100 Ethernet module for IEC 61850 (versions prior to V4.37), as well as all versions of the EN100 modules for PROFINET IO, Modbus TCP, DNP3, and IEC104. An attacker can trigger the overflow by sending specially crafted packets to the webserver, leading to a denial-of-service condition [1].
Exploitation
An unauthenticated attacker with network access to the affected device can exploit this vulnerability remotely. No authentication or user interaction is required. The attacker sends specially crafted packets to the webserver, causing a buffer overflow. If certain conditions are met, the device must be manually restarted to fully recover [1].
Impact
Successful exploitation results in a denial-of-service condition, rendering the device unresponsive. The CVSS v3 base score is 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H), indicating high availability impact with no confidentiality or integrity impact. At the time of advisory publication, no public exploitation was known [1].
Mitigation
For the EN100 Ethernet module for IEC 61850, updating to version V4.37 or later mitigates the vulnerability. For all other affected variants (PROFINET IO, Modbus TCP, DNP3, IEC104), no fix is currently available; users should contact Siemens for guidance. As a general security measure, restrict network access to the device and monitor for unusual traffic [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
9- Range: < V4.37
- Siemens AG/EN100 Ethernet module DNP3 variantv5Range: All versions
- Siemens AG/EN100 Ethernet module IEC104 variantv5Range: All versions
- Siemens AG/EN100 Ethernet module IEC 61850 variantv5Range: All versions < V4.37
- Siemens AG/EN100 Ethernet module Modbus TCP variantv5Range: All versions
- Siemens AG/EN100 Ethernet module PROFINET IO variantv5Range: All versions
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- cert-portal.siemens.com/productcert/pdf/ssa-418979.pdfmitrex_refsource_MISC
- www.us-cert.gov/ics/advisories/icsa-19-344-07mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.