VYPR
← All advisories
Unrated severityNVD Advisory· Published Feb 11, 2020· Updated Aug 5, 2024

CVE-2019-13946

CVE-2019-13946

Description

Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lead to a denial of service condition due to lack of memory for devices that include a vulnerable version of the stack.

The security vulnerability could be exploited by an attacker with network access to an affected device. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise the availability of the device.

Affected products

169
  • Siemens/Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controllerv5
    Range: 0
  • Siemens/Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200v5
    Range: All Versions < V4.5
  • Siemens/Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200Pv5
    Range: All Versions < V4.6
  • Siemens/PROFINET Driver for Controllerv5
    Range: All Versions < V2.1
  • Siemens/RUGGEDCOM RM1224 familyv5
    Range: All versions < V4.3
  • Siemens Foundation/SCALANCE M804PBcpe-rescue
    Range: All versions < V4.3
  • Siemens/SCALANCE M812-1 ADSL-Routerv5
    Range: All versions < V4.3
  • Siemens/SCALANCE M816-1 ADSL-Routerv5
    Range: All versions < V4.3
  • Siemens/SCALANCE M826-2 SHDSL-Routerv5
    Range: All versions < V4.3
  • Siemens/SCALANCE M874-2v5
    Range: All versions < V4.3
  • Siemens/SCALANCE M874-3v5
    Range: All versions < V4.3
  • Siemens/SCALANCE M876-3v5
    Range: All versions < V4.3
  • Siemens/SCALANCE M876-3 (ROK)v5
    Range: All versions < V4.3
  • Siemens/SCALANCE M876-4 (EU)v5
    Range: All versions < V4.3
  • Siemens/SCALANCE M876-4 (NAM)v5
    Range: All versions < V4.3
  • Siemens Foundation/SCALANCE S615 LAN-Routercpe-rescue
    Range: All versions < V4.3
  • Siemens Foundation/Scalance W700 Ieee 802.11n Firmwarecpe-rescue
    Range: All versions <= V6.0.1
  • Siemens Foundation/Scalance X200 4p Irtcpe-rescue
    Range: All Versions < V5.3
  • Siemens Foundation/Scalance X201 3p Irtcpe-rescue3 versions
    All Versions < V5.3+ 2 more
    • (no CPE)range: All Versions < V5.3
    • (no CPE)range: All Versions < V5.3
    • (no CPE)range: All Versions < V5.3
  • Siemens Foundation/Scalance X202 2irtcpe-rescue
    Range: All Versions < V5.3
  • Siemens Foundation/Scalance X202 2p Irtcpe-rescue3 versions
    All Versions < V5.3+ 2 more
    • (no CPE)range: All Versions < V5.3
    • (no CPE)range: All Versions < V5.3
    • (no CPE)range: All Versions < V5.3
  • Siemens Foundation/Scalance X204irtcpe-rescue9 versions
    All versions < V5.2.5+ 8 more
    • (no CPE)range: All versions < V5.2.5
    • (no CPE)range: All versions < V5.2.5
    • (no CPE)range: All versions < V5.2.5
    • (no CPE)range: All versions < V5.2.5
    • (no CPE)range: All Versions < V5.3
    • (no CPE)range: All Versions < V5.3
    • (no CPE)range: All versions < V5.2.5
    • (no CPE)range: All versions < V5.2.5
    • (no CPE)range: All versions < V5.2.5
  • Siemens/SCALANCE X204-2LD TSv5
    Range: All versions < V5.2.5
  • Siemens/SCALANCE X206-1LDv5
    Range: All versions < V5.2.5
  • Siemens/SCALANCE X208PROv5
    Range: All versions < V5.2.5
  • Siemens Foundation/Scalance X 200cpe-rescue4 versions
    All versions < V5.2.5+ 3 more
    • (no CPE)range: All versions < V5.2.5
    • (no CPE)range: All Versions < V3.0
    • (no CPE)range: All Versions < V3.0
    • (no CPE)range: All Versions < V3.0
  • Siemens/SCALANCE X212-2LDv5
    Range: All versions < V5.2.5
  • Siemens Foundation/SCALANCE XCM324cpe-rescue
    Range: All versions < V5.2.5
  • Siemens/SCALANCE X302-7 EEC (230V)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X302-7 EEC (230V, coated)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X302-7 EEC (24V)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X302-7 EEC (24V, coated)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X302-7 EEC (2x 230V)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X302-7 EEC (2x 230V, coated)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X302-7 EEC (2x 24V)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X302-7 EEC (2x 24V, coated)v5
    Range: All versions < V4.1.4
  • Siemens Foundation/Scalance X308 2mcpe-rescue11 versions
    All versions < V4.1.4+ 10 more
    • (no CPE)range: All versions < V4.1.4
    • (no CPE)range: All versions < V4.1.4
    • (no CPE)range: All versions < V4.1.4
    • (no CPE)range: All versions < V4.1.4
    • (no CPE)range: All versions < V4.1.4
    • (no CPE)range: All versions < V4.1.4
    • (no CPE)range: All versions < V4.1.4
    • (no CPE)range: All versions < V4.1.4
    • (no CPE)range: All versions < V4.1.4
    • (no CPE)range: All versions < V4.1.4
    • (no CPE)range: All versions < V4.1.4
  • Siemens/SCALANCE X306-1LD FEv5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X307-2 EEC (230V)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X307-2 EEC (230V, coated)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X307-2 EEC (24V)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X307-2 EEC (24V, coated)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X307-2 EEC (2x 230V)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X307-2 EEC (2x 230V, coated)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X307-2 EEC (2x 24V)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X307-2 EEC (2x 24V, coated)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X307-3LDv5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X310FEv5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X320-1-2LD FEv5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE X320-1 FEv5
    Range: All versions < V4.1.4
  • Siemens Foundation/Scalance Xf 200cpe-rescue
    Range: All Versions < V3.0
  • Siemens Foundation/Scalance Xf204irtcpe-rescue5 versions
    All versions < V5.2.5+ 4 more
    • (no CPE)range: All versions < V5.2.5
    • (no CPE)range: All versions < V5.2.5
    • (no CPE)range: All Versions < V5.3
    • (no CPE)range: All versions < V5.2.5
    • (no CPE)range: All versions < V5.2.5
  • Siemens Foundation/Scalance Xf204 2ba Irt Firmwarecpe-rescue
    Range: All Versions < V5.3
  • Siemens/SCALANCE XM-400 familyv5
    Range: All Versions < V6.0
  • Siemens Foundation/Scalance Xr 300cpe-rescue
    Range: All Versions < V3.0
  • Siemens/SCALANCE XR324-12M (230V, ports on front)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-12M (230V, ports on rear)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-12M (24V, ports on front)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-12M (24V, ports on rear)v5
    Range: All versions < V4.1.4
  • Siemens Foundation/Scalance Xr324 12m Ts Firmwarecpe-rescue
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-4M EEC (24V, ports on front)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-4M EEC (24V, ports on rear)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-4M EEC (2x 24V, ports on front)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-4M EEC (2x 24V, ports on rear)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-4M PoE (230V, ports on front)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-4M PoE (230V, ports on rear)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-4M PoE (24V, ports on front)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-4M PoE (24V, ports on rear)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR324-4M PoE TS (24V, ports on front)v5
    Range: All versions < V4.1.4
  • Siemens/SCALANCE XR-500 familyv5
    Range: All Versions < V6.0
  • Siemens/SIMATIC CP 1616 and CP 1604v5
    Range: All Versions < V2.8
  • Siemens Foundation/Simatic Cp 343 1 Firmwarecpe-rescue
    Range: All versions
  • Siemens Foundation/Simatic Cp 343 1 Adv Firmwarecpe-rescue
    Range: All versions
  • Siemens/SIMATIC CP 343-1 ERPCv5
    Range: All versions
  • Siemens Foundation/Simatic Cp 343 1 Lean Firmwarecpe-rescue
    Range: All versions
  • Siemens Foundation/Simatic Cp 443 1 Firmwarecpe-rescue
    Range: 0
  • Siemens Foundation/Simatic Cp 443 1 Adv Firmwarecpe-rescue
    Range: 0
  • Siemens Foundation/Simatic Cp 443 1 Opc Ua Firmwarecpe-rescue
    Range: All versions
  • Siemens Foundation/SIMATIC ET 200AL IM 157-1 PNcpe-rescue9 versions
    All versions+ 8 more
    • (no CPE)range: All versions
    • (no CPE)range: 0
    • (no CPE)range: 0
    • (no CPE)range: 0
    • (no CPE)range: All versions
    • (no CPE)range: 0
    • (no CPE)range: 0
    • (no CPE)range: 0
    • (no CPE)range: 0
  • Siemens/SIMATIC ET200ecoPN, 16DI, DC24V, 8xM12v5
    Range: All versions
  • Siemens/SIMATIC ET200ecoPN, 16DO DC24V/1,3A, 8xM12v5
    Range: All versions
  • Siemens/SIMATIC ET200ecoPN, 4AO U/I 4xM12v5
    Range: All versions
  • Siemens/SIMATIC ET200ecoPN, 8AI; 4 U/I; 4 RTD/TC 8xM12v5
    Range: All versions
  • Siemens/SIMATIC ET200ecoPN, 8AI RTD/TC 8xM12v5
    Range: All versions
  • Siemens/SIMATIC ET200ecoPN, 8DI, DC24V, 4xM12v5
    Range: All versions
  • Siemens/SIMATIC ET200ecoPN, 8DI, DC24V, 8xM12v5
    Range: All versions
  • Siemens/SIMATIC ET200ecoPN, 8 DIO, DC24V/1,3A, 8xM12v5
    Range: All versions
  • Siemens/SIMATIC ET200ecoPN, 8DO, DC24V/0,5A, 4xM12v5
    Range: All versions
  • Siemens/SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 4xM12v5
    Range: All versions
  • Siemens/SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 8xM12v5
    Range: All versions
  • Siemens/SIMATIC ET200ecoPN, 8 DO, DC24V/2A, 8xM12v5
    Range: All versions
  • Siemens/SIMATIC ET200ecoPN: IO-Link Masterv5
    Range: All versions
  • Siemens/SIMATIC ET 200M IM 153-4 PN IO HF (incl. SIPLUS variants)v5
    Range: All versions
  • Siemens/SIMATIC ET 200M IM 153-4 PN IO ST (incl. SIPLUS variants)v5
    Range: All versions
  • Siemens/SIMATIC ET200S (incl. SIPLUS variants)v5
    Range: All versions
  • Siemens/SIMATIC IPC Support, Package for VxWorksv5
    Range: 0
  • Siemens/SIMATIC MV420 SR-Bv5
    Range: 0
  • Siemens/SIMATIC MV420 SR-B Bodyv5
    Range: 0
  • Siemens/SIMATIC MV420 SR-Pv5
    Range: 0
  • Siemens/SIMATIC MV420 SR-P Bodyv5
    Range: 0
  • Siemens/SIMATIC MV440 HRv5
    Range: 0
  • Siemens/SIMATIC MV440 SRv5
    Range: 0
  • Siemens/SIMATIC MV440 URv5
    Range: 0
  • Siemens/SIMATIC PN/PN Coupler (incl. SIPLUS NET variants)v5
    Range: All Versions
  • Siemens/SIMATIC RF180Cv5
    Range: All versions
  • Siemens/SIMATIC RF182Cv5
    Range: All versions
  • Siemens/SIMATIC RF600R familyv5
    Range: All versions < V3
  • Siemens Foundation/Simotion Scoutcpe-rescue3 versions
    All versions < V4.5+ 2 more
    • (no CPE)range: All versions < V4.5
    • (no CPE)range: All versions < V4.5
    • (no CPE)range: All versions < V4.5
  • Siemens Foundation/Sinamics Dcp Firmwarecpe-rescue
    Range: All Versions < V1.3
  • Siemens/SIPLUS ET 200MP IM 155-5 PN HFv5
    Range: 0
  • Siemens/SIPLUS ET 200MP IM 155-5 PN HF T1 RAILv5
    Range: 0
  • Siemens/SIPLUS ET 200MP IM 155-5 PN STv5
    Range: 0
  • Siemens/SIPLUS ET 200MP IM 155-5 PN ST TX RAILv5
    Range: 0
  • Siemens/SIPLUS ET 200SP IM 155-6 PN HFv5
    Range: 0
  • Siemens/SIPLUS ET 200SP IM 155-6 PN HF T1 RAILv5
    Range: 0
  • Siemens/SIPLUS ET 200SP IM 155-6 PN STv5
    Range: 0
  • Siemens/SIPLUS ET 200SP IM 155-6 PN ST BAv5
    Range: 0
  • Siemens/SIPLUS ET 200SP IM 155-6 PN ST BA TX RAILv5
    Range: 0
  • Siemens Foundation/SIPLUS ET 200SP CP 1542SP-1 IRC TX RAILcpe-rescue
    Range: 0
  • Siemens/SIPLUS NET CP 343-1v5
    Range: All versions
  • Siemens/SIPLUS NET CP 343-1 Advancedv5
    Range: All versions
  • Siemens/SIPLUS NET CP 343-1 Leanv5
    Range: All versions
  • Siemens/SIPLUS NET CP 443-1v5
    Range: 0
  • Siemens/SIPLUS NET CP 443-1 Advancedv5
    Range: 0
  • Siemens/SIPLUS NET SCALANCE X308-2v5
    Range: All versions < V4.1.4
  • Siemens/SOFTNET-IE PNIOv5
    Range: All versions

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

2

News mentions

0

No linked articles in our index yet.