Unrated severityNVD Advisory· Published Jul 12, 2022· Updated Aug 3, 2024

CVE-2022-29884

Description

A vulnerability has been identified in CP-8000 MASTER MODULE WITH I/O -25/+70°C (All versions < CPC80 V16.30), CP-8000 MASTER MODULE WITH I/O -40/+70°C (All versions < CPC80 V16.30), CP-8021 MASTER MODULE (All versions < CPC80 V16.30), CP-8022 MASTER MODULE WITH GPRS (All versions < CPC80 V16.30). When using the HTTPS server under specific conditions, affected devices do not properly free resources. This could allow an unauthenticated remote attacker to put the device into a denial of service condition.

Affected products

Siemens Foundation/CP-8000 MASTER MODULE WITH I/O -25/+70°Ccpe-rescue2 versions
All versions < CPC80 V16.30+ 1 more
- (no CPE)range: All versions < CPC80 V16.30
- (no CPE)range: All versions < CPC80 V16.30
Siemens Foundation/CP-8031 MASTER MODULEcpe-rescue
Range: All versions < CPC80 V16.30
Siemens/CP-8022 MASTER MODULE WITH GPRSv5
Range: All versions < CPC80 V16.30

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

cert-portal.siemens.com/productcert/pdf/ssa-491621.pdfmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000