CVE-2023-48363
Description
A vulnerability has been identified in OpenPCS 7 V9.1 (All versions < V9.1 SP2 UC05), SIMATIC BATCH V9.1 (All versions < V9.1 SP2 UC05), SIMATIC PCS 7 V9.1 (All versions < V9.1 SP2 UC05), SIMATIC Route Control V9.1 (All versions < V9.1 SP2 UC05), SIMATIC WinCC Runtime Professional V18 (All versions < V18 Update 4), SIMATIC WinCC Runtime Professional V19 (All versions < V19 Update 2), SIMATIC WinCC V7.4 (All versions), SIMATIC WinCC V7.5 (All versions < V7.5 SP2 Update 15), SIMATIC WinCC V8.0 (All versions < V8.0 Update 4). The implementation of the RPC (Remote Procedure call) communication protocol in the affected products do not properly handle certain unorganized RPC messages. An attacker could use this vulnerability to cause a denial of service condition in the RPC server.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A denial-of-service vulnerability in the RPC protocol of multiple Siemens industrial products allows an attacker to crash the RPC server by sending malformed messages.
Vulnerability
The RPC (Remote Procedure Call) communication protocol implementation in multiple Siemens industrial products does not properly handle certain unorganized RPC messages. This vulnerability affects OpenPCS 7 V9.1 (all versions < V9.1 SP2 UC05), SIMATIC BATCH V9.1 (all versions < V9.1 SP2 UC05), SIMATIC PCS 7 V9.1 (all versions < V9.1 SP2 UC05), SIMATIC Route Control V9.1 (all versions < V9.1 SP2 UC05), SIMATIC WinCC Runtime Professional V18 (all versions < V18 Update 4), SIMATIC WinCC Runtime Professional V19 (all versions < V19 Update 2), SIMATIC WinCC V7.4 (all versions), SIMATIC WinCC V7.5 (all versions < V7.5 SP2 Update 15), and SIMATIC WinCC V8.0 (all versions < V8.0 Update 4). The flaw resides in the RPC server's message parsing logic, which fails to gracefully handle malformed or unorganized RPC messages [1].
Exploitation
An attacker can exploit this vulnerability by sending specially crafted, unorganized RPC messages to the affected RPC server over the network. No authentication or user interaction is required. The attacker only needs network access to the target system's RPC endpoint. The malformed messages trigger an error condition in the RPC server that leads to a denial of service [1].
Impact
Successful exploitation causes a denial of service condition in the RPC server, making it unavailable. This can disrupt communication between components in the affected industrial automation systems, potentially halting process control operations. The vulnerability does not lead to arbitrary code execution or information disclosure [1].
Mitigation
Siemens has released fixes for most affected products. For SIMATIC WinCC Runtime Professional V18, apply Update 4; for V19, apply Update 2. For SIMATIC WinCC V7.5, apply V7.5 SP2 Update 15; for V8.0, apply V8.0 Update 4. For OpenPCS 7 V9.1, SIMATIC BATCH V9.1, SIMATIC PCS 7 V9.1, and SIMATIC Route Control V9.1, apply V9.1 SP2 UC05. SIMATIC WinCC V7.4 remains affected with no fix available as of the latest advisory update. Users should apply the appropriate updates or contact Siemens support for mitigation guidance [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
12< V9.1 SP2 UC05+ 1 more
- (no CPE)range: < V9.1 SP2 UC05
- (no CPE)range: All versions < V9.1 SP2 UC05
< V9.1 SP2 UC05+ 1 more
- (no CPE)range: < V9.1 SP2 UC05
- (no CPE)range: All versions < V9.1 SP2 UC05
- Range: < V9.1 SP2 UC05
- Range: 0
- Range: All versions < V9.1 SP2 UC05
0+ 1 more
- (no CPE)range: 0
- (no CPE)range: 0
0+ 2 more
- (no CPE)range: 0
- (no CPE)range: 0
- (no CPE)range: 0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1News mentions
0No linked articles in our index yet.