CVE-2019-19279

A vulnerability has been identified in SIPROTEC 4 and SIPROTEC Compact relays equipped with EN100 Ethernet communication modules (All versions). Specially crafted packets sent to port 50000/UDP of the EN100 Ethernet communication modules could cause a Denial-of-Service of the affected device. A manual reboot is required to recover the service of the device. At the time of advisory publication no public exploitation of this security vulnerability was known to Siemens.

CVSS v3 7.5 HIGH
CVSS v2.0 7.8 HIGH

7.5^/10

CVSS v3 : HIGH

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

7.8^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-974843.pdf	Vendor Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-974843.pdf	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:siemens:siprotec_4::::::::
	cpe:2.3:a:siemens:siprotec_compact::::::::

History

21 Nov 2024, 04:34

Type	Values Removed	Values Added
References	~~() https://cert-portal.siemens.com/productcert/pdf/ssa-974843.pdf - Vendor Advisory~~	() https://cert-portal.siemens.com/productcert/pdf/ssa-974843.pdf - Vendor Advisory

Information

Published : 2020-03-10 20:15

Updated : 2024-11-21 04:34

NVD link : CVE-2019-19279

Mitre link : CVE-2019-19279

CVE.ORG link : CVE-2019-19279

JSON object : View

Products Affected

siemens

siprotec_compact
siprotec_4

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2019-19279", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2020-03-10T20:15:18.807", "references": [{"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-974843.pdf", "tags": ["Vendor Advisory"], "source": "productcert@siemens.com"}, {"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-974843.pdf", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "productcert@siemens.com", "description": [{"lang": "en", "value": "CWE-20"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in SIPROTEC 4 and SIPROTEC Compact relays equipped with EN100 Ethernet communication modules (All versions). Specially crafted packets sent to port 50000/UDP of the EN100 Ethernet communication modules could cause a Denial-of-Service of the affected device. A manual reboot is required to recover the service of the device. At the time of advisory publication no public exploitation of this security vulnerability was known to Siemens."}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad en los rel\u00e9s SIPROTEC 4 y SIPROTEC Compact equipados con m\u00f3dulos de comunicaci\u00f3n EN100 Ethernet (todas las versiones). Paquetes especialmente dise\u00f1ados enviados hacia el puerto 50000/UDP de los m\u00f3dulos de comunicaci\u00f3n Ethernet EN100 podr\u00edan causar una Denegaci\u00f3n de Servicio del dispositivo afectado. Es requerido un reinicio manual para recuperar el servicio del dispositivo. Al momento de la publicaci\u00f3n del aviso, no se conoc\u00eda por Siemens una explotaci\u00f3n p\u00fablica de esta vulnerabilidad de seguridad."}], "lastModified": "2024-11-21T04:34:29.223", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:siemens:siprotec_4:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "50A4AC48-7BF4-40F9-9D86-328F94A85683"}, {"criteria": "cpe:2.3:a:siemens:siprotec_compact:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E6CB31CA-11BC-4185-8BCF-964E30EFE10F"}], "operator": "OR"}]}], "sourceIdentifier": "productcert@siemens.com"}