CVE-2019-6571

A vulnerability has been identified in SIEMENS LOGO!8 (6ED1052-xyyxx-0BA8 FS:01 to FS:06 / Firmware version V1.80.xx and V1.81.xx), SIEMENS LOGO!8 (6ED1052-xyy08-0BA0 FS:01 / Firmware version < V1.82.02). An attacker with network access to port 10005/tcp of the LOGO! device could cause a Denial-of-Service condition by sending specially crafted packets. The security vulnerability could be exploited by an unauthenticated attacker with network access to the affected service. No user interaction is required to exploit this security vulnerability. Successful exploitation of the security vulnerability compromises availability of the targeted system. At the time of advisory publication no public exploitation of this security vulnerability was known.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:siemens:logo\!8_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:logo\!8:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:siemens:logo\!8_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:logo\!8:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:46

Type Values Removed Values Added
References () https://cert-portal.siemens.com/productcert/pdf/ssa-774850.pdf - Patch, Vendor Advisory () https://cert-portal.siemens.com/productcert/pdf/ssa-774850.pdf - Patch, Vendor Advisory

Information

Published : 2019-06-12 14:29

Updated : 2024-11-21 04:46


NVD link : CVE-2019-6571

Mitre link : CVE-2019-6571

CVE.ORG link : CVE-2019-6571


JSON object : View

Products Affected

siemens

  • logo\!8
  • logo\!8_firmware
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer