CVE-2022-38371

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-38371
A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versions < V3.5.7), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.21), APOGEE PXC Modular (BACnet) (All versions < V3.5.7), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.21), Desigo PXC00-E.D (All versions >= V2.3), Desigo PXC00-U (All versions >= V2.3), Desigo PXC001-E.D (All versions >= V2.3), Desigo PXC100-E.D (All versions >= V2.3), Desigo PXC12-E.D (All versions >= V2.3), Desigo PXC128-U (All versions >= V2.3), Desigo PXC200-E.D (All versions >= V2.3), Desigo PXC22-E.D (All versions >= V2.3), Desigo PXC22.1-E.D (All versions >= V2.3), Desigo PXC36.1-E.D (All versions >= V2.3), Desigo PXC50-E.D (All versions >= V2.3), Desigo PXC64-U (All versions >= V2.3), Desigo PXM20-E (All versions >= V2.3), Nucleus NET for Nucleus PLUS V1 (All versions < V5.2a), Nucleus NET for Nucleus PLUS V2 (All versions < V5.4), Nucleus ReadyStart V3 V2012 (All versions < V2012.08.1), Nucleus ReadyStart V3 V2017 (All versions < V2017.02.4), Nucleus Source Code (All versions including affected FTP server), TALON TC Compact (BACnet) (All versions < V3.5.7), TALON TC Modular (BACnet) (All versions < V3.5.7). The FTP server does not properly release memory resources that were reserved for incomplete connection attempts by FTP clients. This could allow a remote attacker to generate a denial of service condition on devices that incorporate a vulnerable version of the FTP server.

7.5 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://cert-portal.siemens.com/productcert/html/ssa-313313.html
https://cert-portal.siemens.com/productcert/html/ssa-935500.html
https://cert-portal.siemens.com/productcert/pdf/ssa-313313.pdf Patch Vendor Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-935500.pdf Patch Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:siemens:nucleus_net:*:*:*:*:*:*:*:*
cpe:2.3:a:siemens:nucleus_readystart_v3:*:*:*:*:*:*:*:*
cpe:2.3:a:siemens:nucleus_source_code:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:h:siemens:apogee_modular_building_controller:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:apogee_modular_building_controller_firmware:*:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:h:siemens:apogee_modular_equiment_controller:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:apogee_modular_equiment_controller_firmware:*:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:siemens:apogee_pxc_compact_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:apogee_pxc_compact:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:siemens:apogee_pxc_modular_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:siemens:apogee_pxc_modular:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:h:siemens:desigo_pxc00-e.d:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:desigo_pxc00-e.d_firmware:*:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:h:siemens:desigo_pxc00-u:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:desigo_pxc00-u_firmware:*:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:h:siemens:desigo_pxc001-e.d:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:desigo_pxc001-e.d_firmware:*:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:h:siemens:desigo_pxc12-e.d:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:desigo_pxc12-e.d_firmware:*:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:h:siemens:desigo_pxc22-e.d:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:desigo_pxc22-e.d_firmware:*:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:h:siemens:desigo_pxc22.1-e.d:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:desigo_pxc22.1-e.d_firmware:*:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:h:siemens:desigo_pxc36.1-e.d:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:desigo_pxc36.1-e.d_firmware:*:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:h:siemens:desigo_pxc50-e.d:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:desigo_pxc50-e.d_firmware:*:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:h:siemens:desigo_pxc64-u:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:desigo_pxc64-u_firmware:*:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:h:siemens:desigo_pxc100-e.d:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:desigo_pxc100-e.d_firmware:*:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:h:siemens:desigo_pxc128-u:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:desigo_pxc128-u_firmware:*:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:h:siemens:desigo_pxc200-e.d:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:desigo_pxc200-e.d_firmware:*:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:h:siemens:desigo_pxm20-e:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:desigo_pxm20-e_firmware:*:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:h:siemens:talon_tc_compact:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:talon_tc_compact_firmware:*:*:*:*:*:*:*:*
History

14 May 2024, 16:15

Type Values Removed Values Added
Summary (en) A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versions), APOGEE PXC Compact (P2 Ethernet) (All versions), APOGEE PXC Modular (BACnet) (All versions), APOGEE PXC Modular (P2 Ethernet) (All versions), Desigo PXC00-E.D (All versions >= V2.3), Desigo PXC00-U (All versions >= V2.3), Desigo PXC001-E.D (All versions >= V2.3), Desigo PXC100-E.D (All versions >= V2.3), Desigo PXC12-E.D (All versions >= V2.3), Desigo PXC128-U (All versions >= V2.3), Desigo PXC200-E.D (All versions >= V2.3), Desigo PXC22-E.D (All versions >= V2.3), Desigo PXC22.1-E.D (All versions >= V2.3), Desigo PXC36.1-E.D (All versions >= V2.3), Desigo PXC50-E.D (All versions >= V2.3), Desigo PXC64-U (All versions >= V2.3), Desigo PXM20-E (All versions >= V2.3), Nucleus NET for Nucleus PLUS V1 (All versions < V5.2a), Nucleus NET for Nucleus PLUS V2 (All versions < V5.4), Nucleus ReadyStart V3 V2012 (All versions < V2012.08.1), Nucleus ReadyStart V3 V2017 (All versions < V2017.02.4), Nucleus Source Code (Versions including affected FTP server), TALON TC Compact (BACnet) (All versions), TALON TC Modular (BACnet) (All versions). The FTP server does not properly release memory resources that were reserved for incomplete connection attempts by FTP clients. This could allow a remote attacker to generate a denial of service condition on devices that incorporate a vulnerable version of the FTP server. (en) A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BACnet) (All versions < V3.5.7), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.21), APOGEE PXC Modular (BACnet) (All versions < V3.5.7), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.21), Desigo PXC00-E.D (All versions >= V2.3), Desigo PXC00-U (All versions >= V2.3), Desigo PXC001-E.D (All versions >= V2.3), Desigo PXC100-E.D (All versions >= V2.3), Desigo PXC12-E.D (All versions >= V2.3), Desigo PXC128-U (All versions >= V2.3), Desigo PXC200-E.D (All versions >= V2.3), Desigo PXC22-E.D (All versions >= V2.3), Desigo PXC22.1-E.D (All versions >= V2.3), Desigo PXC36.1-E.D (All versions >= V2.3), Desigo PXC50-E.D (All versions >= V2.3), Desigo PXC64-U (All versions >= V2.3), Desigo PXM20-E (All versions >= V2.3), Nucleus NET for Nucleus PLUS V1 (All versions < V5.2a), Nucleus NET for Nucleus PLUS V2 (All versions < V5.4), Nucleus ReadyStart V3 V2012 (All versions < V2012.08.1), Nucleus ReadyStart V3 V2017 (All versions < V2017.02.4), Nucleus Source Code (All versions including affected FTP server), TALON TC Compact (BACnet) (All versions < V3.5.7), TALON TC Modular (BACnet) (All versions < V3.5.7). The FTP server does not properly release memory resources that were reserved for incomplete connection attempts by FTP clients. This could allow a remote attacker to generate a denial of service condition on devices that incorporate a vulnerable version of the FTP server.
References
  • () https://cert-portal.siemens.com/productcert/html/ssa-313313.html -
  • () https://cert-portal.siemens.com/productcert/html/ssa-935500.html -
Information

Published : 2022-10-11 11:15

Updated : 2024-05-14 16:15

NVD link : CVE-2022-38371

Mitre link : CVE-2022-38371

CVE.ORG link : CVE-2022-38371

JSON object : View

Products Affected

siemens

  • apogee_modular_building_controller_firmware
  • apogee_pxc_compact_firmware
  • apogee_modular_equiment_controller_firmware
  • desigo_pxc36.1-e.d
  • nucleus_source_code
  • apogee_modular_building_controller
  • desigo_pxc22.1-e.d
  • nucleus_net
  • desigo_pxc36.1-e.d_firmware
  • desigo_pxc100-e.d_firmware
  • desigo_pxc128-u_firmware
  • desigo_pxc200-e.d_firmware
  • desigo_pxc00-u_firmware
  • desigo_pxc200-e.d
  • desigo_pxc12-e.d
  • desigo_pxc64-u_firmware
  • apogee_pxc_compact
  • desigo_pxc100-e.d
  • apogee_modular_equiment_controller
  • desigo_pxc50-e.d_firmware
  • desigo_pxm20-e
  • desigo_pxc22-e.d
  • desigo_pxc50-e.d
  • desigo_pxc22-e.d_firmware
  • desigo_pxc12-e.d_firmware
  • desigo_pxc001-e.d
  • talon_tc_compact
  • desigo_pxc001-e.d_firmware
  • apogee_pxc_modular
  • desigo_pxm20-e_firmware
  • talon_tc_compact_firmware
  • apogee_pxc_modular_firmware
  • desigo_pxc00-e.d
  • desigo_pxc22.1-e.d_firmware
  • nucleus_readystart_v3
  • desigo_pxc00-e.d_firmware
  • desigo_pxc64-u
  • desigo_pxc00-u
  • desigo_pxc128-u
CWE
CWE-400

Uncontrolled Resource Consumption

CWE-401

Missing Release of Memory after Effective Lifetime


NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024