CVE-2022-27194
published 2022-04-12CVE-2022-27194: A vulnerability has been identified in SIMATIC PCS neo (Administration Console) (All versions < V3.1 SP1), SINETPLAN (All versions), TIA Portal (V15, V15.1…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
A vulnerability has been identified in SIMATIC PCS neo (Administration Console) (All versions < V3.1 SP1), SINETPLAN (All versions), TIA Portal (V15, V15.1, V16 and V17). The affected system cannot properly process specially crafted packets sent to port 8888/tcp. A remote attacker could exploit this vulnerability to cause a Denial-of-Service condition. The affected devices must be restarted manually.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| siemens | simatic_pcs_neo | < 3.1 | 3.1 |
| siemens | simatic_pcs_neo | — | — |
| siemens | simatic_pcs_neo | — | — |
| siemens | sinetplan | — | — |
| siemens | tia_portal | — | — |
| siemens | totally_integrated_automation_portal | — | — |
| siemens | totally_integrated_automation_portal | — | — |
| siemens | totally_integrated_automation_portal | — | — |
| siemens | totally_integrated_automation_portal | — | — |