CVE-2022-34819Heap-based Buffer Overflow in Siemens Simatic CP 1543-1 Firmware

CWE-122Heap-based Buffer OverflowCWE-787Out-of-bounds Write3 documents3 sources
Severity
10.0CRITICALNVD
EPSS
0.9%
top 23.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
22
Siemens Simatic CP 1543-1 FirmwareSiemens Siplus NET CP 1543-1 FirmwareSiemens Simatic CP 1242-7 V2+19 more
Timeline
PublishedJul 12
Latest updateJul 13

Description

A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions = V2.0 = V2.0 = V2.0 = V2.0 = V2.0 < V2.2.28), SIPLUS NET CP 1242-7 V2 (All versions < V3.3.46), SIPLUS NET CP 1543-1 (All versions < V3.0.22), SIPLUS S7-1200 CP 1243-1 (All versions < V3.3.46), SIPLUS S7-1200 CP 1243-1 RAIL (All versions < V3.3.46). The application lacks proper validation of user-supplied data when parsing specific messages. This could result in a heap-based buffer overflow. An attacker could leverage thi

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HExploitability: 3.9 | Impact: 6.0

Affected Packages22 packages

CVEListV5siemens/siplus_s7-1200_cp_1243-1_railAll versions < V3.3.46
CVEListV5siemens/siplus_s7-1200_cp_1243-1All versions < V3.3.46
CVEListV5siemens/siplus_net_cp_1242-7_v2All versions < V3.3.46
CVEListV5siemens/siplus_et_200sp_cp_1543sp-1_isec_tx_railAll versions >= V2.0 < V2.2.28

Patches

Patch: cert-portal.siemens.comPatch: cert-portal.siemens.com

🔴Vulnerability Details

2
GHSA
GHSA-x7cp-9x6c-2mm8: A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions), SIMATIC CP 1243-1 (All versions), SIMATIC CP 1243-7 LTE EU (All versions),2022-07-13
CVEList
CVE-2022-34819: A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions = V22022-07-12
CVE-2022-34819 — Heap-based Buffer Overflow in Siemens | cvebase