CVE-2022-38773: Affected devices do not contain an Immutable Root of Trust in Hardware. With this the integrity of the code executed on the device can not be validated during…

medium6.8CVSS 3.1

AVPACLPRNUINSUCHIHAH

Affected devices do not contain an Immutable Root of Trust in Hardware. With this the integrity of the code executed on the device can not be validated during load-time. An attacker with physical access to the device could use this to replace the boot image of the device and execute arbitrary code.

Affected

71 ranges· showing 25

Vendor	Product	Version range	Fixed in
siemens	simatic_drive_controller_cpu_1504d_tf	< *	*
siemens	simatic_drive_controller_cpu_1507d_tf	< *	*
siemens	simatic_s7-1500_cpu_1510sp-1_pn	< *	*
siemens	simatic_s7-1500_cpu_1510sp_f-1_pn	< *	*
siemens	simatic_s7-1500_cpu_1511-1_pn	< *	*
siemens	simatic_s7-1500_cpu_1511c-1_pn	< *	*
siemens	simatic_s7-1500_cpu_1511f-1_pn	< *	*
siemens	simatic_s7-1500_cpu_1511t-1_pn	< *	*
siemens	simatic_s7-1500_cpu_1511tf-1_pn	< *	*
siemens	simatic_s7-1500_cpu_1512c-1_pn	< *	*
siemens	simatic_s7-1500_cpu_1512sp-1_pn	< *	*
siemens	simatic_s7-1500_cpu_1512sp_f-1_pn	< *	*
siemens	simatic_s7-1500_cpu_1513-1_pn	< *	*
siemens	simatic_s7-1500_cpu_1513f-1_pn	< *	*
siemens	simatic_s7-1500_cpu_1513r-1_pn	< *	*
siemens	simatic_s7-1500_cpu_1515-2_pn	< *	*
siemens	simatic_s7-1500_cpu_1515f-2_pn	< *	*
siemens	simatic_s7-1500_cpu_1515r-2_pn	< *	*
siemens	simatic_s7-1500_cpu_1515t-2_pn	< *	*
siemens	simatic_s7-1500_cpu_1515tf-2_pn	< *	*
siemens	simatic_s7-1500_cpu_1516-3_pn_dp	< *	*
siemens	simatic_s7-1500_cpu_1516f-3_pn_dp	< *	*
siemens	simatic_s7-1500_cpu_1516t-3_pn_dp	< *	*
siemens	simatic_s7-1500_cpu_1516tf-3_pn_dp	< *	*
siemens	simatic_s7-1500_cpu_1517-3_pn_dp	< *	*