CVE-2023-28831
published 2023-09-12CVE-2023-28831: The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an…
high8.7CVSS 4.0
AVNACLATNPRNUINVCNVINVAHSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation.
This could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate.
Affected
194 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| siemens | simatic_braumat | < V8.1 SP1 | V8.1 SP1 |
| siemens | simatic_cloud_connect_7_cc712 | < V2.2 | V2.2 |
| siemens | simatic_cloud_connect_7_cc712_firmware | < 2.2 | 2.2 |
| siemens | simatic_cloud_connect_7_cc716 | < V2.2 | V2.2 |
| siemens | simatic_cloud_connect_7_cc716_firmware | < 2.2 | 2.2 |
| siemens | simatic_comfort_mobile_rt | < * | * |
| siemens | simatic_drive_controller_cpu_1504d_tf | < V2.9.7 | V2.9.7 |
| siemens | simatic_drive_controller_cpu_1504d_tf | >= V3.0.1 < V3.0.3 | V3.0.3 |
| siemens | simatic_drive_controller_cpu_1504d_tf_firmware | < 2.2 | 2.2 |
| siemens | simatic_drive_controller_cpu_1507d_tf | < V2.9.7 | V2.9.7 |
| siemens | simatic_drive_controller_cpu_1507d_tf | >= V3.0.1 < V3.0.3 | V3.0.3 |
| siemens | simatic_drive_controller_cpu_1507d_tf_firmware | < 2.9.7 | 2.9.7 |
| siemens | simatic_et_200sp_cpu_1510sp-1_pn | < V2.9.7 | V2.9.7 |
| siemens | simatic_et_200sp_cpu_1510sp-1_pn | < V3.0.3 | V3.0.3 |
| siemens | simatic_et_200sp_cpu_1510sp_f-1_pn | < V2.9.7 | V2.9.7 |
| siemens | simatic_et_200sp_cpu_1510sp_f-1_pn | < V3.0.3 | V3.0.3 |
| siemens | simatic_et_200sp_cpu_1512sp-1_pn | < V2.9.7 | V2.9.7 |
| siemens | simatic_et_200sp_cpu_1512sp-1_pn | < V3.0.3 | V3.0.3 |
| siemens | simatic_et_200sp_cpu_1512sp_f-1_pn | < V2.9.7 | V2.9.7 |
| siemens | simatic_et_200sp_cpu_1512sp_f-1_pn | < V3.0.3 | V3.0.3 |
| siemens | simatic_et_200sp_cpu_1514sp-2_pn | < V3.0.3 | V3.0.3 |
| siemens | simatic_et_200sp_cpu_1514sp_f-2_pn | < V3.0.3 | V3.0.3 |
| siemens | simatic_et_200sp_cpu_1514spt-2_pn | < V3.0.3 | V3.0.3 |
| siemens | simatic_et_200sp_cpu_1514spt_f-2_pn | < V3.0.3 | V3.0.3 |
| siemens | simatic_et_200sp_open_controller_cpu_1515sp_pc2 | < V21.9.7 | V21.9.7 |