Siemens Simatic Ipc647D Firmware vulnerabilities

7 known vulnerabilities affecting siemens/simatic_ipc647d_firmware.

Total CVEs

7

CISA KEV

1

actively exploited

Public exploits

2

Exploited in wild

2

Severity breakdown

CRITICAL1HIGH2MEDIUM4

Vulnerabilities

Page 1 of 1

CVE-2018-3658MEDIUMCVSS 5.3fixed in 19.01.142018-09-12

CVE-2018-3658 [MEDIUM] CWE-772 CVE-2018-3658: Multiple memory leaks in Intel AMT in Intel CSME firmware versions before 12.0.5 may allow an unauth Multiple memory leaks in Intel AMT in Intel CSME firmware versions before 12.0.5 may allow an unauthenticated user with Intel AMT provisioned to potentially cause a partial denial of service via network access.

CVE-2018-3616MEDIUMCVSS 5.9fixed in 19.01.142018-09-12

CVE-2018-3616 [MEDIUM] CVE-2018-3616: Bleichenbacher-style side channel vulnerability in TLS implementation in Intel Active Management Tec Bleichenbacher-style side channel vulnerability in TLS implementation in Intel Active Management Technology before 12.0.5 may allow an unauthenticated user to potentially obtain the TLS session key via the network.

CVE-2018-3657MEDIUMCVSS 6.7fixed in 19.01.142018-09-12

CVE-2018-3657 [MEDIUM] CWE-119 CVE-2018-3657: Multiple buffer overflows in Intel AMT in Intel CSME firmware versions before version 12.0.5 may all Multiple buffer overflows in Intel AMT in Intel CSME firmware versions before version 12.0.5 may allow a privileged user to potentially execute arbitrary code with Intel AMT execution privilege via local access.

CVE-2018-3639MEDIUMCVSS 5.5ExploitedPoCfixed in 19.01.142018-05-22

CVE-2018-3639 [MEDIUM] CWE-203 CVE-2018-3639: Systems with microprocessors utilizing speculative execution and speculative execution of memory rea Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka Speculative Store Bypass (SSB), Variant 4.

CVE-2017-5711HIGHCVSS 7.8fixed in 9.1.41.30242017-11-21

CVE-2017-5711 [HIGH] CWE-119 CVE-2017-5711: Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmwa Multiple buffer overflows in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allow attacker with local access to the system to execute arbitrary code with AMT execution privilege.

CVE-2017-5712HIGHCVSS 7.2fixed in 9.1.41.30242017-11-21

CVE-2017-5712 [HIGH] CWE-119 CVE-2017-5712: Buffer overflow in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x Buffer overflow in Active Management Technology (AMT) in Intel Manageability Engine Firmware 8.x/9.x/10.x/11.0/11.5/11.6/11.7/11.10/11.20 allows attacker with remote Admin access to the system to execute arbitrary code with AMT execution privilege.

CVE-2017-5689CRITICALCVSS 9.8KEVPoCfixed in 9.1.41.30242017-05-02

CVE-2017-5689 [CRITICAL] CWE-269 CVE-2017-5689: An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKU An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology (AMT) and Intel Standard Manageability (ISM). An unprivileged local attacker could provision manageability features gaining unprivileged network or local system privileges on Intel manageability SKUs: Intel Active