CVE-2023-46283

Published: Dic 12, 2023 Last Modified: Nov 21, 2024 EU-VD ID: EUVD-2023-50508 Aliases: GSD-2023-46283

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 7,5

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: none

User Interaction: none

Scope: unchanged

Confidentiality: none

Integrity: none

Availability: high

Description

AI Translation Available

A vulnerability has been identified in Opcenter Execution Foundation (All versions < V2407), Opcenter Quality (All versions < V2312), SIMATIC PCS neo (All versions < V4.1), SINEC NMS (All versions < V2.0 SP1), Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions < V17 Update 8), Totally Integrated Automation Portal (TIA Portal) V18 (All versions < V18 Update 3). The affected application contains an out of bounds write past the end of an allocated buffer when handling specific requests on port 4002/tcp. This could allow an attacker to crash the application. The corresponding service is auto-restarted after the crash.

EPSS (Exploit Prediction Scoring System)

Trend Analysis

EPSS (Exploit Prediction Scoring System)

Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.

EPSS Score

0,0022

Percentile

0,4th

Updated

EPSS Score Trend (Last 90 Days)

120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Incomplete

Abstraction: Base Structure: Simple

Common Consequences

Security Scopes Affected:

Integrity Confidentiality Availability

Potential Impacts:

Modify Memory Execute Unauthorized Code Or Commands Dos: Crash, Exit, Or Restart Dos: Resource Consumption (Cpu)

Applicable Platforms

Languages: Assembly, C, C++, Memory-Unsafe

Likelihood of Exploit: High

View CWE Details

Application

Totally Integrated Automation Portal by Siemens

Product Information

Vendor Siemens

Product Totally Integrated Automation Portal

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:siemens:totally_integrated_automation_portal:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Totally Integrated Automation Portal by Siemens

Product Information

Vendor Siemens

Product Totally Integrated Automation Portal

Version Range Affected

From 14.0 (inclusive)

To 15 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:siemens:totally_integrated_automation_portal:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Totally Integrated Automation Portal by Siemens

Product Information

Vendor Siemens

Product Totally Integrated Automation Portal

Version Range Affected

From 15 (inclusive)

To 16 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:siemens:totally_integrated_automation_portal:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Totally Integrated Automation Portal by Siemens

Product Information

Vendor Siemens

Product Totally Integrated Automation Portal

Version 18

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:siemens:totally_integrated_automation_portal:18:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Totally Integrated Automation Portal by Siemens

Product Information

Vendor Siemens

Product Totally Integrated Automation Portal

Version 18

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:siemens:totally_integrated_automation_portal:18:update_1:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Simatic Pcs Neo by Siemens

Product Information

Vendor Siemens

Product Simatic Pcs Neo

Version Range Affected

To 4.1 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:siemens:simatic_pcs_neo:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Opcenter Quality by Siemens

Product Information

Vendor Siemens

Product Opcenter Quality

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:siemens:opcenter_quality:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Totally Integrated Automation Portal by Siemens

Product Information

Vendor Siemens

Product Totally Integrated Automation Portal

Version Range Affected

From 16 (inclusive)

To 17 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:siemens:totally_integrated_automation_portal:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Totally Integrated Automation Portal by Siemens

Product Information

Vendor Siemens

Product Totally Integrated Automation Portal

Version Range Affected

From 17 (inclusive)

To 18 (exclusive)

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:siemens:totally_integrated_automation_portal:*:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

Application

Sinumerik Integrate Runmyhmi \/Automotive by Siemens

Product Information

Vendor Siemens

Product Sinumerik Integrate Runmyhmi \/Automotive

Version -

CPE Identifier

View Detailed Analysis


                  cpe:2.3:a:siemens:sinumerik_integrate_runmyhmi_\/automotive:-:*:*:*:*:*:*:*

Common Platform Enumeration - Standardized vulnerability identification

https://cert-portal.siemens.com/productcert/html/ssa-999588…

https://cert-portal.siemens.com/productcert/html/ssa-999588.html

https://cert-portal.siemens.com/productcert/pdf/ssa-999588.…

Patch Vendor Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-999588.pdf

https://cert-portal.siemens.com/productcert/html/ssa-999588…

https://cert-portal.siemens.com/productcert/html/ssa-999588.html

https://cert-portal.siemens.com/productcert/pdf/ssa-999588.…

Patch Vendor Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-999588.pdf

CVE-2023-46283

Description

EPSS (Exploit Prediction Scoring System)

EPSS (Exploit Prediction Scoring System)

EPSS Score Trend (Last 90 Days)

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Common Consequences

Applicable Platforms

Totally Integrated Automation Portal by Siemens

Product Information

Totally Integrated Automation Portal by Siemens

Product Information

Totally Integrated Automation Portal by Siemens

Product Information

Totally Integrated Automation Portal by Siemens

Product Information

Totally Integrated Automation Portal by Siemens

Product Information

Simatic Pcs Neo by Siemens

Product Information

Opcenter Quality by Siemens

Product Information

Totally Integrated Automation Portal by Siemens

Product Information

Totally Integrated Automation Portal by Siemens

Product Information

Sinumerik Integrate Runmyhmi \/Automotive by Siemens

Product Information

Iscriviti alla newsletter