Denial of Service Vulnerability in Profinet-IO Stack by Siemens
CVE-2019-13946

7.5HIGH

Key Information:

Vendor: Siemens
Status: Development/evaluation Kits For Profinet Io: Dk Standard Ethernet Controller; Development/evaluation Kits For Profinet Io: Ek-ertec 200; Development/evaluation Kits For Profinet Io: Ek-ertec 200p; Profinet Driver For Controller
Vendor: CVE Published:; 11 February 2020

Summary

The Profinet-IO stack versions prior to V06.00 are susceptible to a denial of service vulnerability stemming from inadequate limitations on internal resource allocation. When multiple legitimate diagnostic package requests are sent to the DCE-RPC interface, an attacker with network access can exploit this issue to deplete memory resources, potentially leading to the unavailability of the device. The exploitation of this vulnerability does not require system privileges or user interaction, making it particularly concerning for network management.

Affected Version(s)

Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller 0

Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 All Versions < V4.5

Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P All Versions < V4.6

References

https://cert-portal.siemens.com/productcert/pdf/ssa-78007...

https://cert-portal.siemens.com/productcert/html/ssa-7800...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 11, 2020
Vulnerability Reserved
Jul 18, 2019