Rewterz Threat Advisory – CVE-2019-10915 – Siemens SINETPLAN Improper Authorization Vulnerability
September 11, 2019Rewterz Threat Advisory – CVE-2019-13923 – Siemens IE-WSN-PA Link WirelessHART Gateway Multiple Vulnerabilities
September 11, 2019Rewterz Threat Advisory – CVE-2019-10915 – Siemens SINETPLAN Improper Authorization Vulnerability
September 11, 2019Rewterz Threat Advisory – CVE-2019-13923 – Siemens IE-WSN-PA Link WirelessHART Gateway Multiple Vulnerabilities
September 11, 2019Severity
Medium
Analysis Summary
CVE-2019-11477
The kernel is affected by an integer overflow when handling TCP Selective Acknowledgements, which could allow a remote attacker to cause a denial-of-service condition.
CVE-2019-11478
A remote attacker sending specially crafted TCP Selective Acknowledgment (SACK) sequences may cause a denial-of-service condition.
CVE-2019-11479
An attacker may exploit a vulnerability in the TCP retransmission queue implementation kernel when handling TCP Selective Acknowledgements (SACK) to cause a denial-of-service condition.
Impact
Denial of service
Affected Vendors
Siemens
Affected Products
- CM 1542-1: All versions
- CP 1242-7: All versions
- CP 1243-1: All versions
- CP 1243-7 LTE EU: All versions
- CP 1243-7 LTE US: All versions
- CP 1243-8 IRC: All versions
- CP 1542SP-1: All versions
- CP 1542SP-1 IRC: All versions
- CP 1543-1: All versions
- CP 1543SP-1: All versions
- CloudConnect 712: All versions prior to 1.1.5
- ROX II: All versions (Only vulnerable to CVE-2019-11479)
- RUGGEDCOM RM1224: All versions
- S7-1500 CPU 1518(F)-4 PN/DP MFP: All versions
- SCALANCE M800: All versions
- SCALANCE M875: All versions
- SCALANCE S615: All versions
- SCALANCE SC-600: All versions prior to 2.0.1
- SCALANCE W-700 (IEEE 802.11n): All versions
- SCALANCE W1700: All versions
- SCALANCE WLC711: All versions
- SCALANCE WLC712: All versions
- SIMATIC ITC1500: All versions
- SIMATIC ITC1500 PRO: All versions
- SIMATIC ITC1900: All versions
- SIMATIC ITC1900 PRO: All versions
- SIMATIC ITC2200: All versions
- SIMATIC ITC2200 PRO: All versions
- SIMATIC MV500: All versions
- SIMATIC RF166C: All versions
- SIMATIC RF185C: All versions
- SIMATIC RF186C: All versions
- SIMATIC RF186CI: All versions
- SIMATIC RF188C: All versions
- SIMATIC RF188CI: All versions
- SIMATIC RF600R: All versions
- SIMATIC Teleserver Adapter IE Advanced: All versions
- SIMATIC Teleserver Adapter IE Basic: All versions
- SINEMA Remote Connect Server: All versions prior to 2.0 SP1
- SINUMERIK 808D: All versions
- SINUMERIK 828D: All versions
- SINUMERIK 840D sl: All versions
- TIM 1531 IRC: All versions
Remediation
Please see vendor’s advisory for the list of updated patches