Attacker Value
Unknown
0
CVE-2022-25622
0
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
Add References:
CVE-2022-25622
(Last updated July 09, 2024) ▾
MITRE ATT&CK
Log in to add MITRE ATT&CK tag
Add MITRE ATT&CK tactics and techniques that apply to this CVE.
MITRE ATT&CK
Select the MITRE ATT&CK Tactics that apply to this CVE
Collection
Select any Techniques used:
Command and Control
Select any Techniques used:
Credential Access
Select any Techniques used:
Defense Evasion
Select any Techniques used:
Discovery
Select any Techniques used:
Execution
Select any Techniques used:
Exfiltration
Select any Techniques used:
Impact
Select any Techniques used:
Initial Access
Select any Techniques used:
Lateral Movement
Select any Techniques used:
Persistence
Select any Techniques used:
Privilege Escalation
Select any Techniques used:
Topic Tags
Select the tags that apply to this CVE (Assessment added tags are disabled and cannot be removed)
What makes this of high-value to an attacker?
What makes this of low-value to an attacker?
Description
The PROFINET (PNIO) stack, when integrated with the Interniche IP stack, improperly handles internal resources for TCP segments where the minimum TCP-Header length is less than defined.
This could allow an attacker to create a denial of service condition for TCP services on affected devices by sending specially crafted TCP segments.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
Data provided by the National Vulnerability Database (NVD)
Base Score:
7.5 High
Impact Score:
3.6
Exploitability Score:
3.9
Attack Vector (AV):
Network
Attack Complexity (AC):
Low
Privileges Required (PR):
None
User Interaction (UI):
None
Scope (S):
Unchanged
Confidentiality (C):
None
Integrity (I):
None
Availability (A):
High
General Information
Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
SIMATIC CFU DIQ V2.0.0
SIMATIC CFU PA V2.0.0
SIMATIC ET 200AL IM 157-1 PN All versions
SIMATIC ET 200MP IM 155-5 PN HF *
SIMATIC ET 200pro IM 154-8 PN/DP CPU All versions < V3.2.19
SIMATIC ET 200pro IM 154-8F PN/DP CPU All versions < V3.2.19
SIMATIC ET 200pro IM 154-8FX PN/DP CPU All versions < V3.2.19
SIMATIC ET 200S IM 151-8 PN/DP CPU All versions < V3.2.19
SIMATIC ET 200S IM 151-8F PN/DP CPU All versions < V3.2.19
SIMATIC ET 200SP IM 155-6 MF HF *
SIMATIC ET 200SP IM 155-6 PN HA (incl. SIPLUS variants) All versions
SIMATIC ET 200SP IM 155-6 PN HF *
SIMATIC ET 200SP IM 155-6 PN/2 HF *
SIMATIC ET 200SP IM 155-6 PN/3 HF *
SIMATIC ET200ecoPN, AI 8xRTD/TC, M12-L V5.1.2
SIMATIC ET200ecoPN, CM 4x IO-Link, M12-L All versions >= V5.1.1
SIMATIC ET200ecoPN, CM 8x IO-Link, M12-L All versions >= V5.1.1
SIMATIC ET200ecoPN, CM 8x IO-Link, M12-L All versions >= V5.1.1
SIMATIC ET200ecoPN, DI 16x24VDC, M12-L V5.1.2
SIMATIC ET200ecoPN, DI 8x24VDC, M12-L V5.1.2
SIMATIC ET200ecoPN, DIQ 16x24VDC/2A, M12-L V5.1.3
SIMATIC ET200ecoPN, DQ 8x24VDC/0,5A, M12-L V5.1.2
SIMATIC ET200ecoPN, DQ 8x24VDC/2A, M12-L V5.1.2
SIMATIC PN/MF Coupler All versions
SIMATIC PN/PN Coupler All versions >= 4.2
SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) All versions < V2.0.0
SIMATIC S7-300 CPU 314C-2 PN/DP All versions < V3.3.19
SIMATIC S7-300 CPU 315-2 PN/DP All versions < V3.2.19
SIMATIC S7-300 CPU 315F-2 PN/DP All versions < V3.2.19
SIMATIC S7-300 CPU 315T-3 PN/DP All versions < V3.2.19
SIMATIC S7-300 CPU 317-2 PN/DP All versions < V3.2.19
SIMATIC S7-300 CPU 317F-2 PN/DP All versions < V3.2.19
SIMATIC S7-300 CPU 317T-3 PN/DP All versions < V3.2.19
SIMATIC S7-300 CPU 317TF-3 PN/DP All versions < V3.2.19
SIMATIC S7-300 CPU 319-3 PN/DP All versions < V3.2.19
SIMATIC S7-300 CPU 319F-3 PN/DP All versions < V3.2.19
SIMATIC S7-400 CPU 412-2 PN V7 *
SIMATIC S7-400 CPU 414-3 PN/DP V7 *
SIMATIC S7-400 CPU 414F-3 PN/DP V7 *
SIMATIC S7-400 CPU 416-3 PN/DP V7 *
SIMATIC S7-400 CPU 416F-3 PN/DP V7 *
SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) V6.0.10
SIMATIC S7-410 V10 CPU family (incl. SIPLUS variants) All versions < V10.1.1
SIMATIC S7-410 V8 CPU family (incl. SIPLUS variants) V8.2.3
SIMATIC TDC CP51M1 V1.1.10
SIMATIC TDC CPU555 V1.2.1
SIMATIC WinAC RTX 2010 All versions
SIMATIC WinAC RTX F 2010 All versions
SINAMICS DCM V1.5 SP1
SINAMICS G110M V4.7.14
SINAMICS G115D V4.7.14
SINAMICS G120 (incl. SIPLUS variants) V4.7 SP14
SINAMICS G130 V5.2.3.13
SINAMICS G150 V5.2.3.13
SINAMICS S110 *
SINAMICS S120 (incl. SIPLUS variants) V5.2 SP3 HF13
SINAMICS S150 V5.2.3.13
SINAMICS S210 (6SL5...) V5.2 SP3 HF18
SINAMICS V90 V1.04.04
SIPLUS ET 200MP IM 155-5 PN HF *
SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL *
SIPLUS ET 200S IM 151-8 PN/DP CPU All versions < V3.2.19
SIPLUS ET 200S IM 151-8F PN/DP CPU All versions < V3.2.19
SIPLUS ET 200SP IM 155-6 PN HF *
SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL *
SIPLUS ET 200SP IM 155-6 PN HF TX RAIL *
SIPLUS HCS4200 CIM4210 All versions
SIPLUS HCS4200 CIM4210C All versions
SIPLUS HCS4300 CIM4310 All versions
SIPLUS NET PN/PN Coupler All versions >= 4.2
SIPLUS S7-300 CPU 314C-2 PN/DP All versions < V3.3.19
SIPLUS S7-300 CPU 315-2 PN/DP All versions < V3.2.19
SIPLUS S7-300 CPU 315F-2 PN/DP All versions < V3.2.19
SIPLUS S7-300 CPU 317-2 PN/DP All versions < V3.2.19
SIPLUS S7-300 CPU 317F-2 PN/DP All versions < V3.2.19
SIPLUS S7-400 CPU 414-3 PN/DP V7 *
SIPLUS S7-400 CPU 416-3 PN/DP V7 *
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown
Vendors
Products
- simatic cfu diq firmware,
- simatic cfu pa firmware,
- simatic s7-1500 cpu firmware,
- simatic s7-300 cpu firmware,
- simatic s7-400 pn/dp v7 firmware,
- simatic s7-400h v6 firmware,
- simatic s7-410 v10 firmware,
- simatic s7-410 v8 firmware,
- simatic tdc cp51m1 firmware,
- simatic tdc cpu555 firmware,
- simatic winac rtx firmware,
- simit simulation platform
References
Additional Info
Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Rapid7
Technical Analysis
Report as Emergent Threat Response
Report as Zero-day Exploit
Report as Exploited in the Wild
CVE ID
AttackerKB requires a CVE ID in order to pull vulnerability data and references from the CVE list and the National Vulnerability Database. If available, please supply below:
