Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2019-13946

Disclosure Date: February 11, 2020
CVE-2019-13946
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit
internal resource allocation when multiple legitimate diagnostic package
requests are sent to the DCE-RPC interface.
This could lead to a denial of service condition due to lack of memory
for devices that include a vulnerable version of the stack.

The security vulnerability could be exploited by an attacker with network
access to an affected device. Successful exploitation requires no system
privileges and no user interaction. An attacker could use the vulnerability
to compromise the availability of the device.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller *
Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 All Versions < V4.5
Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P All Versions < V4.6
PROFINET Driver for Controller All Versions < V2.1
RUGGEDCOM RM1224 family All versions < V4.3
SCALANCE M804PB All versions < V4.3
SCALANCE M812-1 ADSL-Router All versions < V4.3
SCALANCE M812-1 ADSL-Router All versions < V4.3
SCALANCE M816-1 ADSL-Router All versions < V4.3
SCALANCE M816-1 ADSL-Router All versions < V4.3
SCALANCE M826-2 SHDSL-Router All versions < V4.3
SCALANCE M874-2 All versions < V4.3
SCALANCE M874-3 All versions < V4.3
SCALANCE M876-3 All versions < V4.3
SCALANCE M876-3 (ROK) All versions < V4.3
SCALANCE M876-4 (EU) All versions < V4.3
SCALANCE M876-4 (NAM) All versions < V4.3
SCALANCE S615 LAN-Router All versions < V4.3
SCALANCE W-700 IEEE 802.11n family All versions <= V6.0.1
SCALANCE X200-4P IRT All Versions < V5.3
SCALANCE X201-3P IRT All Versions < V5.3
SCALANCE X201-3P IRT PRO All Versions < V5.3
SCALANCE X202-2IRT All Versions < V5.3
SCALANCE X202-2P IRT All Versions < V5.3
SCALANCE X202-2P IRT PRO All Versions < V5.3
SCALANCE X204-2 All versions < V5.2.5
SCALANCE X204-2FM All versions < V5.2.5
SCALANCE X204-2LD All versions < V5.2.5
SCALANCE X204-2LD TS All versions < V5.2.5
SCALANCE X204-2TS All versions < V5.2.5
SCALANCE X204IRT All Versions < V5.3
SCALANCE X204IRT PRO All Versions < V5.3
SCALANCE X206-1 All versions < V5.2.5
SCALANCE X206-1LD All versions < V5.2.5
SCALANCE X208 All versions < V5.2.5
SCALANCE X208PRO All versions < V5.2.5
SCALANCE X212-2 All versions < V5.2.5
SCALANCE X212-2LD All versions < V5.2.5
SCALANCE X216 All versions < V5.2.5
SCALANCE X224 All versions < V5.2.5
SCALANCE X302-7 EEC (230V, coated) All versions < V4.1.4
SCALANCE X302-7 EEC (230V) All versions < V4.1.4
SCALANCE X302-7 EEC (24V, coated) All versions < V4.1.4
SCALANCE X302-7 EEC (24V) All versions < V4.1.4
SCALANCE X302-7 EEC (2x 230V, coated) All versions < V4.1.4
SCALANCE X302-7 EEC (2x 230V) All versions < V4.1.4
SCALANCE X302-7 EEC (2x 24V, coated) All versions < V4.1.4
SCALANCE X302-7 EEC (2x 24V) All versions < V4.1.4
SCALANCE X304-2FE All versions < V4.1.4
SCALANCE X306-1LD FE All versions < V4.1.4
SCALANCE X307-2 EEC (230V, coated) All versions < V4.1.4
SCALANCE X307-2 EEC (230V) All versions < V4.1.4
SCALANCE X307-2 EEC (24V, coated) All versions < V4.1.4
SCALANCE X307-2 EEC (24V) All versions < V4.1.4
SCALANCE X307-2 EEC (2x 230V, coated) All versions < V4.1.4
SCALANCE X307-2 EEC (2x 230V) All versions < V4.1.4
SCALANCE X307-2 EEC (2x 24V, coated) All versions < V4.1.4
SCALANCE X307-2 EEC (2x 24V) All versions < V4.1.4
SCALANCE X307-3 All versions < V4.1.4
SCALANCE X307-3 All versions < V4.1.4
SCALANCE X307-3LD All versions < V4.1.4
SCALANCE X307-3LD All versions < V4.1.4
SCALANCE X308-2 All versions < V4.1.4
SCALANCE X308-2 All versions < V4.1.4
SCALANCE X308-2LD All versions < V4.1.4
SCALANCE X308-2LD All versions < V4.1.4
SCALANCE X308-2LH All versions < V4.1.4
SCALANCE X308-2LH All versions < V4.1.4
SCALANCE X308-2LH+ All versions < V4.1.4
SCALANCE X308-2LH+ All versions < V4.1.4
SCALANCE X308-2M All versions < V4.1.4
SCALANCE X308-2M All versions < V4.1.4
SCALANCE X308-2M PoE All versions < V4.1.4
SCALANCE X308-2M PoE All versions < V4.1.4
SCALANCE X308-2M TS All versions < V4.1.4
SCALANCE X308-2M TS All versions < V4.1.4
SCALANCE X310 All versions < V4.1.4
SCALANCE X310 All versions < V4.1.4
SCALANCE X310FE All versions < V4.1.4
SCALANCE X310FE All versions < V4.1.4
SCALANCE X320-1 FE All versions < V4.1.4
SCALANCE X320-1-2LD FE All versions < V4.1.4
SCALANCE X408-2 All versions < V4.1.4
SCALANCE XB-200 family All Versions < V3.0
SCALANCE XC-200 All Versions < V3.0
SCALANCE XF-200BA All Versions < V3.0
SCALANCE XF201-3P IRT All Versions < V5.3
SCALANCE XF202-2P IRT All Versions < V5.3
SCALANCE XF204 All versions < V5.2.5
SCALANCE XF204-2 All versions < V5.2.5
SCALANCE XF204-2BA IRT All Versions < V5.3
SCALANCE XF204IRT All Versions < V5.3
SCALANCE XF206-1 All versions < V5.2.5
SCALANCE XF208 All versions < V5.2.5
SCALANCE XM-400 family All Versions < V6.0
SCALANCE XP-200 All Versions < V3.0
SCALANCE XR-300WG family All Versions < V3.0
SCALANCE XR-500 family All Versions < V6.0
SCALANCE XR324-12M (230V, ports on front) All versions < V4.1.4
SCALANCE XR324-12M (230V, ports on front) All versions < V4.1.4
SCALANCE XR324-12M (230V, ports on rear) All versions < V4.1.4
SCALANCE XR324-12M (230V, ports on rear) All versions < V4.1.4
SCALANCE XR324-12M (24V, ports on front) All versions < V4.1.4
SCALANCE XR324-12M (24V, ports on front) All versions < V4.1.4
SCALANCE XR324-12M (24V, ports on rear) All versions < V4.1.4
SCALANCE XR324-12M (24V, ports on rear) All versions < V4.1.4
SCALANCE XR324-12M TS (24V) All versions < V4.1.4
SCALANCE XR324-12M TS (24V) All versions < V4.1.4
SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front) All versions < V4.1.4
SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front) All versions < V4.1.4
SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear) All versions < V4.1.4
SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear) All versions < V4.1.4
SCALANCE XR324-4M EEC (24V, ports on front) All versions < V4.1.4
SCALANCE XR324-4M EEC (24V, ports on front) All versions < V4.1.4
SCALANCE XR324-4M EEC (24V, ports on rear) All versions < V4.1.4
SCALANCE XR324-4M EEC (24V, ports on rear) All versions < V4.1.4
SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front) All versions < V4.1.4
SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front) All versions < V4.1.4
SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear) All versions < V4.1.4
SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear) All versions < V4.1.4
SCALANCE XR324-4M EEC (2x 24V, ports on front) All versions < V4.1.4
SCALANCE XR324-4M EEC (2x 24V, ports on front) All versions < V4.1.4
SCALANCE XR324-4M EEC (2x 24V, ports on rear) All versions < V4.1.4
SCALANCE XR324-4M EEC (2x 24V, ports on rear) All versions < V4.1.4
SCALANCE XR324-4M PoE (230V, ports on front) All versions < V4.1.4
SCALANCE XR324-4M PoE (230V, ports on rear) All versions < V4.1.4
SCALANCE XR324-4M PoE (24V, ports on front) All versions < V4.1.4
SCALANCE XR324-4M PoE (24V, ports on rear) All versions < V4.1.4
SCALANCE XR324-4M PoE TS (24V, ports on front) All versions < V4.1.4
SIMATIC CP 1616 and CP 1604 All Versions < V2.8
SIMATIC CP 343-1 All versions
SIMATIC CP 343-1 Advanced All versions
SIMATIC CP 343-1 ERPC All versions
SIMATIC CP 343-1 Lean All versions
SIMATIC CP 443-1 V3.3
SIMATIC CP 443-1 Advanced V3.3
SIMATIC CP 443-1 OPC UA All versions
SIMATIC ET 200AL IM 157-1 PN All versions
SIMATIC ET 200M IM 153-4 PN IO HF (incl. SIPLUS variants) All versions
SIMATIC ET 200M IM 153-4 PN IO ST (incl. SIPLUS variants) All versions
SIMATIC ET 200MP IM 155-5 PN HF V4.2.0
SIMATIC ET 200MP IM 155-5 PN ST V4.1.0
SIMATIC ET 200pro IM 154-3 PN HF *
SIMATIC ET 200pro IM 154-4 PN HF All versions
SIMATIC ET 200SP IM 155-6 PN BA *
SIMATIC ET 200SP IM 155-6 PN HF V4.2.0
SIMATIC ET 200SP IM 155-6 PN ST V4.1.0
SIMATIC ET 200SP IM 155-6 PN ST BA V4.1.0
SIMATIC ET200ecoPN, 16DI, DC24V, 8xM12 All versions
SIMATIC ET200ecoPN, 16DO DC24V/1,3A, 8xM12 All versions
SIMATIC ET200ecoPN, 4AO U/I 4xM12 All versions
SIMATIC ET200ecoPN, 8 DIO, DC24V/1,3A, 8xM12 All versions
SIMATIC ET200ecoPN, 8 DO, DC24V/2A, 8xM12 All versions
SIMATIC ET200ecoPN, 8AI RTD/TC 8xM12 All versions
SIMATIC ET200ecoPN, 8AI; 4 U/I; 4 RTD/TC 8xM12 All versions
SIMATIC ET200ecoPN, 8DI, DC24V, 4xM12 All versions
SIMATIC ET200ecoPN, 8DI, DC24V, 8xM12 All versions
SIMATIC ET200ecoPN, 8DO, DC24V/0,5A, 4xM12 All versions
SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 4xM12 All versions
SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 8xM12 All versions
SIMATIC ET200ecoPN: IO-Link Master All versions
SIMATIC ET200S (incl. SIPLUS variants) All versions
SIMATIC IPC Support, Package for VxWorks *
SIMATIC MV420 SR-B V7.0.6
SIMATIC MV420 SR-B Body V7.0.6
SIMATIC MV420 SR-P V7.0.6
SIMATIC MV420 SR-P Body V7.0.6
SIMATIC MV440 HR V7.0.6
SIMATIC MV440 SR V7.0.6
SIMATIC MV440 UR V7.0.6
SIMATIC PN/PN Coupler (incl. SIPLUS NET variants) All Versions
SIMATIC RF180C All versions
SIMATIC RF182C All versions
SIMATIC RF600R family All versions < V3
SIMOTION C All versions < V4.5
SIMOTION D All versions < V4.5
SIMOTION P All versions < V4.5
SINAMICS DCP All Versions < V1.3
SIPLUS ET 200MP IM 155-5 PN HF V4.2.0
SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL V4.2.0
SIPLUS ET 200MP IM 155-5 PN ST V4.1.0
SIPLUS ET 200MP IM 155-5 PN ST TX RAIL V4.1.0
SIPLUS ET 200SP IM 155-6 PN HF V4.2.0
SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL V4.2.0
SIPLUS ET 200SP IM 155-6 PN ST V4.1.0
SIPLUS ET 200SP IM 155-6 PN ST BA V4.1.0
SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL V4.1.0
SIPLUS ET 200SP IM 155-6 PN ST TX RAIL V4.1.0
SIPLUS NET CP 343-1 All versions
SIPLUS NET CP 343-1 Advanced All versions
SIPLUS NET CP 343-1 Lean All versions
SIPLUS NET CP 443-1 V3.3
SIPLUS NET CP 443-1 Advanced V3.3
SIPLUS NET SCALANCE X308-2 All versions < V4.1.4
SOFTNET-IE PNIO All versions
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

Products

Weaknesses

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis