CVE-2019-13946: CVE-2019-13946

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-13946

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lead to a denial of service condition due to lack of memory for devices that include a vulnerable version of the stack. The security vulnerability could be exploited by an attacker with network access to an affected device. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise the availability of the device.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

未加控制的资源消耗(资源穷尽)

Source: NVD (National Vulnerability Database)

Vulnerability Title

Siemens RUGGEDCOM 资源管理错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Siemens RUGGEDCOM是德国西门子（Siemens）公司的一个通信设备。为电力，交通，石油和天然气及其他行业提供快速可靠的通信。 Siemens RUGGEDCOM存在资源管理错误漏洞，该漏洞源于协议未能正确处理客户端的数据包，远程攻击者可通过该漏洞导致设备引起拒绝服务。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
Siemens	Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller	0 ~ *	-
Siemens	Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200	All Versions < V4.5	-
Siemens	Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P	All Versions < V4.6	-
Siemens	PROFINET Driver for Controller	All Versions < V2.1	-
Siemens	RUGGEDCOM RM1224 family	All versions < V4.3	-
Siemens	SCALANCE M804PB	All versions < V4.3	-
Siemens	SCALANCE M812-1 ADSL-Router	All versions < V4.3	-
Siemens	SCALANCE M812-1 ADSL-Router	All versions < V4.3	-
Siemens	SCALANCE M816-1 ADSL-Router	All versions < V4.3	-
Siemens	SCALANCE M816-1 ADSL-Router	All versions < V4.3	-
Siemens	SCALANCE M826-2 SHDSL-Router	All versions < V4.3	-
Siemens	SCALANCE M874-2	All versions < V4.3	-
Siemens	SCALANCE M874-3	All versions < V4.3	-
Siemens	SCALANCE M876-3	All versions < V4.3	-
Siemens	SCALANCE M876-3 (ROK)	All versions < V4.3	-
Siemens	SCALANCE M876-4 (EU)	All versions < V4.3	-
Siemens	SCALANCE M876-4 (NAM)	All versions < V4.3	-
Siemens	SCALANCE S615 LAN-Router	All versions < V4.3	-
Siemens	SCALANCE W-700 IEEE 802.11n family	All versions <= V6.0.1	-
Siemens	SCALANCE X200-4P IRT	All Versions < V5.3	-
Siemens	SCALANCE X201-3P IRT	All Versions < V5.3	-
Siemens	SCALANCE X201-3P IRT PRO	All Versions < V5.3	-
Siemens	SCALANCE X202-2IRT	All Versions < V5.3	-
Siemens	SCALANCE X202-2P IRT	All Versions < V5.3	-
Siemens	SCALANCE X202-2P IRT PRO	All Versions < V5.3	-
Siemens	SCALANCE X204-2	All versions < V5.2.5	-
Siemens	SCALANCE X204-2FM	All versions < V5.2.5	-
Siemens	SCALANCE X204-2LD	All versions < V5.2.5	-
Siemens	SCALANCE X204-2LD TS	All versions < V5.2.5	-
Siemens	SCALANCE X204-2TS	All versions < V5.2.5	-
Siemens	SCALANCE X204IRT	All Versions < V5.3	-
Siemens	SCALANCE X204IRT PRO	All Versions < V5.3	-
Siemens	SCALANCE X206-1	All versions < V5.2.5	-
Siemens	SCALANCE X206-1LD	All versions < V5.2.5	-
Siemens	SCALANCE X208	All versions < V5.2.5	-
Siemens	SCALANCE X208PRO	All versions < V5.2.5	-
Siemens	SCALANCE X212-2	All versions < V5.2.5	-
Siemens	SCALANCE X212-2LD	All versions < V5.2.5	-
Siemens	SCALANCE X216	All versions < V5.2.5	-
Siemens	SCALANCE X224	All versions < V5.2.5	-
Siemens	SCALANCE X302-7 EEC (230V, coated)	All versions < V4.1.4	-
Siemens	SCALANCE X302-7 EEC (230V)	All versions < V4.1.4	-
Siemens	SCALANCE X302-7 EEC (24V, coated)	All versions < V4.1.4	-
Siemens	SCALANCE X302-7 EEC (24V)	All versions < V4.1.4	-
Siemens	SCALANCE X302-7 EEC (2x 230V, coated)	All versions < V4.1.4	-
Siemens	SCALANCE X302-7 EEC (2x 230V)	All versions < V4.1.4	-
Siemens	SCALANCE X302-7 EEC (2x 24V, coated)	All versions < V4.1.4	-
Siemens	SCALANCE X302-7 EEC (2x 24V)	All versions < V4.1.4	-
Siemens	SCALANCE X304-2FE	All versions < V4.1.4	-
Siemens	SCALANCE X306-1LD FE	All versions < V4.1.4	-
Siemens	SCALANCE X307-2 EEC (230V, coated)	All versions < V4.1.4	-
Siemens	SCALANCE X307-2 EEC (230V)	All versions < V4.1.4	-
Siemens	SCALANCE X307-2 EEC (24V, coated)	All versions < V4.1.4	-
Siemens	SCALANCE X307-2 EEC (24V)	All versions < V4.1.4	-
Siemens	SCALANCE X307-2 EEC (2x 230V, coated)	All versions < V4.1.4	-
Siemens	SCALANCE X307-2 EEC (2x 230V)	All versions < V4.1.4	-
Siemens	SCALANCE X307-2 EEC (2x 24V, coated)	All versions < V4.1.4	-
Siemens	SCALANCE X307-2 EEC (2x 24V)	All versions < V4.1.4	-
Siemens	SCALANCE X307-3	All versions < V4.1.4	-
Siemens	SCALANCE X307-3	All versions < V4.1.4	-
Siemens	SCALANCE X307-3LD	All versions < V4.1.4	-
Siemens	SCALANCE X307-3LD	All versions < V4.1.4	-
Siemens	SCALANCE X308-2	All versions < V4.1.4	-
Siemens	SCALANCE X308-2	All versions < V4.1.4	-
Siemens	SCALANCE X308-2LD	All versions < V4.1.4	-
Siemens	SCALANCE X308-2LD	All versions < V4.1.4	-
Siemens	SCALANCE X308-2LH	All versions < V4.1.4	-
Siemens	SCALANCE X308-2LH	All versions < V4.1.4	-
Siemens	SCALANCE X308-2LH+	All versions < V4.1.4	-
Siemens	SCALANCE X308-2LH+	All versions < V4.1.4	-
Siemens	SCALANCE X308-2M	All versions < V4.1.4	-
Siemens	SCALANCE X308-2M	All versions < V4.1.4	-
Siemens	SCALANCE X308-2M PoE	All versions < V4.1.4	-
Siemens	SCALANCE X308-2M PoE	All versions < V4.1.4	-
Siemens	SCALANCE X308-2M TS	All versions < V4.1.4	-
Siemens	SCALANCE X308-2M TS	All versions < V4.1.4	-
Siemens	SCALANCE X310	All versions < V4.1.4	-
Siemens	SCALANCE X310	All versions < V4.1.4	-
Siemens	SCALANCE X310FE	All versions < V4.1.4	-
Siemens	SCALANCE X310FE	All versions < V4.1.4	-
Siemens	SCALANCE X320-1 FE	All versions < V4.1.4	-
Siemens	SCALANCE X320-1-2LD FE	All versions < V4.1.4	-
Siemens	SCALANCE X408-2	All versions < V4.1.4	-
Siemens	SCALANCE XB-200 family	All Versions < V3.0	-
Siemens	SCALANCE XC-200	All Versions < V3.0	-
Siemens	SCALANCE XF-200BA	All Versions < V3.0	-
Siemens	SCALANCE XF201-3P IRT	All Versions < V5.3	-
Siemens	SCALANCE XF202-2P IRT	All Versions < V5.3	-
Siemens	SCALANCE XF204	All versions < V5.2.5	-
Siemens	SCALANCE XF204-2	All versions < V5.2.5	-
Siemens	SCALANCE XF204-2BA IRT	All Versions < V5.3	-
Siemens	SCALANCE XF204IRT	All Versions < V5.3	-
Siemens	SCALANCE XF206-1	All versions < V5.2.5	-
Siemens	SCALANCE XF208	All versions < V5.2.5	-
Siemens	SCALANCE XM-400 family	All Versions < V6.0	-
Siemens	SCALANCE XP-200	All Versions < V3.0	-
Siemens	SCALANCE XR-300WG family	All Versions < V3.0	-
Siemens	SCALANCE XR-500 family	All Versions < V6.0	-
Siemens	SCALANCE XR324-12M (230V, ports on front)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-12M (230V, ports on front)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-12M (230V, ports on rear)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-12M (230V, ports on rear)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-12M (24V, ports on front)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-12M (24V, ports on front)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-12M (24V, ports on rear)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-12M (24V, ports on rear)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-12M TS (24V)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-12M TS (24V)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (24V, ports on front)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (24V, ports on front)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (24V, ports on rear)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (24V, ports on rear)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (2x 24V, ports on front)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (2x 24V, ports on front)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (2x 24V, ports on rear)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M EEC (2x 24V, ports on rear)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M PoE (230V, ports on front)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M PoE (230V, ports on rear)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M PoE (24V, ports on front)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M PoE (24V, ports on rear)	All versions < V4.1.4	-
Siemens	SCALANCE XR324-4M PoE TS (24V, ports on front)	All versions < V4.1.4	-
Siemens	SIMATIC CP 1616 and CP 1604	All Versions < V2.8	-
Siemens	SIMATIC CP 343-1	All versions	-
Siemens	SIMATIC CP 343-1 Advanced	All versions	-
Siemens	SIMATIC CP 343-1 ERPC	All versions	-
Siemens	SIMATIC CP 343-1 Lean	All versions	-
Siemens	SIMATIC CP 443-1	0 ~ V3.3	-
Siemens	SIMATIC CP 443-1	0 ~ V3.3	-
Siemens	SIMATIC CP 443-1 Advanced	0 ~ V3.3	-
Siemens	SIMATIC CP 443-1 OPC UA	All versions	-
Siemens	SIMATIC ET 200AL IM 157-1 PN	All versions	-
Siemens	SIMATIC ET 200M IM 153-4 PN IO HF (incl. SIPLUS variants)	All versions	-
Siemens	SIMATIC ET 200M IM 153-4 PN IO ST (incl. SIPLUS variants)	All versions	-
Siemens	SIMATIC ET 200MP IM 155-5 PN HF	0 ~ V4.2.0	-
Siemens	SIMATIC ET 200MP IM 155-5 PN ST	0 ~ V4.1.0	-
Siemens	SIMATIC ET 200pro IM 154-3 PN HF	0 ~ *	-
Siemens	SIMATIC ET 200pro IM 154-4 PN HF	All versions	-
Siemens	SIMATIC ET 200SP IM 155-6 PN BA	0 ~ *	-
Siemens	SIMATIC ET 200SP IM 155-6 PN HF	0 ~ V4.2.0	-
Siemens	SIMATIC ET 200SP IM 155-6 PN ST	0 ~ V4.1.0	-
Siemens	SIMATIC ET 200SP IM 155-6 PN ST BA	0 ~ V4.1.0	-
Siemens	SIMATIC ET200ecoPN, 16DI, DC24V, 8xM12	All versions	-
Siemens	SIMATIC ET200ecoPN, 16DO DC24V/1,3A, 8xM12	All versions	-
Siemens	SIMATIC ET200ecoPN, 4AO U/I 4xM12	All versions	-
Siemens	SIMATIC ET200ecoPN, 8 DIO, DC24V/1,3A, 8xM12	All versions	-
Siemens	SIMATIC ET200ecoPN, 8 DO, DC24V/2A, 8xM12	All versions	-
Siemens	SIMATIC ET200ecoPN, 8AI RTD/TC 8xM12	All versions	-
Siemens	SIMATIC ET200ecoPN, 8AI; 4 U/I; 4 RTD/TC 8xM12	All versions	-
Siemens	SIMATIC ET200ecoPN, 8DI, DC24V, 4xM12	All versions	-
Siemens	SIMATIC ET200ecoPN, 8DI, DC24V, 8xM12	All versions	-
Siemens	SIMATIC ET200ecoPN, 8DO, DC24V/0,5A, 4xM12	All versions	-
Siemens	SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 4xM12	All versions	-
Siemens	SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 8xM12	All versions	-
Siemens	SIMATIC ET200ecoPN: IO-Link Master	All versions	-
Siemens	SIMATIC ET200S (incl. SIPLUS variants)	All versions	-
Siemens	SIMATIC IPC Support, Package for VxWorks	0 ~ *	-
Siemens	SIMATIC MV420 SR-B	0 ~ V7.0.6	-
Siemens	SIMATIC MV420 SR-B Body	0 ~ V7.0.6	-
Siemens	SIMATIC MV420 SR-P	0 ~ V7.0.6	-
Siemens	SIMATIC MV420 SR-P Body	0 ~ V7.0.6	-
Siemens	SIMATIC MV440 HR	0 ~ V7.0.6	-
Siemens	SIMATIC MV440 SR	0 ~ V7.0.6	-
Siemens	SIMATIC MV440 UR	0 ~ V7.0.6	-
Siemens	SIMATIC PN/PN Coupler (incl. SIPLUS NET variants)	All Versions	-
Siemens	SIMATIC RF180C	All versions	-
Siemens	SIMATIC RF182C	All versions	-
Siemens	SIMATIC RF600R family	All versions < V3	-
Siemens	SIMOTION C	All versions < V4.5	-
Siemens	SIMOTION D	All versions < V4.5	-
Siemens	SIMOTION P	All versions < V4.5	-
Siemens	SINAMICS DCP	All Versions < V1.3	-
Siemens	SIPLUS ET 200MP IM 155-5 PN HF	0 ~ V4.2.0	-
Siemens	SIPLUS ET 200MP IM 155-5 PN HF	0 ~ V4.2.0	-
Siemens	SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL	0 ~ V4.2.0	-
Siemens	SIPLUS ET 200MP IM 155-5 PN ST	0 ~ V4.1.0	-
Siemens	SIPLUS ET 200MP IM 155-5 PN ST TX RAIL	0 ~ V4.1.0	-
Siemens	SIPLUS ET 200SP IM 155-6 PN HF	0 ~ V4.2.0	-
Siemens	SIPLUS ET 200SP IM 155-6 PN HF	0 ~ V4.2.0	-
Siemens	SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL	0 ~ V4.2.0	-
Siemens	SIPLUS ET 200SP IM 155-6 PN ST	0 ~ V4.1.0	-
Siemens	SIPLUS ET 200SP IM 155-6 PN ST BA	0 ~ V4.1.0	-
Siemens	SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL	0 ~ V4.1.0	-
Siemens	SIPLUS ET 200SP IM 155-6 PN ST TX RAIL	0 ~ V4.1.0	-
Siemens	SIPLUS NET CP 343-1	All versions	-
Siemens	SIPLUS NET CP 343-1 Advanced	All versions	-
Siemens	SIPLUS NET CP 343-1 Lean	All versions	-
Siemens	SIPLUS NET CP 443-1	0 ~ V3.3	-
Siemens	SIPLUS NET CP 443-1 Advanced	0 ~ V3.3	-
Siemens	SIPLUS NET SCALANCE X308-2	All versions < V4.1.4	-
Siemens	SOFTNET-IE PNIO	All versions	-

II. Public POCs for CVE-2019-13946

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2019-13946

Please Login to view more intelligence information

New Vulnerabilities

Product: Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller

Vendor: Siemens

Same weakness: CWE-400

V. Comments for CVE-2019-13946

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2019-13946

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2019-13946

III. Intelligence Information for CVE-2019-13946

New Vulnerabilities

V. Comments for CVE-2019-13946

Leave a comment