CVE-2022-25622: CVE-2022-25622

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-25622

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The PROFINET (PNIO) stack, when integrated with the Interniche IP stack, improperly handles internal resources for TCP segments where the minimum TCP-Header length is less than defined. This could allow an attacker to create a denial of service condition for TCP services on affected devices by sending specially crafted TCP segments.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Source: NVD (National Vulnerability Database)

Vulnerability Type

未加控制的资源消耗(资源穷尽)

Source: NVD (National Vulnerability Database)

Vulnerability Title

多款Siemens SIMATIC产品资源管理错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Siemens SIMATIC CFU PA是德国西门子（Siemens）公司的一款紧凑型现场设备。多款Siemens SIMATIC产品存在资源管理错误漏洞，该漏洞源于PROFINET (PNIO) 堆栈与 Interniche IP 的堆栈集成，攻击者利用该漏洞可以进行拒绝服务攻击。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE
Siemens	SIMATIC CFU DIQ	0 ~ V2.0.0	-
Siemens	SIMATIC CFU PA	0 ~ V2.0.0	-
Siemens	SIMATIC ET 200AL IM 157-1 PN	All versions	-
Siemens	SIMATIC ET 200MP IM 155-5 PN HF	V4.2.0 ~ *	-
Siemens	SIMATIC ET 200pro IM 154-8 PN/DP CPU	All versions < V3.2.19	-
Siemens	SIMATIC ET 200pro IM 154-8F PN/DP CPU	All versions < V3.2.19	-
Siemens	SIMATIC ET 200pro IM 154-8FX PN/DP CPU	All versions < V3.2.19	-
Siemens	SIMATIC ET 200S IM 151-8 PN/DP CPU	All versions < V3.2.19	-
Siemens	SIMATIC ET 200S IM 151-8F PN/DP CPU	All versions < V3.2.19	-
Siemens	SIMATIC ET 200SP IM 155-6 MF HF	0 ~ *	-
Siemens	SIMATIC ET 200SP IM 155-6 PN HA (incl. SIPLUS variants)	All versions	-
Siemens	SIMATIC ET 200SP IM 155-6 PN HF	V4.2.0 ~ *	-
Siemens	SIMATIC ET 200SP IM 155-6 PN/2 HF	V4.2.0 ~ *	-
Siemens	SIMATIC ET 200SP IM 155-6 PN/3 HF	V4.2.0 ~ *	-
Siemens	SIMATIC ET200ecoPN, AI 8xRTD/TC, M12-L	V5.1.1 ~ V5.1.2	-
Siemens	SIMATIC ET200ecoPN, CM 4x IO-Link, M12-L	V5.1.1 ~ V5.1.2	-
Siemens	SIMATIC ET200ecoPN, CM 8x IO-Link, M12-L	V5.1.1 ~ V5.1.2	-
Siemens	SIMATIC ET200ecoPN, CM 8x IO-Link, M12-L	V5.1.1 ~ V5.1.2	-
Siemens	SIMATIC ET200ecoPN, DI 16x24VDC, M12-L	V5.1.1 ~ V5.1.2	-
Siemens	SIMATIC ET200ecoPN, DI 8x24VDC, M12-L	V5.1.1 ~ V5.1.2	-
Siemens	SIMATIC ET200ecoPN, DIQ 16x24VDC/2A, M12-L	V5.1.1 ~ V5.1.3	-
Siemens	SIMATIC ET200ecoPN, DQ 8x24VDC/0,5A, M12-L	V5.1.1 ~ V5.1.2	-
Siemens	SIMATIC ET200ecoPN, DQ 8x24VDC/2A, M12-L	V5.1.1 ~ V5.1.2	-
Siemens	SIMATIC PN/MF Coupler	All versions	-
Siemens	SIMATIC PN/PN Coupler	All versions >= 4.2	-
Siemens	SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)	All versions < V2.0.0	-
Siemens	SIMATIC S7-300 CPU 314C-2 PN/DP	All versions < V3.3.19	-
Siemens	SIMATIC S7-300 CPU 315-2 PN/DP	All versions < V3.2.19	-
Siemens	SIMATIC S7-300 CPU 315F-2 PN/DP	All versions < V3.2.19	-
Siemens	SIMATIC S7-300 CPU 315T-3 PN/DP	All versions < V3.2.19	-
Siemens	SIMATIC S7-300 CPU 317-2 PN/DP	All versions < V3.2.19	-
Siemens	SIMATIC S7-300 CPU 317F-2 PN/DP	All versions < V3.2.19	-
Siemens	SIMATIC S7-300 CPU 317T-3 PN/DP	All versions < V3.2.19	-
Siemens	SIMATIC S7-300 CPU 317TF-3 PN/DP	All versions < V3.2.19	-
Siemens	SIMATIC S7-300 CPU 319-3 PN/DP	All versions < V3.2.19	-
Siemens	SIMATIC S7-300 CPU 319F-3 PN/DP	All versions < V3.2.19	-
Siemens	SIMATIC S7-400 CPU 412-2 PN V7	0 ~ *	-
Siemens	SIMATIC S7-400 CPU 414-3 PN/DP V7	0 ~ *	-
Siemens	SIMATIC S7-400 CPU 414F-3 PN/DP V7	0 ~ *	-
Siemens	SIMATIC S7-400 CPU 416-3 PN/DP V7	0 ~ *	-
Siemens	SIMATIC S7-400 CPU 416F-3 PN/DP V7	0 ~ *	-
Siemens	SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)	0 ~ V6.0.10	-
Siemens	SIMATIC S7-410 V10 CPU family (incl. SIPLUS variants)	All versions < V10.1.1	-
Siemens	SIMATIC S7-410 V8 CPU family (incl. SIPLUS variants)	0 ~ V8.2.3	-
Siemens	SIMATIC TDC CP51M1	0 ~ V1.1.10	-
Siemens	SIMATIC TDC CPU555	0 ~ V1.2.1	-
Siemens	SIMATIC WinAC RTX 2010	All versions	-
Siemens	SIMATIC WinAC RTX F 2010	All versions	-
Siemens	SINAMICS DCM	0 ~ V1.5 SP1	-
Siemens	SINAMICS G110M	0 ~ V4.7.14	-
Siemens	SINAMICS G115D	0 ~ V4.7.14	-
Siemens	SINAMICS G120 (incl. SIPLUS variants)	0 ~ V4.7 SP14	-
Siemens	SINAMICS G130	0 ~ V5.2.3.13	-
Siemens	SINAMICS G150	0 ~ V5.2.3.13	-
Siemens	SINAMICS S110	0 ~ *	-
Siemens	SINAMICS S120 (incl. SIPLUS variants)	0 ~ V5.2 SP3 HF13	-
Siemens	SINAMICS S150	0 ~ V5.2.3.13	-
Siemens	SINAMICS S210 (6SL5...)	0 ~ V5.2 SP3 HF18	-
Siemens	SINAMICS V90	0 ~ V1.04.04	-
Siemens	SIPLUS ET 200MP IM 155-5 PN HF	V4.2.0 ~ *	-
Siemens	SIPLUS ET 200MP IM 155-5 PN HF	V4.2.0 ~ *	-
Siemens	SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL	V4.2.0 ~ *	-
Siemens	SIPLUS ET 200S IM 151-8 PN/DP CPU	All versions < V3.2.19	-
Siemens	SIPLUS ET 200S IM 151-8F PN/DP CPU	All versions < V3.2.19	-
Siemens	SIPLUS ET 200SP IM 155-6 PN HF	V4.2.0 ~ *	-
Siemens	SIPLUS ET 200SP IM 155-6 PN HF	V4.2.0 ~ *	-
Siemens	SIPLUS ET 200SP IM 155-6 PN HF	V4.2.0 ~ *	-
Siemens	SIPLUS ET 200SP IM 155-6 PN HF	V4.2.0 ~ *	-
Siemens	SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL	V4.2.0 ~ *	-
Siemens	SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL	V4.2.0 ~ *	-
Siemens	SIPLUS ET 200SP IM 155-6 PN HF TX RAIL	V4.2.0 ~ *	-
Siemens	SIPLUS HCS4200 CIM4210	All versions	-
Siemens	SIPLUS HCS4200 CIM4210C	All versions	-
Siemens	SIPLUS HCS4300 CIM4310	All versions	-
Siemens	SIPLUS NET PN/PN Coupler	All versions >= 4.2	-
Siemens	SIPLUS S7-300 CPU 314C-2 PN/DP	All versions < V3.3.19	-
Siemens	SIPLUS S7-300 CPU 315-2 PN/DP	All versions < V3.2.19	-
Siemens	SIPLUS S7-300 CPU 315F-2 PN/DP	All versions < V3.2.19	-
Siemens	SIPLUS S7-300 CPU 317-2 PN/DP	All versions < V3.2.19	-
Siemens	SIPLUS S7-300 CPU 317F-2 PN/DP	All versions < V3.2.19	-
Siemens	SIPLUS S7-400 CPU 414-3 PN/DP V7	0 ~ *	-
Siemens	SIPLUS S7-400 CPU 416-3 PN/DP V7	0 ~ *	-

II. Public POCs for CVE-2022-25622

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2022-25622

Please Login to view more intelligence information

IV. Related Vulnerabilities

Same vendor: Siemens

Same weakness: CWE-400

V. Comments for CVE-2022-25622

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2022-25622

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2022-25622

III. Intelligence Information for CVE-2022-25622

IV. Related Vulnerabilities

V. Comments for CVE-2022-25622

Leave a comment