目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡
获取后续新漏洞提醒登录后订阅
一、 漏洞 CVE-2022-45044 基础信息
漏洞信息
对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
A vulnerability has been identified in SIPROTEC 5 6MD84 (CP300) (All versions < V9.50), SIPROTEC 5 6MD85 (CP200) (All versions), SIPROTEC 5 6MD85 (CP300) (All versions < V9.50), SIPROTEC 5 6MD86 (CP200) (All versions), SIPROTEC 5 6MD86 (CP300) (All versions < V9.50), SIPROTEC 5 6MD89 (CP300) (All versions < V9.64), SIPROTEC 5 6MU85 (CP300) (All versions < V9.50), SIPROTEC 5 7KE85 (CP200) (All versions), SIPROTEC 5 7KE85 (CP300) (All versions < V9.64), SIPROTEC 5 7SA82 (CP100) (All versions < V8.90), SIPROTEC 5 7SA82 (CP150) (All versions < V9.50), SIPROTEC 5 7SA84 (CP200) (All versions), SIPROTEC 5 7SA86 (CP200) (All versions), SIPROTEC 5 7SA86 (CP300) (All versions < V9.50), SIPROTEC 5 7SA87 (CP200) (All versions), SIPROTEC 5 7SA87 (CP300) (All versions < V9.50), SIPROTEC 5 7SD82 (CP100) (All versions < V8.90), SIPROTEC 5 7SD82 (CP150) (All versions < V9.50), SIPROTEC 5 7SD84 (CP200) (All versions), SIPROTEC 5 7SD86 (CP200) (All versions), SIPROTEC 5 7SD86 (CP300) (All versions < V9.50), SIPROTEC 5 7SD87 (CP200) (All versions), SIPROTEC 5 7SD87 (CP300) (All versions < V9.50), SIPROTEC 5 7SJ81 (CP100) (All versions < V8.89), SIPROTEC 5 7SJ81 (CP150) (All versions < V9.50), SIPROTEC 5 7SJ82 (CP100) (All versions < V8.89), SIPROTEC 5 7SJ82 (CP150) (All versions < V9.50), SIPROTEC 5 7SJ85 (CP200) (All versions), SIPROTEC 5 7SJ85 (CP300) (All versions < V9.50), SIPROTEC 5 7SJ86 (CP200) (All versions), SIPROTEC 5 7SJ86 (CP300) (All versions < V9.50), SIPROTEC 5 7SK82 (CP100) (All versions < V8.89), SIPROTEC 5 7SK82 (CP150) (All versions < V9.50), SIPROTEC 5 7SK85 (CP200) (All versions), SIPROTEC 5 7SK85 (CP300) (All versions < V9.50), SIPROTEC 5 7SL82 (CP100) (All versions < V8.90), SIPROTEC 5 7SL82 (CP150) (All versions < V9.50), SIPROTEC 5 7SL86 (CP200) (All versions), SIPROTEC 5 7SL86 (CP300) (All versions < V9.50), SIPROTEC 5 7SL87 (CP200) (All versions), SIPROTEC 5 7SL87 (CP300) (All versions < V9.50), SIPROTEC 5 7SS85 (CP200) (All versions), SIPROTEC 5 7SS85 (CP300) (All versions < V9.50), SIPROTEC 5 7ST85 (CP200) (All versions), SIPROTEC 5 7ST85 (CP300) (All versions < V9.64), SIPROTEC 5 7ST86 (CP300) (All versions < V9.64), SIPROTEC 5 7SX82 (CP150) (All versions < V9.50), SIPROTEC 5 7SX85 (CP300) (All versions < V9.50), SIPROTEC 5 7UM85 (CP300) (All versions < V9.50), SIPROTEC 5 7UT82 (CP100) (All versions < V8.90), SIPROTEC 5 7UT82 (CP150) (All versions < V9.50), SIPROTEC 5 7UT85 (CP200) (All versions), SIPROTEC 5 7UT85 (CP300) (All versions < V9.50), SIPROTEC 5 7UT86 (CP200) (All versions), SIPROTEC 5 7UT86 (CP300) (All versions < V9.50), SIPROTEC 5 7UT87 (CP200) (All versions), SIPROTEC 5 7UT87 (CP300) (All versions < V9.50), SIPROTEC 5 7VE85 (CP300) (All versions < V9.50), SIPROTEC 5 7VK87 (CP200) (All versions), SIPROTEC 5 7VK87 (CP300) (All versions < V9.50), SIPROTEC 5 7VU85 (CP300) (All versions < V9.50), SIPROTEC 5 Communication Module ETH-BA-2EL (Rev.1) (All versions installed on CP200 devices), SIPROTEC 5 Communication Module ETH-BA-2EL (Rev.1) (All versions < V9.50 installed on CP150 and CP300 devices), SIPROTEC 5 Communication Module ETH-BA-2EL (Rev.1) (All versions < V8.89 installed on CP100 devices), SIPROTEC 5 Communication Module ETH-BB-2FO (Rev. 1) (All versions installed on CP200 devices), SIPROTEC 5 Communication Module ETH-BB-2FO (Rev. 1) (All versions < V9.50 installed on CP150 and CP300 devices), SIPROTEC 5 Communication Module ETH-BB-2FO (Rev. 1) (All versions < V8.89 installed on CP100 devices), SIPROTEC 5 Communication Module ETH-BD-2FO (All versions < V9.50), SIPROTEC 5 Compact 7SX800 (CP050) (All versions < V9.50). Affected devices do not properly restrict secure client-initiated renegotiations within the SSL and TLS protocols. This could allow an attacker to create a denial of service condition on the ports 443/tcp and 4443/tcp for the duration of the attack.
来源: 美国国家漏洞数据库 NVD
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
未加控制的资源消耗(资源穷尽)
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
Siemens SIPROTEC 5 资源管理错误漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
Siemens SIPROTEC 5是德国西门子(Siemens)公司的一款多功能继电器。 Siemens部分产品存在资源管理错误漏洞。攻击者利用该漏洞在443/tcp和4443/tcp端口上造成拒绝服务的条件。以下产品及版本受到影响:Siprotec 5 6MD85设备(CPU变体CP200)、Siprotec 5 6MD85设备(CPU变体CP300)、Siprotec 5 6MD86设备(CPU变体CP200)、Siprotec 5 6MD86设备(CPU变体CP300)、Siprotec 5 6M
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD
受影响产品
厂商产品影响版本CPE订阅
SiemensSIPROTEC 5 6MD84 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 6MD85 (CP200) 0 ~ * -
SiemensSIPROTEC 5 6MD85 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 6MD86 (CP200) 0 ~ * -
SiemensSIPROTEC 5 6MD86 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 6MD89 (CP300) 0 ~ V9.64 -
SiemensSIPROTEC 5 6MU85 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7KE85 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7KE85 (CP300) 0 ~ V9.64 -
SiemensSIPROTEC 5 7SA82 (CP100) 0 ~ V8.90 -
SiemensSIPROTEC 5 7SA82 (CP150) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SA84 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7SA86 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7SA86 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SA87 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7SA87 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SD82 (CP100) 0 ~ V8.90 -
SiemensSIPROTEC 5 7SD82 (CP150) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SD84 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7SD86 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7SD86 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SD87 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7SD87 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SJ81 (CP100) 0 ~ V8.89 -
SiemensSIPROTEC 5 7SJ81 (CP150) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SJ82 (CP100) 0 ~ V8.89 -
SiemensSIPROTEC 5 7SJ82 (CP150) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SJ85 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7SJ85 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SJ86 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7SJ86 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SK82 (CP100) 0 ~ V8.89 -
SiemensSIPROTEC 5 7SK82 (CP150) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SK85 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7SK85 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SL82 (CP100) 0 ~ V8.90 -
SiemensSIPROTEC 5 7SL82 (CP150) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SL86 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7SL86 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SL87 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7SL87 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SS85 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7SS85 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7ST85 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7ST85 (CP300) 0 ~ V9.64 -
SiemensSIPROTEC 5 7ST86 (CP300) 0 ~ V9.64 -
SiemensSIPROTEC 5 7SX82 (CP150) 0 ~ V9.50 -
SiemensSIPROTEC 5 7SX85 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7UM85 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7UT82 (CP100) 0 ~ V8.90 -
SiemensSIPROTEC 5 7UT82 (CP150) 0 ~ V9.50 -
SiemensSIPROTEC 5 7UT85 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7UT85 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7UT86 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7UT86 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7UT87 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7UT87 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7VE85 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7VK87 (CP200) 0 ~ * -
SiemensSIPROTEC 5 7VK87 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 7VU85 (CP300) 0 ~ V9.50 -
SiemensSIPROTEC 5 Communication Module ETH-BA-2EL (Rev.1) 0 ~ * -
SiemensSIPROTEC 5 Communication Module ETH-BA-2EL (Rev.1) 0 ~ V9.50 -
SiemensSIPROTEC 5 Communication Module ETH-BA-2EL (Rev.1) 0 ~ V8.89 -
SiemensSIPROTEC 5 Communication Module ETH-BB-2FO (Rev. 1) 0 ~ * -
SiemensSIPROTEC 5 Communication Module ETH-BB-2FO (Rev. 1) 0 ~ V9.50 -
SiemensSIPROTEC 5 Communication Module ETH-BB-2FO (Rev. 1) 0 ~ V8.89 -
SiemensSIPROTEC 5 Communication Module ETH-BD-2FO 0 ~ V9.50 -
SiemensSIPROTEC 5 Compact 7SX800 (CP050) 0 ~ V9.50 -
二、漏洞 CVE-2022-45044 的公开POC
#POC 描述源链接神龙链接
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC
三、漏洞 CVE-2022-45044 的情报信息
Please 登录 to view more intelligence information
IV. Related Vulnerabilities
Same product: SIPROTEC 5 6MD84 (CP300)
Same vendor: Siemens
Same weakness: CWE-400
V. Comments for CVE-2022-45044

暂无评论

发表评论