Vulnerability Description
Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lead to a denial of service condition due to lack of memory for devices that include a vulnerable version of the stack. The security vulnerability could be exploited by an attacker with network access to an affected device. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise the availability of the device.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Dk Standard Ethernet Controller | All versions |
| Siemens | Profinet Driver | < 2.1 |
| Siemens | Simatic Ipc Support | All versions |
| Siemens | Ek-Ertec 200 Firmware | < 4.5 |
| Siemens | Ek-Ertec 200 | - |
| Siemens | Ek-Ertec 200P Firmware | < 4.6 |
| Siemens | Ek-Ertec 200P | - |
| Siemens | Ruggedcom Rm1224 Firmware | < 4.3 |
| Siemens | Ruggedcom Rm1224 | - |
| Siemens | Scalance M-800 Firmware | < 4.3 |
| Siemens | Scalance M-800 | - |
| Siemens | Scalance S615 Firmware | < 4.3 |
| Siemens | Scalance S615 | - |
| Siemens | Scalance W700 Ieee 802.11N Firmware | <= 6.0.1 |
| Siemens | Scalance W700 Ieee 802.11N | - |
| Siemens | Scalance Xc-200 Firmware | All versions |
| Siemens | Scalance Xc-200 | - |
| Siemens | Scalance Xf-200 Firmware | All versions |
| Siemens | Scalance Xf-200 | - |
| Siemens | Scalance Xp-200 Firmware | All versions |
Related Weaknesses (CWE)
References
- https://cert-portal.siemens.com/productcert/html/ssa-780073.html
- https://cert-portal.siemens.com/productcert/pdf/ssa-780073.pdfVendor Advisory
- https://cert-portal.siemens.com/productcert/html/ssa-780073.html
- https://cert-portal.siemens.com/productcert/pdf/ssa-780073.pdfVendor Advisory
FAQ
What is CVE-2019-13946?
CVE-2019-13946 is a vulnerability with a CVSS score of 7.5 (HIGH). Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lea...
How severe is CVE-2019-13946?
CVE-2019-13946 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-13946?
Check the references section above for vendor advisories and patch information. Affected products include: Siemens Dk Standard Ethernet Controller, Siemens Profinet Driver, Siemens Simatic Ipc Support, Siemens Ek-Ertec 200 Firmware, Siemens Ek-Ertec 200.