Vulnerability Description
The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation. This could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Simatic Cloud Connect 7 Cc712 Firmware | < 2.2 |
| Siemens | Simatic Cloud Connect 7 Cc712 | - |
| Siemens | Simatic Cloud Connect 7 Cc716 Firmware | < 2.2 |
| Siemens | Simatic Cloud Connect 7 Cc716 | - |
| Siemens | Simatic Drive Controller Cpu 1504D Tf Firmware | < 2.2 |
| Siemens | Simatic Drive Controller Cpu 1504D Tf | - |
| Siemens | Simatic Drive Controller Cpu 1507D Tf Firmware | < 2.9.7 |
| Siemens | Simatic Drive Controller Cpu 1507D Tf | - |
| Siemens | Simatic Et 200Sp Open Controller Cpu Firmware | < 2.9.7 |
| Siemens | Simatic Et 200Sp Open Controller Cpu | - |
| Siemens | Simatic S7-1200 Cpu Firmware | < 3.0.3 |
| Siemens | Simatic S7-1200 Cpu | - |
| Siemens | Simatic S7-1500 Cpu 1510Sp-1 Pn Firmware | < 2.9.7 |
| Siemens | Simatic S7-1500 Cpu 1510Sp-1 Pn | - |
| Siemens | Simatic S7-1500 Cpu 1510Sp F-1 Pn Firmware | < 3.0.3 |
| Siemens | Simatic S7-1500 Cpu 1510Sp F-1 Pn | - |
| Siemens | Simatic S7-1500 Cpu 1511-1 Pn Firmware | < 21.9.7 |
| Siemens | Simatic S7-1500 Cpu 1511-1 Pn | - |
| Siemens | Simatic S7-1500 Cpu 1511C-1 Pn Firmware | < 30.0.0 |
| Siemens | Simatic S7-1500 Cpu 1511C-1 Pn | - |
Related Weaknesses (CWE)
References
- https://cert-portal.siemens.com/productcert/html/ssa-118850.htmlMitigationVendor Advisory
- https://cert-portal.siemens.com/productcert/html/ssa-711309.htmlMitigationVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-118850.pdfMitigationVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-711309.pdfVendor Advisory
- https://cert-portal.siemens.com/productcert/html/ssa-118850.htmlMitigationVendor Advisory
- https://cert-portal.siemens.com/productcert/html/ssa-711309.htmlMitigationVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-118850.pdfMitigationVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-711309.pdfVendor Advisory
FAQ
What is CVE-2023-28831?
CVE-2023-28831 is a vulnerability with a CVSS score of 7.5 (HIGH). The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation. ...
How severe is CVE-2023-28831?
CVE-2023-28831 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-28831?
Check the references section above for vendor advisories and patch information. Affected products include: Siemens Simatic Cloud Connect 7 Cc712 Firmware, Siemens Simatic Cloud Connect 7 Cc712, Siemens Simatic Cloud Connect 7 Cc716 Firmware, Siemens Simatic Cloud Connect 7 Cc716, Siemens Simatic Drive Controller Cpu 1504D Tf Firmware.