Vulnerability Details CVE-2022-28329
A vulnerability has been identified in SCALANCE W1788-1 M12 (All versions < V3.0.0), SCALANCE W1788-2 EEC M12 (All versions < V3.0.0), SCALANCE W1788-2 M12 (All versions < V3.0.0), SCALANCE W1788-2IA M12 (All versions < V3.0.0). Affected devices do not properly handle malformed TCP packets received over the RemoteCapture feature. This could allow an attacker to lead to a denial of service condition which only affects the port used by the RemoteCapture feature.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 49.0%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 3.3
References
Products affected by CVE-2022-28329
-
cpe:2.3:h:siemens:scalance_w1788-1_m12:-
-
cpe:2.3:h:siemens:scalance_w1788-2_eec_m12:-
-
cpe:2.3:h:siemens:scalance_w1788-2_m12:-
-
cpe:2.3:h:siemens:scalance_w1788-2ia_m12:-
-
cpe:2.3:o:siemens:scalance_w1788-1_m12_firmware:-
-
cpe:2.3:o:siemens:scalance_w1788-2_eec_m12_firmware:-
-
cpe:2.3:o:siemens:scalance_w1788-2_m12_firmware:-
-
cpe:2.3:o:siemens:scalance_w1788-2ia_m12_firmware:-