Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-28831

The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation. This could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate.

Published

2023-09-12T10:15:27.230

Last Modified

2025-04-10T18:15:29.273

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

Weaknesses

Type: Secondary
CWE-190
Type: Primary
CWE-190

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	siemens	simatic_cloud_connect_7_cc712_firmware	< 2.2	Yes
Hardware	siemens	simatic_cloud_connect_7_cc712	-	No
Operating System	siemens	simatic_cloud_connect_7_cc716_firmware	< 2.2	Yes
Hardware	siemens	simatic_cloud_connect_7_cc716	-	No
Operating System	siemens	simatic_drive_controller_cpu_1504d_tf_firmware	< 2.2	Yes
Hardware	siemens	simatic_drive_controller_cpu_1504d_tf	-	No
Operating System	siemens	simatic_drive_controller_cpu_1507d_tf_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_drive_controller_cpu_1507d_tf	-	No
Operating System	siemens	simatic_et_200sp_open_controller_cpu_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_et_200sp_open_controller_cpu	-	No
Operating System	siemens	simatic_s7-1200_cpu_firmware	< 3.0.3	Yes
Hardware	siemens	simatic_s7-1200_cpu	-	No
Operating System	siemens	simatic_s7-1500_cpu_1510sp-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1510sp-1_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1510sp_f-1_pn_firmware	< 3.0.3	Yes
Hardware	siemens	simatic_s7-1500_cpu_1510sp_f-1_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1511-1_pn_firmware	< 21.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1511-1_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1511c-1_pn_firmware	< 30.0.0	Yes
Hardware	siemens	simatic_s7-1500_cpu_1511c-1_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1511f-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1511f-1_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1511t-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1511t-1_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1511tf-1_pn_firmware	< 3.0.3	Yes
Hardware	siemens	simatic_s7-1500_cpu_1511tf-1_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1512c-1_pn_firmware	< 3.0.3	Yes
Hardware	siemens	simatic_s7-1500_cpu_1512c-1_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1512sp-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1512sp-1_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1512sp_f-1_pn_firmware	< 3.0.3	Yes
Hardware	siemens	simatic_s7-1500_cpu_1512sp_f-1_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1513-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1513-1_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1513f-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1513f-1_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1513r-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1513r-1_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1514sp-2_pn_firmware	< 3.0.3	Yes
Hardware	siemens	simatic_s7-1500_cpu_1514sp-2_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1514sp_f-2_pn_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1514sp_f-2_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1514spt-2_pn_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1514spt-2_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1514spt_f-2_pn_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1514spt_f-2_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1515-2_pn_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1515-2_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1515f-2_pn_firmware	< 3.0.3	Yes
Hardware	siemens	simatic_s7-1500_cpu_1515f-2_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1515r-2_pn_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1515r-2_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1515t-2_pn_firmware	< 3.0.3	Yes
Hardware	siemens	simatic_s7-1500_cpu_1515t-2_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1515tf-2_pn_firmware	< 3.0.3	Yes
Hardware	siemens	simatic_s7-1500_cpu_1515tf-2_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1516-3_pn\/dp_firmware	< 3.0.3	Yes
Hardware	siemens	simatic_s7-1500_cpu_1516-3_pn\/dp	-	No
Operating System	siemens	simatic_s7-1500_cpu_1516f-3_pn\/dp_firmware	< 3.0.3	Yes
Hardware	siemens	simatic_s7-1500_cpu_1516f-3_pn\/dp	-	No
Operating System	siemens	simatic_s7-1500_cpu_1516t-3_pn\/dp_firmware	< 3.0.3	Yes
Hardware	siemens	simatic_s7-1500_cpu_1516t-3_pn\/dp	-	No
Operating System	siemens	simatic_s7-1500_cpu_1516tf-3_pn\/dp_firmware	< 3.0.3	Yes
Hardware	siemens	simatic_s7-1500_cpu_1516tf-3_pn\/dp	-	No
Operating System	siemens	simatic_s7-1500_cpu_1517-3_pn\/dp_firmware	< 3.0.3	Yes
Hardware	siemens	simatic_s7-1500_cpu_1517-3_pn\/dp	-	No
Operating System	siemens	simatic_s7-1500_cpu_1517f-3_pn\/dp_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1517f-3_pn\/dp	-	No
Operating System	siemens	simatic_s7-1500_cpu_1517h-3_pn_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1517h-3_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1517t-3_pn\/dp_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1517t-3_pn\/dp	-	No
Operating System	siemens	simatic_s7-1500_cpu_1517tf-3_pn\/dp_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1517tf-3_pn\/dp	-	No
Operating System	siemens	simatic_s7-1500_cpu_1518-4_pn\/dp_firmware	< 21.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1518-4_pn\/dp	-	No
Operating System	siemens	simatic_s7-1500_cpu_1518-4_pn\/dp_mfp_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1518-4_pn\/dp_mfp	-	No
Operating System	siemens	simatic_s7-1500_cpu_1518f-4_pn\/dp_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1518f-4_pn\/dp	-	No
Operating System	siemens	simatic_s7-1500_cpu_1518f-4_pn\/dp_mfp_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1518f-4_pn\/dp_mfp	-	No
Operating System	siemens	simatic_s7-1500_cpu_1518hf-4_pn_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1518hf-4_pn	-	No
Operating System	siemens	simatic_s7-1500_cpu_1518t-4_pn\/dp_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1518t-4_pn\/dp	-	No
Operating System	siemens	simatic_s7-1500_cpu_1518tf-4_pn\/dp_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_1518tf-4_pn\/dp	-	No
Operating System	siemens	simatic_s7-1500_cpu_s7-1518-4_pn\/dp_odk_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_s7-1518-4_pn\/dp_odk	-	No
Operating System	siemens	simatic_s7-1500_cpu_s7-1518f-4_pn\/dp_odk_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_cpu_s7-1518f-4_pn\/dp_odk	-	No
Operating System	siemens	simatic_s7-1500_et_200pro_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_et_200pro	-	No
Operating System	siemens	simatic_s7-1500_software_controller_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_software_controller	v2	No
Operating System	siemens	simatic_s7-1500_software_controller_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-1500_software_controller	v3	No
Operating System	siemens	simatic_s7-plcsim_advanced_firmware	< 2.9.7	Yes
Hardware	siemens	simatic_s7-plcsim_advanced	-	No
Operating System	siemens	siplus_et_200sp_cpu_1510sp-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_et_200sp_cpu_1510sp-1_pn	-	No
Operating System	siemens	siplus_et_200sp_cpu_1510sp-1_pn_rail_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_et_200sp_cpu_1510sp-1_pn_rail	-	No
Operating System	siemens	siplus_et_200sp_cpu_1510sp_f-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_et_200sp_cpu_1510sp_f-1_pn	-	No
Operating System	siemens	siplus_et_200sp_cpu_1510sp_f-1_pn_rail_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_et_200sp_cpu_1510sp_f-1_pn_rail	-	No
Operating System	siemens	siplus_et_200sp_cpu_1512sp-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_et_200sp_cpu_1512sp-1_pn	-	No
Operating System	siemens	siplus_et_200sp_cpu_1512sp-1_pn_rail_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_et_200sp_cpu_1512sp-1_pn_rail	-	No
Operating System	siemens	siplus_et_200sp_cpu_1512sp_f-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_et_200sp_cpu_1512sp_f-1_pn	-	No
Operating System	siemens	siplus_et_200sp_cpu_1512sp_f-1_pn_rail_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_et_200sp_cpu_1512sp_f-1_pn_rail	-	No
Operating System	siemens	siplus_s7-1500_cpu_1511-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1511-1_pn	-	No
Operating System	siemens	siplus_s7-1500_cpu_1511-1_pn_t1_rail_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1511-1_pn_t1_rail	-	No
Operating System	siemens	siplus_s7-1500_cpu_1511-1_pn_tx_rail_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1511-1_pn_tx_rail	-	No
Operating System	siemens	siplus_s7-1500_cpu_1511f-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1511f-1_pn	-	No
Operating System	siemens	siplus_s7-1500_cpu_1513-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1513-1_pn	-	No
Operating System	siemens	siplus_s7-1500_cpu_1513f-1_pn_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1513f-1_pn	-	No
Operating System	siemens	siplus_s7-1500_cpu_1515f-2_pn_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1515f-2_pn	-	No
Operating System	siemens	siplus_s7-1500_cpu_1515f-2_pn_rail_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1515f-2_pn_rail	-	No
Operating System	siemens	siplus_s7-1500_cpu_1515f-2_pn_t2_rail_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1515f-2_pn_t2_rail	-	No
Operating System	siemens	siplus_s7-1500_cpu_1515r-2_pn_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1515r-2_pn	-	No
Operating System	siemens	siplus_s7-1500_cpu_1515r-2_pn_tx_rail_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1515r-2_pn_tx_rail	-	No
Operating System	siemens	siplus_s7-1500_cpu_1516-3_pn\/dp_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1516-3_pn\/dp	-	No
Operating System	siemens	siplus_s7-1500_cpu_1516-3_pn\/dp_rail_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1516-3_pn\/dp_rail	-	No
Operating System	siemens	siplus_s7-1500_cpu_1516-3_pn\/dp_tx_rail_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1516-3_pn\/dp_tx_rail	-	No
Operating System	siemens	siplus_s7-1500_cpu_1516f-3_pn\/dp_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1516f-3_pn\/dp	-	No
Operating System	siemens	siplus_s7-1500_cpu_1516f-3_pn\/dp_rail_firmware	< 2.9.7	Yes
Hardware	siemens	siplus_s7-1500_cpu_1516f-3_pn\/dp_rail	-	No
Operating System	siemens	siplus_s7-1500_cpu_1517h-3_pn_firmware	< 3.0.3	Yes
Hardware	siemens	siplus_s7-1500_cpu_1517h-3_pn	-	No
Operating System	siemens	siplus_s7-1500_cpu_1518-4_pn\/dp_firmware	< 3.0.3	Yes
Hardware	siemens	siplus_s7-1500_cpu_1518-4_pn\/dp	-	No
Operating System	siemens	siplus_s7-1500_cpu_1518-4_pn\/dp_mfp_firmware	< 3.0.3	Yes
Hardware	siemens	siplus_s7-1500_cpu_1518-4_pn\/dp_mfp	-	No
Operating System	siemens	siplus_s7-1500_cpu_1518f-4_pn\/dp_firmware	< 3.0.3	Yes
Hardware	siemens	siplus_s7-1500_cpu_1518f-4_pn\/dp	-	No
Operating System	siemens	siplus_s7-1500_cpu_1518hf-4_pn_firmware	< 3.0.3	Yes
Hardware	siemens	siplus_s7-1500_cpu_1518hf-4_pn	-	No

References

https://cert-portal.siemens.com/productcert/html/ssa-118850.html Mitigation, Vendor Advisory ([email protected])
https://cert-portal.siemens.com/productcert/html/ssa-711309.html Mitigation, Vendor Advisory ([email protected])
https://cert-portal.siemens.com/productcert/pdf/ssa-118850.pdf Mitigation, Vendor Advisory ([email protected])
https://cert-portal.siemens.com/productcert/pdf/ssa-711309.pdf Vendor Advisory ([email protected])
https://cert-portal.siemens.com/productcert/html/ssa-118850.html Mitigation, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://cert-portal.siemens.com/productcert/html/ssa-711309.html Mitigation, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://cert-portal.siemens.com/productcert/pdf/ssa-118850.pdf Mitigation, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://cert-portal.siemens.com/productcert/pdf/ssa-711309.pdf Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)