CVE-2023-35920

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jul 11, 2023

Updated: Jul 19, 2023

CWE ID 400

Summary

CVE-2023-35920 is a newly identified vulnerability that affects various Siemens SIMATIC MV series devices, including the MV540 H, MV540 S, MV550 H, MV550 S, MV560 U, and MV560 X models. These devices are vulnerable to denial of service attacks due to their inability to properly process specific IP packets. An unauthenticated remote attacker can exploit this vulnerability by sending malicious packets, leading to a denial of service condition. Affected devices must be manually restarted to mitigate the issue. Versions V3.3.4 and above are not affected by this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Siemens AG

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/r9ARfV
https://www.cve.org/CVERecord?id=CVE-2023-35920
https://nvd.nist.gov/vuln/detail/CVE-2023-35920

Back to Vulnerability Database

CVE-2023-35920

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations