Description
The PROFINET (PNIO) stack, when integrated with the Interniche IP stack, improperly handles internal resources for TCP segments where the minimum TCP-Header length is less than defined. This could allow an attacker to create a denial of service condition for TCP services on affected devices by sending specially crafted TCP segments.
Reserved 2022-02-21 | Published 2022-04-12 | Updated 2025-04-21 | Assigner
siemensMEDIUM: 5.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C
Problem types
CWE-400: Uncontrolled Resource Consumption
Product status
Default status
unknown
Any version before V2.0.0
affected
Default status
unknown
Any version before V2.0.0
affected
Default status
unknown
All versions
affected
Default status
unknown
V4.2.0 before *
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
Any version before *
affected
Default status
unknown
All versions
affected
Default status
unknown
V4.2.0 before *
affected
Default status
unknown
V4.2.0 before *
affected
Default status
unknown
V4.2.0 before *
affected
Default status
unknown
V5.1.1 before V5.1.2
affected
Default status
unknown
V5.1.1 before V5.1.2
affected
Default status
unknown
V5.1.1 before V5.1.2
affected
Default status
unknown
V5.1.1 before V5.1.2
affected
Default status
unknown
V5.1.1 before V5.1.2
affected
Default status
unknown
V5.1.1 before V5.1.2
affected
Default status
unknown
V5.1.1 before V5.1.3
affected
Default status
unknown
V5.1.1 before V5.1.2
affected
Default status
unknown
V5.1.1 before V5.1.2
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions >= 4.2
affected
Default status
unknown
All versions < V2.0.0
affected
Default status
unknown
All versions < V3.3.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before V6.0.10
affected
Default status
unknown
All versions < V10.1.1
affected
Default status
unknown
Any version before V8.2.3
affected
Default status
unknown
Any version before V1.1.10
affected
Default status
unknown
Any version before V1.2.1
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
Any version before V1.5 SP1
affected
Default status
unknown
Any version before V4.7.14
affected
Default status
unknown
Any version before V4.7.14
affected
Default status
unknown
Any version before V4.7 SP14
affected
Default status
unknown
Any version before V5.2.3.13
affected
Default status
unknown
Any version before V5.2.3.13
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before V5.2 SP3 HF13
affected
Default status
unknown
Any version before V5.2.3.13
affected
Default status
unknown
Any version before V5.2 SP3 HF18
affected
Default status
unknown
Any version before V1.04.04
affected
Default status
unknown
V4.2.0 before *
affected
Default status
unknown
V4.2.0 before *
affected
Default status
unknown
V4.2.0 before *
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
V4.2.0 before *
affected
Default status
unknown
V4.2.0 before *
affected
Default status
unknown
V4.2.0 before *
affected
Default status
unknown
V4.2.0 before *
affected
Default status
unknown
V4.2.0 before *
affected
Default status
unknown
V4.2.0 before *
affected
Default status
unknown
V4.2.0 before *
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions
affected
Default status
unknown
All versions >= 4.2
affected
Default status
unknown
All versions < V3.3.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
All versions < V3.2.19
affected
Default status
unknown
Any version before *
affected
Default status
unknown
Any version before *
affected
References
cert-portal.siemens.com/productcert/pdf/ssa-446448.pdf
cert-portal.siemens.com/productcert/html/ssa-446448.html
cve.org (CVE-2022-25622)
nvd.nist.gov (CVE-2022-25622)
Download JSON