CVE-2022-27194

moderate-risk
Published 2022-04-12

A vulnerability has been identified in SIMATIC PCS neo (Administration Console) (All versions < V3.1 SP1), SINETPLAN (All versions), TIA Portal (V15, V15.1, V16 and V17). The affected system cannot properly process specially crafted packets sent to port 8888/tcp. A remote attacker could exploit this vulnerability to cause a Denial-of-Service condition. The affected devices must be restarted manually.

Do I need to act?

-
0.16% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10 High
NETWORK / LOW complexity

Affected Products (7)

Sinetplan
Totally Integrated Automation Portal
Totally Integrated Automation Portal
Totally Integrated Automation Portal
Totally Integrated Automation Portal

Affected Vendors

Siemens

References (2)

Mitigation https://cert-portal.siemens.com/productcert/pdf/ssa-711829.pdf
Mitigation https://cert-portal.siemens.com/productcert/pdf/ssa-711829.pdf
41
/ 100
moderate-risk
Severity 26/34 · High
Exploitability 1/34 · Minimal
Exposure 14/34 · Moderate