siemens sinumerik-828d CVE-2019-10936 vulnerability in Siemens Products
Published on October 10, 2019

Affected devices improperly handle large amounts of specially crafted UDP packets. This could allow an unauthenticated remote attacker to trigger a denial of service condition.

NVD

Weakness Type

What is a Resource Exhaustion Vulnerability?

The software does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

CVE-2019-10936 has been classified to as a Resource Exhaustion vulnerability or weakness.


Products Associated with CVE-2019-10936

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-10936 are published in these products:

 
 

Affected Versions

Siemens Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller: Siemens Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200: Siemens Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P: Siemens SIMATIC CFU PA: Siemens SIMATIC ET 200AL IM 157-1 PN: Siemens SIMATIC ET 200M (incl. SIPLUS variants): Siemens SIMATIC ET 200MP IM 155-5 PN BA: Siemens SIMATIC ET 200MP IM 155-5 PN HF: Siemens SIMATIC ET 200MP IM 155-5 PN ST: Siemens SIMATIC ET 200MP IM 155-5 PN ST: Siemens SIMATIC ET 200pro IM 154-3 PN HF: Siemens SIMATIC ET 200pro IM 154-4 PN HF: Siemens SIMATIC ET 200pro IM 154-8 PN/DP CPU: Siemens SIMATIC ET 200pro IM 154-8F PN/DP CPU: Siemens SIMATIC ET 200pro IM 154-8FX PN/DP CPU: Siemens SIMATIC ET 200S IM 151-8 PN/DP CPU: Siemens SIMATIC ET 200S IM 151-8F PN/DP CPU: Siemens SIMATIC ET 200SP IM 155-6 PN BA: Siemens SIMATIC ET 200SP IM 155-6 PN HA (incl. SIPLUS variants): Siemens SIMATIC ET 200SP IM 155-6 PN HF: Siemens SIMATIC ET 200SP IM 155-6 PN HS: Siemens SIMATIC ET 200SP IM 155-6 PN ST: Siemens SIMATIC ET 200SP IM 155-6 PN ST: Siemens SIMATIC ET 200SP IM 155-6 PN ST BA: Siemens SIMATIC ET 200SP IM 155-6 PN ST BA: Siemens SIMATIC ET 200SP IM 155-6 PN/2 HF: Siemens SIMATIC ET 200SP IM 155-6 PN/3 HF: Siemens SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants): Siemens SIMATIC ET200ecoPN, 16DI, DC24V, 8xM12: Siemens SIMATIC ET200ecoPN, 16DO DC24V/1,3A, 8xM12: Siemens SIMATIC ET200ecoPN, 4AO U/I 4xM12: Siemens SIMATIC ET200ecoPN, 8 DIO, DC24V/1,3A, 8xM12: Siemens SIMATIC ET200ecoPN, 8 DO, DC24V/2A, 8xM12: Siemens SIMATIC ET200ecoPN, 8AI RTD/TC 8xM12: Siemens SIMATIC ET200ecoPN, 8AI; 4 U/I; 4 RTD/TC 8xM12: Siemens SIMATIC ET200ecoPN, 8DI, DC24V, 4xM12: Siemens SIMATIC ET200ecoPN, 8DI, DC24V, 8xM12: Siemens SIMATIC ET200ecoPN, 8DO, DC24V/0,5A, 4xM12: Siemens SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 4xM12: Siemens SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 8xM12: Siemens SIMATIC ET200ecoPN: IO-Link Master: Siemens SIMATIC ET200S (incl. SIPLUS variants): Siemens SIMATIC HMI Comfort Outdoor Panels (incl. SIPLUS variants): Siemens SIMATIC HMI Comfort Panels (incl. SIPLUS variants): Siemens SIMATIC HMI KTP Mobile Panels: Siemens SIMATIC PN/PN Coupler: Siemens SIMATIC PROFINET Driver: Siemens SIMATIC S7-1200 CPU family (incl. SIPLUS variants): Siemens SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants): Siemens SIMATIC S7-1500 Software Controller: Siemens SIMATIC S7-300 CPU 314C-2 PN/DP: Siemens SIMATIC S7-300 CPU 315-2 PN/DP: Siemens SIMATIC S7-300 CPU 315F-2 PN/DP: Siemens SIMATIC S7-300 CPU 315T-3 PN/DP: Siemens SIMATIC S7-300 CPU 317-2 PN/DP: Siemens SIMATIC S7-300 CPU 317F-2 PN/DP: Siemens SIMATIC S7-300 CPU 317T-3 PN/DP: Siemens SIMATIC S7-300 CPU 317TF-3 PN/DP: Siemens SIMATIC S7-300 CPU 319-3 PN/DP: Siemens SIMATIC S7-300 CPU 319F-3 PN/DP: Siemens SIMATIC S7-400 CPU 412-2 PN V7: Siemens SIMATIC S7-400 CPU 414-3 PN/DP V7: Siemens SIMATIC S7-400 CPU 414F-3 PN/DP V7: Siemens SIMATIC S7-400 CPU 416-3 PN/DP V7: Siemens SIMATIC S7-400 CPU 416F-3 PN/DP V7: Siemens SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants): Siemens SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants): Siemens SIMATIC S7-410 V8 CPU family (incl. SIPLUS variants): Siemens SIMATIC TDC CP51M1: Siemens SIMATIC TDC CPU555: Siemens SIMATIC WinAC RTX 2010: Siemens SIMATIC WinAC RTX F 2010: Siemens SINAMICS DCM: Siemens SINAMICS DCP: Siemens SINAMICS G110M V4.7 PN Control Unit: Siemens SINAMICS G120 V4.7 PN Control Unit (incl. SIPLUS variants): Siemens SINAMICS G130 V4.7 Control Unit: Siemens SINAMICS G150 Control Unit: Siemens SINAMICS GH150 V4.7 Control Unit: Siemens SINAMICS GL150 V4.7 Control Unit: Siemens SINAMICS GM150 V4.7 Control Unit: Siemens SINAMICS S110 Control Unit: Siemens SINAMICS S120 V4.7 Control Unit (incl. SIPLUS variants): Siemens SINAMICS S150 Control Unit: Siemens SINAMICS SL150 V4.7 Control Unit: Siemens SINAMICS SM120 V4.7 Control Unit: Siemens SINUMERIK 828D: Siemens SINUMERIK 840D sl: Siemens SIPLUS ET 200MP IM 155-5 PN HF: Siemens SIPLUS ET 200MP IM 155-5 PN HF: Siemens SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL: Siemens SIPLUS ET 200MP IM 155-5 PN ST: Siemens SIPLUS ET 200MP IM 155-5 PN ST: Siemens SIPLUS ET 200MP IM 155-5 PN ST TX RAIL: Siemens SIPLUS ET 200MP IM 155-5 PN ST TX RAIL: Siemens SIPLUS ET 200S IM 151-8 PN/DP CPU: Siemens SIPLUS ET 200S IM 151-8F PN/DP CPU: Siemens SIPLUS ET 200SP IM 155-6 PN HF: Siemens SIPLUS ET 200SP IM 155-6 PN HF: Siemens SIPLUS ET 200SP IM 155-6 PN HF: Siemens SIPLUS ET 200SP IM 155-6 PN HF: Siemens SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL: Siemens SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL: Siemens SIPLUS ET 200SP IM 155-6 PN HF TX RAIL: Siemens SIPLUS ET 200SP IM 155-6 PN ST: Siemens SIPLUS ET 200SP IM 155-6 PN ST: Siemens SIPLUS ET 200SP IM 155-6 PN ST BA: Siemens SIPLUS ET 200SP IM 155-6 PN ST BA: Siemens SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL: Siemens SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL: Siemens SIPLUS ET 200SP IM 155-6 PN ST TX RAIL: Siemens SIPLUS ET 200SP IM 155-6 PN ST TX RAIL: Siemens SIPLUS NET PN/PN Coupler: Siemens SIPLUS S7-300 CPU 314C-2 PN/DP: Siemens SIPLUS S7-300 CPU 315-2 PN/DP: Siemens SIPLUS S7-300 CPU 315F-2 PN/DP: Siemens SIPLUS S7-300 CPU 317-2 PN/DP: Siemens SIPLUS S7-300 CPU 317F-2 PN/DP: Siemens SIPLUS S7-400 CPU 414-3 PN/DP V7: Siemens SIPLUS S7-400 CPU 416-3 PN/DP V7: siemens dk_standard_ethernet_controller_firmware: siemens ek-ertec_200_firmware: siemens ek-ertec_200p_firmware: siemens simatic_cfu_pa: siemens simatic_et200ecopn_firmware: siemens simatic_et200s_firmware: siemens simatic_et_200al_firmware: siemens simatic_et_200m_firmware: siemens simatic_et_200mp_firmware: siemens simatic_et_200pro_firmware: siemens simatic_et_200s_firmware: siemens simatic_et_200sp_firmware: siemens simatic_hmi_comfort_outdoor_panels: siemens simatic_pn\/pn_coupler_6es7158-3ad01-0xa0: siemens simatic_profinet_driver: siemens simatic_s7-300_cpu_314_firmware: siemens simatic_s7-300_cpu_315-2_dp_firmware: siemens simatic_s7-300_cpu_315f-2_dp_firmware: siemens simatic_s7-300_cpu_317-2_dp_firmware: siemens simatic_s7-300_cpu_317-2_pn\/dp_firmware: siemens simatic_s7-300_cpu_319-3_pn\/dp_firmware: siemens simatic_s7-400_cpu_412-2_pn: siemens simatic_s7-400_cpu_414-3_pn\/dp: siemens simatic_s7-400_cpu_416-3_pn\/dp: siemens simatic_s7-400_h_v6_firmware: siemens simatic_s7-400_pn\/dp_v6_firmware: siemens simatic_s7-410_cpu_firmware: siemens simatic_s7-1200_cpu: siemens simatic_s7-1500_cpu: siemens simatic_s7-1500_controller: siemens simatic_tdc_cp51m1_firmware: siemens simatic_tdc_cpu555_firmware: siemens simatic_winac_rtx_2010: siemens simatic_winac_rtx_\(f\)_2010: siemens sinamics_dcm: siemens sinamics_dcp: siemens sinamics_g110m: siemens sinamics_g120: siemens sinamics_g130: siemens sinamics_g150: siemens sinamics_gh150: siemens sinamics_gl150: siemens sinamics_gm150: siemens sinamics_s110: siemens sinamics_s120: siemens sinamics_sl150: siemens sinamics_sl150: siemens sinamics_sm120: siemens sinumerik_828d: siemens sinumerik_840d_sl: siemens siplus_s7-300_cpu_314:

Exploit Probability

EPSS
1.99%
Percentile
83.35%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.