OPC UA C++ Stack Integer Overflow DaS - CVE-2023-28831
CVE-2023-28831 Published on September 12, 2023

The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation. This could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate.

NVD

Weakness Type

Integer Overflow or Wraparound

The software performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control. An integer overflow or wraparound occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may wrap to become a very small or negative number. While this may be intended behavior in circumstances that rely on wrapping, it can have security consequences if the wrap is unexpected. This is especially the case if the integer overflow can be triggered using user-supplied inputs. This becomes security-critical when the result is used to control looping, make a security decision, or determine the offset or size in behaviors such as memory allocation, copying, concatenation, etc.

Products Associated with CVE-2023-28831

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-28831 are published in these products:

Siemens Simatic Pcs 7

Siemens Simatic Pcs Neo

Siemens Simatic S7 1500 Software Controller

Siemens Simatic S7 Plcsim Advanced

Siemens Simatic Wincc

Affected Versions

Siemens SIMATIC BRAUMAT:

Before V8.1 SP1 is affected.

Siemens SIMATIC Cloud Connect 7 CC712:

Before V2.2 is affected.

Siemens SIMATIC Cloud Connect 7 CC716:

Before V2.2 is affected.

Siemens SIMATIC Comfort/Mobile RT:

Before * is affected.

Siemens SIMATIC Drive Controller CPU 1504D TF:

Before V2.9.7 is affected.

Siemens SIMATIC Drive Controller CPU 1504D TF:

Version V3.0.1 and below V3.0.3 is affected.

Siemens SIMATIC Drive Controller CPU 1507D TF:

Before V2.9.7 is affected.

Siemens SIMATIC Drive Controller CPU 1507D TF:

Version V3.0.1 and below V3.0.3 is affected.

Siemens SIMATIC ET 200SP CPU 1510SP F-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC ET 200SP CPU 1510SP F-1 PN:

Before V3.0.3 is affected.

Siemens SIMATIC ET 200SP CPU 1510SP-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC ET 200SP CPU 1510SP-1 PN:

Before V3.0.3 is affected.

Siemens SIMATIC ET 200SP CPU 1512SP F-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC ET 200SP CPU 1512SP F-1 PN:

Before V3.0.3 is affected.

Siemens SIMATIC ET 200SP CPU 1512SP-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC ET 200SP CPU 1512SP-1 PN:

Before V3.0.3 is affected.

Siemens SIMATIC ET 200SP CPU 1514SP F-2 PN:

Before V3.0.3 is affected.

Siemens SIMATIC ET 200SP CPU 1514SP-2 PN:

Before V3.0.3 is affected.

Siemens SIMATIC ET 200SP CPU 1514SPT F-2 PN:

Before V3.0.3 is affected.

Siemens SIMATIC ET 200SP CPU 1514SPT-2 PN:

Before V3.0.3 is affected.

Siemens SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants):

Before V21.9.7 is affected.

Siemens SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants):

Version V30.0.0 and below V30.1.0 is affected.

Siemens SIMATIC IPC DiagMonitor:

Before * is affected.

Siemens SIMATIC NET PC Software V14:

Before * is affected.

Siemens SIMATIC NET PC Software V16:

Before V16 Update 8 is affected.

Siemens SIMATIC NET PC Software V17:

Before V17 SP1 Update 1 is affected.

Siemens SIMATIC NET PC Software V18:

Before V18 Update 1 is affected.

Siemens SIMATIC PCS 7 V9.1:

Before V9.1 SP2 UC08 is affected.

Siemens SIMATIC PCS neo V4.0:

Before * is affected.

Siemens SIMATIC S7-1500 CPU 1511-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1511-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1511-1 PN:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1511C-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1511C-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1511F-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1511F-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1511F-1 PN:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1511T-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1511T-1 PN:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1511TF-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1511TF-1 PN:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1512C-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1512C-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1513-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1513-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1513-1 PN:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1513F-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1513F-1 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1513F-1 PN:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1515-2 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1515-2 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1515-2 PN:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1515F-2 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1515F-2 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1515F-2 PN:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1515T-2 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1515T-2 PN:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1515TF-2 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1515TF-2 PN:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1516-3 PN/DP:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1516-3 PN/DP:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1516-3 PN/DP:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1516F-3 PN/DP:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1516F-3 PN/DP:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU 1516F-3 PN/DP:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1516T-3 PN/DP:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1516TF-3 PN/DP:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1517-3 PN/DP:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1517F-3 PN/DP:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1517T-3 PN/DP:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1517TF-3 PN/DP:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1518-4 PN/DP:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1518-4 PN/DP MFP:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1518F-4 PN/DP:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1518T-4 PN/DP:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU 1518TF-4 PN/DP:

Before V3.0.3 is affected.

Siemens SIMATIC S7-1500 CPU S7-1518-4 PN/DP ODK:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 CPU S7-1518F-4 PN/DP ODK:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 ET 200pro: CPU 1513PRO F-2 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 ET 200pro: CPU 1513PRO-2 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 ET 200pro: CPU 1516PRO F-2 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 ET 200pro: CPU 1516PRO-2 PN:

Before V2.9.7 is affected.

Siemens SIMATIC S7-1500 Software Controller V2:

Before V21.9.7 is affected.

Siemens SIMATIC S7-1500 Software Controller V3:

Before V30.1.0 is affected.

Siemens SIMATIC S7-PLCSIM Advanced:

Before V5.0 Update 2 is affected.

Siemens SIMATIC SISTAR:

Before V8.1 SP1 is affected.

Siemens SIMATIC WinCC OA V3.17:

Before V3.17 P029 is affected.

Siemens SIMATIC WinCC OA V3.18:

Before V3.18 P019 is affected.

Siemens SIMATIC WinCC OA V3.19:

Before V3.19 P005 is affected.

Siemens SIMATIC WinCC OPC UA Client:

Before V2.0.0.1 is affected.

Siemens SIMATIC WinCC Runtime Professional V16:

Before * is affected.

Siemens SIMATIC WinCC Runtime Professional V17:

Before * is affected.

Siemens SIMATIC WinCC Runtime Professional V18:

Before * is affected.

Siemens SIMATIC WinCC Runtime Professional V19:

Before V19 Update 2 is affected.

Siemens SIMATIC WinCC Unified OPC UA Server:

Before V5.0.0.0 is affected.

Siemens SIMATIC WinCC V7.4:

Before * is affected.

Siemens SIMATIC WinCC V7.5:

Before V7.5 SP2 Update 20 is affected.

Siemens SIMATIC WinCC V8.0:

Before V8.0 Update 5 is affected.

Siemens SINUMERIK MC:

Before V1.22 is affected.

Siemens SINUMERIK ONE:

Before V6.22 is affected.

Siemens SIPLUS ET 200SP CPU 1510SP F-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS ET 200SP CPU 1510SP F-1 PN RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS ET 200SP CPU 1510SP-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS ET 200SP CPU 1510SP-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS ET 200SP CPU 1510SP-1 PN RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS ET 200SP CPU 1510SP-1 PN RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS ET 200SP CPU 1512SP F-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS ET 200SP CPU 1512SP F-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS ET 200SP CPU 1512SP F-1 PN RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS ET 200SP CPU 1512SP F-1 PN RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS ET 200SP CPU 1512SP-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS ET 200SP CPU 1512SP-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS ET 200SP CPU 1512SP-1 PN RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS ET 200SP CPU 1512SP-1 PN RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1511-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1511-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1511-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1511-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1511-1 PN T1 RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1511-1 PN T1 RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1511-1 PN TX RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1511-1 PN TX RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1511F-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1511F-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1513-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1513-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1513-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1513-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1513F-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1513F-1 PN:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1515F-2 PN:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1515F-2 PN:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1515F-2 PN RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1515F-2 PN T2 RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1516-3 PN/DP:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1516-3 PN/DP:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1516-3 PN/DP:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1516-3 PN/DP:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1516-3 PN/DP RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1516-3 PN/DP TX RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1516F-3 PN/DP:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1516F-3 PN/DP:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1516F-3 PN/DP RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1516F-3 PN/DP RAIL:

Before V2.9.7 is affected.

Siemens SIPLUS S7-1500 CPU 1518-4 PN/DP:

Before V3.0.3 is affected.

Siemens SIPLUS S7-1500 CPU 1518-4 PN/DP MFP:

Before V3.0.3 is affected.

Siemens SIPLUS S7-1500 CPU 1518F-4 PN/DP:

Before V3.0.3 is affected.

Exploit Probability

EPSS

0.43%

Percentile

62.00%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

OPC UA C++ Stack Integer Overflow DaS - CVE-2023-28831CVE-2023-28831 Published on September 12, 2023

Weakness Type

Integer Overflow or Wraparound

Products Associated with CVE-2023-28831

Affected Versions

Exploit Probability

OPC UA C++ Stack Integer Overflow DaS - CVE-2023-28831
CVE-2023-28831 Published on September 12, 2023