CVE-2020-7588
Summary
| CVE | CVE-2020-7588 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-07-14 14:15:00 UTC |
| Updated | 2023-01-30 19:52:00 UTC |
| Description | A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2), Opcenter Execution Foundation (All versions < V3.2), Opcenter Execution Process (All versions < V3.2), Opcenter Intelligence (All versions < V3.3), Opcenter Quality (All versions < V11.3), Opcenter RD&L (V8.0), SIMATIC IT LMS (All versions < V2.6), SIMATIC IT Production Suite (All versions < V8.0), SIMATIC Notifier Server for Windows (All versions), SIMATIC PCS neo (All versions < V3.0 SP1), SIMATIC STEP 7 (TIA Portal) V15 (All versions < V15.1 Update 5), SIMATIC STEP 7 (TIA Portal) V16 (All versions < V16 Update 2), SIMOCODE ES V15.1 (All versions < V15.1 Update 4), SIMOCODE ES V16 (All versions < V16 Update 1), Soft Starter ES V15.1 (All versions < V15.1 Update 3), Soft Starter ES V16 (All versions < V16 Update 1). Sending a specially crafted packet to the affected service could cause a partial remote denial-of-service, that would cause the service to restart itself. |
Risk And Classification
Problem Types: CWE-20
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Siemens | Opcenter Execution Discrete | All | All | All | All |
| Application | Siemens | Opcenter Execution Discrete | All | All | All | All |
| Application | Siemens | Opcenter Execution Foundation | All | All | All | All |
| Application | Siemens | Opcenter Execution Foundation | All | All | All | All |
| Application | Siemens | Opcenter Execution Process | All | All | All | All |
| Application | Siemens | Opcenter Execution Process | All | All | All | All |
| Application | Siemens | Opcenter Intelligence | All | All | All | All |
| Application | Siemens | Opcenter Intelligence | All | All | All | All |
| Application | Siemens | Opcenter Quality | All | All | All | All |
| Application | Siemens | Opcenter Quality | All | All | All | All |
| Application | Siemens | Opcenter Rdl | 8.0 | All | All | All |
| Application | Siemens | Opcenter Rdl | 8.0 | All | All | All |
| Application | Siemens | Simatic It Lms | All | All | All | All |
| Application | Siemens | Simatic It Lms | All | All | All | All |
| Application | Siemens | Simatic It Production Suite | All | All | All | All |
| Application | Siemens | Simatic It Production Suite | All | All | All | All |
| Application | Siemens | Simatic Notifier Server | All | All | All | All |
| Application | Siemens | Simatic Notifier Server | All | All | All | All |
| Application | Siemens | Simatic Pcs Neo | All | All | All | All |
| Application | Siemens | Simatic Pcs Neo | All | All | All | All |
| Application | Siemens | Simatic Step 7 | 16 | - | All | All |
| Application | Siemens | Simatic Step 7 | 16 | update_1 | All | All |
| Application | Siemens | Simatic Step 7 | 16 | - | All | All |
| Application | Siemens | Simatic Step 7 | 16 | update_1 | All | All |
| Application | Siemens | Simatic Step 7 | All | All | All | All |
| Application | Siemens | Simocode Es | All | All | All | All |
| Application | Siemens | Simocode Es | All | All | All | All |
| Application | Siemens | Soft Starter Es | All | All | All | All |
| Application | Siemens | Soft Starter Es | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| cert-portal.siemens.com/productcert/pdf/ssa-841348.pdf | MISC | cert-portal.siemens.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 590496 Siemens UMC Stack (Update H) Multiple Vulnerabilities(ICSA-20-196-05)