{"api_version":"1","generated_at":"2026-04-22T22:49:06+00:00","cve":"CVE-2019-19301","urls":{"html":"https://cve.report/CVE-2019-19301","api":"https://cve.report/api/cve/CVE-2019-19301.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2019-19301","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2019-19301"},"summary":{"title":"CVE-2019-19301","description":"A vulnerability has been identified in SCALANCE X200-4P IRT, SCALANCE X201-3P IRT, SCALANCE X201-3P IRT PRO, SCALANCE X202-2IRT, SCALANCE X202-2P IRT, SCALANCE X202-2P IRT PRO, SCALANCE X204-2, SCALANCE X204-2FM, SCALANCE X204-2LD, SCALANCE X204-2LD TS, SCALANCE X204-2TS, SCALANCE X204IRT, SCALANCE X204IRT PRO, SCALANCE X206-1, SCALANCE X206-1LD, SCALANCE X208, SCALANCE X208PRO, SCALANCE X212-2, SCALANCE X212-2LD, SCALANCE X216, SCALANCE X224, SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (24V, coated), SCALANCE X302-7 EEC (24V), SCALANCE X302-7 EEC (2x 230V, coated), SCALANCE X302-7 EEC (2x 230V), SCALANCE X302-7 EEC (2x 24V, coated), SCALANCE X302-7 EEC (2x 24V), SCALANCE X304-2FE, SCALANCE X306-1LD FE, SCALANCE X307-2 EEC (230V, coated), SCALANCE X307-2 EEC (230V), SCALANCE X307-2 EEC (24V, coated), SCALANCE X307-2 EEC (24V), SCALANCE X307-2 EEC (2x 230V, coated), SCALANCE X307-2 EEC (2x 230V), SCALANCE X307-2 EEC (2x 24V, coated), SCALANCE X307-2 EEC (2x 24V), SCALANCE X307-3, SCALANCE X307-3, SCALANCE X307-3LD, SCALANCE X307-3LD, SCALANCE X308-2, SCALANCE X308-2, SCALANCE X308-2LD, SCALANCE X308-2LD, SCALANCE X308-2LH, SCALANCE X308-2LH, SCALANCE X308-2LH+, SCALANCE X308-2LH+, SCALANCE X308-2M, SCALANCE X308-2M, SCALANCE X308-2M PoE, SCALANCE X308-2M PoE, SCALANCE X308-2M TS, SCALANCE X308-2M TS, SCALANCE X310, SCALANCE X310, SCALANCE X310FE, SCALANCE X310FE, SCALANCE X320-1 FE, SCALANCE X320-1-2LD FE, SCALANCE X408-2, SCALANCE XF201-3P IRT, SCALANCE XF202-2P IRT, SCALANCE XF204, SCALANCE XF204-2, SCALANCE XF204-2BA IRT, SCALANCE XF204IRT, SCALANCE XF206-1, SCALANCE XF208, SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M TS (24V), SCALANCE XR324-12M TS (24V), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M PoE (230V, ports on front), SCALANCE XR324-4M PoE (230V, ports on rear), SCALANCE XR324-4M PoE (24V, ports on front), SCALANCE XR324-4M PoE (24V, ports on rear), SCALANCE XR324-4M PoE TS (24V, ports on front), SIMATIC CP 343-1 Advanced, SIMATIC CP 442-1 RNA, SIMATIC CP 443-1, SIMATIC CP 443-1, SIMATIC CP 443-1 Advanced, SIMATIC CP 443-1 RNA, SIMATIC RF180C, SIMATIC RF182C, SIPLUS NET CP 343-1 Advanced, SIPLUS NET CP 443-1, SIPLUS NET CP 443-1 Advanced, SIPLUS NET SCALANCE X308-2. The VxWorks-based Profinet TCP Stack can be forced to make very expensive calls for every incoming packet which can lead to a denial of service.","state":"PUBLIC","assigner":"productcert@siemens.com","published_at":"2020-04-14 20:15:00","updated_at":"2023-04-11 10:15:00"},"problem_types":["CWE-400"],"metrics":[],"references":[{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-102233.pdf","name":"https://cert-portal.siemens.com/productcert/pdf/ssa-102233.pdf","refsource":"MISC","tags":["Vendor Advisory"],"title":"","mime":"application/pdf","httpstatus":"200","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2019-19301","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2019-19301","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2019","cve_id":"19301","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_x-200irt","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_x-200irt","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_x-200irt_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_x-200irt_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_x-200irt_pro","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_x-200irt_pro","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_x-200irt_pro_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_x-200irt_pro_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_x-300","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_x-300","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_x-300_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_x-300_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_xb-200","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_xb-200","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_xb-200_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_xb-200_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_xc-200","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_xc-200","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_xc-200_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_xc-200_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_xf-200","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_xf-200","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_xf-200_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_xf-200_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_xp-200","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_xp-200","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_xp-200_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_xp-200_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_xr-300","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_xr-300","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_xr-300wg","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"scalance_xr-300wg","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_xr-300wg_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_xr-300wg_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_xr-300_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"scalance_xr-300_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"simatic_cp_443-1","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"simatic_cp_443-1","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"simatic_cp_443-1_advanced","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"simatic_cp_443-1_advanced","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"simatic_cp_443-1_advanced_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"simatic_cp_443-1_advanced_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"simatic_cp_443-1_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"simatic_cp_443-1_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"simatic_rf180c","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"simatic_rf180c","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"simatic_rf180c_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"simatic_rf180c_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"-1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"simatic_rf182c","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"0","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"siemens","cpe5":"simatic_rf182c","cpe6":"-","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"simatic_rf182c_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2019","cve_id":"19301","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"siemens","cpe5":"simatic_rf182c_firmware","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"data_version":"4.0","data_type":"CVE","data_format":"MITRE","CVE_data_meta":{"ID":"CVE-2019-19301","ASSIGNER":"productcert@siemens.com","STATE":"PUBLIC"},"description":{"description_data":[{"lang":"eng","value":"A vulnerability has been identified in SCALANCE X200-4P IRT, SCALANCE X201-3P IRT, SCALANCE X201-3P IRT PRO, SCALANCE X202-2IRT, SCALANCE X202-2P IRT, SCALANCE X202-2P IRT PRO, SCALANCE X204-2, SCALANCE X204-2FM, SCALANCE X204-2LD, SCALANCE X204-2LD TS, SCALANCE X204-2TS, SCALANCE X204IRT, SCALANCE X204IRT PRO, SCALANCE X206-1, SCALANCE X206-1LD, SCALANCE X208, SCALANCE X208PRO, SCALANCE X212-2, SCALANCE X212-2LD, SCALANCE X216, SCALANCE X224, SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (24V, coated), SCALANCE X302-7 EEC (24V), SCALANCE X302-7 EEC (2x 230V, coated), SCALANCE X302-7 EEC (2x 230V), SCALANCE X302-7 EEC (2x 24V, coated), SCALANCE X302-7 EEC (2x 24V), SCALANCE X304-2FE, SCALANCE X306-1LD FE, SCALANCE X307-2 EEC (230V, coated), SCALANCE X307-2 EEC (230V), SCALANCE X307-2 EEC (24V, coated), SCALANCE X307-2 EEC (24V), SCALANCE X307-2 EEC (2x 230V, coated), SCALANCE X307-2 EEC (2x 230V), SCALANCE X307-2 EEC (2x 24V, coated), SCALANCE X307-2 EEC (2x 24V), SCALANCE X307-3, SCALANCE X307-3, SCALANCE X307-3LD, SCALANCE X307-3LD, SCALANCE X308-2, SCALANCE X308-2, SCALANCE X308-2LD, SCALANCE X308-2LD, SCALANCE X308-2LH, SCALANCE X308-2LH, SCALANCE X308-2LH+, SCALANCE X308-2LH+, SCALANCE X308-2M, SCALANCE X308-2M, SCALANCE X308-2M PoE, SCALANCE X308-2M PoE, SCALANCE X308-2M TS, SCALANCE X308-2M TS, SCALANCE X310, SCALANCE X310, SCALANCE X310FE, SCALANCE X310FE, SCALANCE X320-1 FE, SCALANCE X320-1-2LD FE, SCALANCE X408-2, SCALANCE XF201-3P IRT, SCALANCE XF202-2P IRT, SCALANCE XF204, SCALANCE XF204-2, SCALANCE XF204-2BA IRT, SCALANCE XF204IRT, SCALANCE XF206-1, SCALANCE XF208, SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M TS (24V), SCALANCE XR324-12M TS (24V), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M PoE (230V, ports on front), SCALANCE XR324-4M PoE (230V, ports on rear), SCALANCE XR324-4M PoE (24V, ports on front), SCALANCE XR324-4M PoE (24V, ports on rear), SCALANCE XR324-4M PoE TS (24V, ports on front), SIMATIC CP 343-1 Advanced, SIMATIC CP 442-1 RNA, SIMATIC CP 443-1, SIMATIC CP 443-1, SIMATIC CP 443-1 Advanced, SIMATIC CP 443-1 RNA, SIMATIC RF180C, SIMATIC RF182C, SIPLUS NET CP 343-1 Advanced, SIPLUS NET CP 443-1, SIPLUS NET CP 443-1 Advanced, SIPLUS NET SCALANCE X308-2. The VxWorks-based Profinet TCP Stack can be forced to make very expensive calls for every incoming packet which can lead to a denial of service."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-400: Uncontrolled Resource Consumption","cweId":"CWE-400"}]}]},"affects":{"vendor":{"vendor_data":[{"vendor_name":"Siemens","product":{"product_data":[{"product_name":"SCALANCE X200-4P IRT","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.5.0"}]}},{"product_name":"SCALANCE X201-3P IRT","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.5.0"}]}},{"product_name":"SCALANCE X201-3P IRT PRO","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.5.0"}]}},{"product_name":"SCALANCE X202-2IRT","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.5.0"}]}},{"product_name":"SCALANCE X202-2P IRT","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.5.0"}]}},{"product_name":"SCALANCE X202-2P IRT PRO","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.5.0"}]}},{"product_name":"SCALANCE X204-2","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE X204-2FM","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE X204-2LD","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE X204-2LD TS","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE X204-2TS","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE X204IRT","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.5.0"}]}},{"product_name":"SCALANCE X204IRT PRO","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.5.0"}]}},{"product_name":"SCALANCE X206-1","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE X206-1LD","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE X208","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE X208PRO","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE X212-2","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE X212-2LD","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE X216","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE X224","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE X302-7 EEC (230V, coated)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X302-7 EEC (230V)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X302-7 EEC (24V, coated)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X302-7 EEC (24V)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X302-7 EEC (2x 230V, coated)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X302-7 EEC (2x 230V)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X302-7 EEC (2x 24V, coated)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X302-7 EEC (2x 24V)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X304-2FE","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X306-1LD FE","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X307-2 EEC (230V, coated)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X307-2 EEC (230V)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X307-2 EEC (24V, coated)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X307-2 EEC (24V)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X307-2 EEC (2x 230V, coated)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X307-2 EEC (2x 230V)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X307-2 EEC (2x 24V, coated)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X307-2 EEC (2x 24V)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X307-3","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X307-3LD","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X308-2","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X308-2LD","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X308-2LH","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X308-2LH+","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X308-2M","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X308-2M PoE","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X308-2M TS","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X310","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X310FE","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X320-1 FE","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X320-1-2LD FE","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE X408-2","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XF201-3P IRT","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.5.0"}]}},{"product_name":"SCALANCE XF202-2P IRT","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.5.0"}]}},{"product_name":"SCALANCE XF204","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE XF204-2","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE XF204-2BA IRT","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.5.0"}]}},{"product_name":"SCALANCE XF204IRT","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.5.0"}]}},{"product_name":"SCALANCE XF206-1","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE XF208","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V5.2.5"}]}},{"product_name":"SCALANCE XR324-12M (230V, ports on front)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-12M (230V, ports on rear)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-12M (24V, ports on front)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-12M (24V, ports on rear)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-12M TS (24V)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-4M EEC (24V, ports on front)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-4M EEC (24V, ports on rear)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-4M EEC (2x 24V, ports on front)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-4M EEC (2x 24V, ports on rear)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"},{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-4M PoE (230V, ports on front)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-4M PoE (230V, ports on rear)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-4M PoE (24V, ports on front)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-4M PoE (24V, ports on rear)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SCALANCE XR324-4M PoE TS (24V, ports on front)","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}},{"product_name":"SIMATIC CP 343-1 Advanced","version":{"version_data":[{"version_affected":"=","version_value":"All versions"}]}},{"product_name":"SIMATIC CP 442-1 RNA","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V1.5.18"}]}},{"product_name":"SIMATIC CP 443-1","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V3.3"},{"version_affected":"=","version_value":"All versions < V3.3"}]}},{"product_name":"SIMATIC CP 443-1 Advanced","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V3.3"}]}},{"product_name":"SIMATIC CP 443-1 RNA","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V1.5.18"}]}},{"product_name":"SIMATIC RF180C","version":{"version_data":[{"version_affected":"=","version_value":"All versions"}]}},{"product_name":"SIMATIC RF182C","version":{"version_data":[{"version_affected":"=","version_value":"All versions"}]}},{"product_name":"SIPLUS NET CP 343-1 Advanced","version":{"version_data":[{"version_affected":"=","version_value":"All versions"}]}},{"product_name":"SIPLUS NET CP 443-1","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V3.3"}]}},{"product_name":"SIPLUS NET CP 443-1 Advanced","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V3.3"}]}},{"product_name":"SIPLUS NET SCALANCE X308-2","version":{"version_data":[{"version_affected":"=","version_value":"All versions < V4.1.4"}]}}]}}]}},"references":{"reference_data":[{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-102233.pdf","refsource":"MISC","name":"https://cert-portal.siemens.com/productcert/pdf/ssa-102233.pdf"}]},"impact":{"cvss":[{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:U/RC:C","baseScore":7.5,"baseSeverity":"HIGH"}]}},"nvd":{"publishedDate":"2020-04-14 20:15:00","lastModifiedDate":"2023-04-11 10:15:00","problem_types":["CWE-400"],"metrics":{"baseMetricV3":{"cvssV3":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH","baseScore":7.5,"baseSeverity":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6},"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL","baseScore":5},"severity":"MEDIUM","exploitabilityScore":10,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:siemens:scalance_xc-200_firmware:*:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:siemens:scalance_xc-200:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:siemens:scalance_xf-200_firmware:*:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:siemens:scalance_xf-200:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:siemens:scalance_xp-200_firmware:*:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:siemens:scalance_xp-200:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:siemens:scalance_xb-200_firmware:*:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:siemens:scalance_xb-200:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:siemens:scalance_x-200irt_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"5.5.0","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:siemens:scalance_x-200irt:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:siemens:scalance_x-200irt_pro_firmware:*:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:siemens:scalance_x-200irt_pro:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:siemens:scalance_xr-300wg_firmware:*:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:siemens:scalance_xr-300wg:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:siemens:scalance_x-300_firmware:*:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:siemens:scalance_x-300:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:siemens:scalance_xr-300_firmware:*:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:siemens:scalance_xr-300:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:siemens:simatic_cp_443-1_firmware:*:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:siemens:simatic_cp_443-1:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:siemens:simatic_cp_443-1_advanced_firmware:*:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:siemens:simatic_cp_443-1_advanced:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:siemens:simatic_rf180c_firmware:*:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:siemens:simatic_rf180c:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]},{"operator":"AND","children":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:o:siemens:simatic_rf182c_firmware:*:*:*:*:*:*:*:*","cpe_name":[]}]},{"operator":"OR","children":[],"cpe_match":[{"vulnerable":false,"cpe23Uri":"cpe:2.3:h:siemens:simatic_rf182c:-:*:*:*:*:*:*:*","cpe_name":[]}]}],"cpe_match":[]}]}},"legacy_mitre":{"record":{"CveYear":"2019","CveId":"19301","Ordinal":"160870","Title":"CVE-2019-19301","CVE":"CVE-2019-19301","Year":"2019"},"notes":[{"CveYear":"2019","CveId":"19301","Ordinal":"1","NoteData":"A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.5), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.5.0), SCALANCE X-300 switch family (incl. X408 and SIPLUS NET variants) (All versions), SIMATIC CP 442-1 RNA (All versions), SIMATIC CP 443-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 RNA (All versions), SIMATIC RF180C (All versions), SIMATIC RF182C (All versions). The VxWorks-based Profinet TCP Stack can be forced to make very expensive calls for every incoming packet which can lead to a denial of service.","Type":"Description","Title":null},{"CveYear":"2019","CveId":"19301","Ordinal":"2","NoteData":"2020-04-14","Type":"Other","Title":"Published"},{"CveYear":"2019","CveId":"19301","Ordinal":"3","NoteData":"2022-02-09","Type":"Other","Title":"Modified"}]}}}