Siemens SIMOTICS CONNECT 400 ICMP/TCP Protocol Handling Vulnerability (SSA-223353)

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. Vulnerability ID: SSA-223353 2. Affected Product: SIMOTICS CONNECT 400 3. Affected Versions: - V0.5.0.0 or earlier - V1.0.0.0 or earlier 4. Vulnerability Description: - ICMP echo packets with fake IP options allow sending ICMP echo reply messages to arbitrary hosts on the network. - The total length of an ICMP payload (set in the IP header) is unchecked. This may lead to various side effects, including Information Leak and Denial-of-Service conditions, depending on the network buffer organization in memory. - Malformed TCP packets with a corrupted SACK option lead to Information Leaks and Denial-of-Service conditions. - The total length of a TCP payload (set in the IP header) is unchecked. This may lead to various side effects, including Information Leak and Denial-of-Service conditions, depending on the network buffer organization in memory. 5. Remediation Recommendations: - Upgrade to V0.5.0.0 or later - Upgrade to V1.0.0.0 or later 6. Affected Products and Solutions: - SIMOTICS CONNECT 400: All versions < V0.5.0.0 - SIMOTICS CONNECT 400: All versions < V1.0.0.0 7. General Security Recommendations: - It is strongly recommended to protect network access to affected products using appropriate mechanisms. - It is recommended to follow recommended security practices to operate devices within a protected IT environment. This information helps users understand the vulnerability details, affected products and versions, remediation steps, and general security recommendations.

Goal Reached Thanks to every supporter — we hit 100%!

Siemens SIMOTICS CONNECT 400 ICMP/TCP Protocol Handling Vulnerability (SSA-223353)