Vulnerabilities > CVE-2023-48431 - Improper Check for Unusual or Exceptional Conditions vulnerability in Siemens Sinec INS 1.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 2). Affected software does not correctly validate the response received by an UMC server. An attacker can use this to crash the affected software by providing and configuring a malicious UMC server or by manipulating the traffic from a legitimate UMC server (i.e. leveraging CVE-2023-48427).
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 5 |