Vulnerabilities > Siemens > Simatic CFU DIQ Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-04-12 CVE-2022-25622 Resource Exhaustion vulnerability in Siemens products
The PROFINET (PNIO) stack, when integrated with the Interniche IP stack, improperly handles internal resources for TCP segments where the minimum TCP-Header length is less than defined. This could allow an attacker to create a denial of service condition for TCP services on affected devices by sending specially crafted TCP segments.
network
low complexity
siemens CWE-400
7.5