Vulnerability-Lookup

CVE-2023-3019 (GCVE-0-2023-3019)

Vulnerability from cvelistv5 – Published: 2023-07-24 15:19 – Updated: 2026-05-12 10:12

Title

Qemu: e1000e: heap use-after-free in e1000e_write_packet_to_guest()

Summary

A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service.

Severity

6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

SSVC

Exploitation: none Automatable: no Technical Impact: partial

CISA Coordinator (v2.0.3)

CWE

CWE-416 - Use After Free

Assigner

redhat

References

9 references

URL	Tags
https://access.redhat.com/errata/RHSA-2024:0135	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0404	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:0569	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/errata/RHSA-2024:2135	vendor-advisoryx_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-3019	vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2222351	issue-trackingx_refsource_REDHAT
https://security.netapp.com/advisory/ntap-2023083…	x_transferred
https://lists.debian.org/debian-lts-announce/2025…
https://cert-portal.siemens.com/productcert/html/…

Impacted products

18 products

Vendor	Product	Version
Red Hat	Red Hat Enterprise Linux 8	Unaffected: 8090020231206155326.a75119d5 , < * (rpm) cpe:/a:redhat:enterprise_linux:8::crb cpe:/a:redhat:enterprise_linux:8::appstream
Red Hat	Red Hat Enterprise Linux 8.6 Extended Update Support	Unaffected: 8060020231128234847.ad008a3a , < * (rpm) cpe:/a:redhat:rhel_eus:8.6::appstream cpe:/a:redhat:rhel_eus:8.6::crb
Red Hat	Red Hat Enterprise Linux 8.8 Extended Update Support	Unaffected: 8080020240116113044.63b34585 , < * (rpm) cpe:/a:redhat:rhel_eus:8.8::appstream cpe:/a:redhat:rhel_eus:8.8::crb
Red Hat	Red Hat Enterprise Linux 9	Unaffected: 17:8.2.0-11.el9_4 , < * (rpm) cpe:/a:redhat:enterprise_linux:9::appstream
Red Hat	Red Hat Enterprise Linux 6	cpe:/o:redhat:enterprise_linux:6
Red Hat	Red Hat Enterprise Linux 7	cpe:/o:redhat:enterprise_linux:7
Red Hat	Red Hat Enterprise Linux 8 Advanced Virtualization	cpe:/a:redhat:advanced_virtualization:8::el8
Siemens	RUGGEDCOM ROX MX5000	Affected: 0 , < V2.17.1 (custom)
Siemens	RUGGEDCOM ROX MX5000RE	Affected: 0 , < V2.17.1 (custom)
Siemens	RUGGEDCOM ROX RX1400	Affected: 0 , < V2.17.1 (custom)
Siemens	RUGGEDCOM ROX RX1500	Affected: 0 , < V2.17.1 (custom)
Siemens	RUGGEDCOM ROX RX1501	Affected: 0 , < V2.17.1 (custom)
Siemens	RUGGEDCOM ROX RX1510	Affected: 0 , < V2.17.1 (custom)
Siemens	RUGGEDCOM ROX RX1511	Affected: 0 , < V2.17.1 (custom)
Siemens	RUGGEDCOM ROX RX1512	Affected: 0 , < V2.17.1 (custom)
Siemens	RUGGEDCOM ROX RX1524	Affected: 0 , < V2.17.1 (custom)
Siemens	RUGGEDCOM ROX RX1536	Affected: 0 , < V2.17.1 (custom)
Siemens	RUGGEDCOM ROX RX5000	Affected: 0 , < V2.17.1 (custom)

Date Public

2023-06-01 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2025-11-03T19:28:14.194Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "RHSA-2024:0135",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:0135"
          },
          {
            "name": "RHSA-2024:0404",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:0404"
          },
          {
            "name": "RHSA-2024:0569",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:0569"
          },
          {
            "name": "RHSA-2024:2135",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:2135"
          },
          {
            "tags": [
              "vdb-entry",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2023-3019"
          },
          {
            "name": "RHBZ#2222351",
            "tags": [
              "issue-tracking",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222351"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20230831-0005/"
          },
          {
            "url": "https://lists.debian.org/debian-lts-announce/2025/04/msg00042.html"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-3019",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-12-03T15:26:38.315489Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-12-03T15:26:51.793Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      },
      {
        "affected": [
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX MX5000",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.17.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX MX5000RE",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.17.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1400",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.17.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1500",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.17.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1501",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.17.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1510",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.17.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1511",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.17.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1512",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.17.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1524",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.17.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX1536",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.17.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          },
          {
            "defaultStatus": "unknown",
            "product": "RUGGEDCOM ROX RX5000",
            "vendor": "Siemens",
            "versions": [
              {
                "lessThan": "V2.17.1",
                "status": "affected",
                "version": "0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-12T10:12:38.346Z",
          "orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
          "shortName": "siemens-SADP"
        },
        "references": [
          {
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-577017.html"
          }
        ],
        "x_adpType": "supplier"
      }
    ],
    "cna": {
      "affected": [
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:8::crb",
            "cpe:/a:redhat:enterprise_linux:8::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "virt-devel:rhel",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8090020231206155326.a75119d5",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:8::crb",
            "cpe:/a:redhat:enterprise_linux:8::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "virt:rhel",
          "product": "Red Hat Enterprise Linux 8",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8090020231206155326.a75119d5",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:rhel_eus:8.6::appstream",
            "cpe:/a:redhat:rhel_eus:8.6::crb"
          ],
          "defaultStatus": "affected",
          "packageName": "virt-devel:rhel",
          "product": "Red Hat Enterprise Linux 8.6 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8060020231128234847.ad008a3a",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:rhel_eus:8.6::appstream",
            "cpe:/a:redhat:rhel_eus:8.6::crb"
          ],
          "defaultStatus": "affected",
          "packageName": "virt:rhel",
          "product": "Red Hat Enterprise Linux 8.6 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8060020231128234847.ad008a3a",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:rhel_eus:8.8::appstream",
            "cpe:/a:redhat:rhel_eus:8.8::crb"
          ],
          "defaultStatus": "affected",
          "packageName": "virt-devel:rhel",
          "product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8080020240116113044.63b34585",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:rhel_eus:8.8::appstream",
            "cpe:/a:redhat:rhel_eus:8.8::crb"
          ],
          "defaultStatus": "affected",
          "packageName": "virt:rhel",
          "product": "Red Hat Enterprise Linux 8.8 Extended Update Support",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "8080020240116113044.63b34585",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:enterprise_linux:9::appstream"
          ],
          "defaultStatus": "affected",
          "packageName": "qemu-kvm",
          "product": "Red Hat Enterprise Linux 9",
          "vendor": "Red Hat",
          "versions": [
            {
              "lessThan": "*",
              "status": "unaffected",
              "version": "17:8.2.0-11.el9_4",
              "versionType": "rpm"
            }
          ]
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:6"
          ],
          "defaultStatus": "unknown",
          "packageName": "qemu-kvm",
          "product": "Red Hat Enterprise Linux 6",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unknown",
          "packageName": "qemu-kvm",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/o:redhat:enterprise_linux:7"
          ],
          "defaultStatus": "unknown",
          "packageName": "qemu-kvm-ma",
          "product": "Red Hat Enterprise Linux 7",
          "vendor": "Red Hat"
        },
        {
          "collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
          "cpes": [
            "cpe:/a:redhat:advanced_virtualization:8::el8"
          ],
          "defaultStatus": "affected",
          "packageName": "virt:av/qemu-kvm",
          "product": "Red Hat Enterprise Linux 8 Advanced Virtualization",
          "vendor": "Red Hat"
        }
      ],
      "datePublic": "2023-06-01T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service."
        }
      ],
      "metrics": [
        {
          "other": {
            "content": {
              "namespace": "https://access.redhat.com/security/updates/classification/",
              "value": "Moderate"
            },
            "type": "Red Hat severity rating"
          }
        },
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "CVSS"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-416",
              "description": "Use After Free",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-01-27T10:54:54.278Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "RHSA-2024:0135",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:0135"
        },
        {
          "name": "RHSA-2024:0404",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:0404"
        },
        {
          "name": "RHSA-2024:0569",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:0569"
        },
        {
          "name": "RHSA-2024:2135",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/errata/RHSA-2024:2135"
        },
        {
          "tags": [
            "vdb-entry",
            "x_refsource_REDHAT"
          ],
          "url": "https://access.redhat.com/security/cve/CVE-2023-3019"
        },
        {
          "name": "RHBZ#2222351",
          "tags": [
            "issue-tracking",
            "x_refsource_REDHAT"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222351"
        }
      ],
      "timeline": [
        {
          "lang": "en",
          "time": "2023-07-12T00:00:00.000Z",
          "value": "Reported to Red Hat."
        },
        {
          "lang": "en",
          "time": "2023-06-01T00:00:00.000Z",
          "value": "Made public."
        }
      ],
      "title": "Qemu: e1000e: heap use-after-free in e1000e_write_packet_to_guest()",
      "x_generator": {
        "engine": "cvelib 1.8.0"
      },
      "x_redhatCweChain": "CWE-416: Use After Free"
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2023-3019",
    "datePublished": "2023-07-24T15:19:19.804Z",
    "dateReserved": "2023-05-31T14:08:11.910Z",
    "dateUpdated": "2026-05-12T10:12:38.346Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2023-3019",
      "date": "2026-06-05",
      "epss": "0.00013",
      "percentile": "0.02393"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-3019\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2023-07-24T16:15:12.253\",\"lastModified\":\"2026-05-12T10:16:39.570\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H\",\"baseScore\":6.0,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.5,\"impactScore\":4.0},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.0,\"impactScore\":4.0}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"8.2.0\",\"matchCriteriaId\":\"8298AC47-931D-466E-8EFF-6F9CD0F0E504\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:-:*:*:*\",\"matchCriteriaId\":\"053C1B35-3869-41C2-9551-044182DE0A64\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:advanced_virtualization:*:*:*\",\"matchCriteriaId\":\"3AA08768-75AF-4791-B229-AE938C780959\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2024:0135\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:0404\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:0569\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2135\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2023-3019\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2222351\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:0135\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:0404\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:0569\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2135\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2023-3019\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2222351\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2025/04/msg00042.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20230831-0005/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-577017.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2024:0135\", \"name\": \"RHSA-2024:0135\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:0404\", \"name\": \"RHSA-2024:0404\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:0569\", \"name\": \"RHSA-2024:0569\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2135\", \"name\": \"RHSA-2024:2135\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2023-3019\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2222351\", \"name\": \"RHBZ#2222351\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20230831-0005/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2025/04/msg00042.html\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-03T19:28:14.194Z\"}}, {\"affected\": [{\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX MX5000\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.17.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX MX5000RE\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.17.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1400\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.17.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1500\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.17.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1501\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.17.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1510\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.17.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1511\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.17.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1512\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.17.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1524\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.17.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1536\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.17.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX5000\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.17.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"x_adpType\": \"supplier\", \"references\": [{\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-577017.html\"}], \"providerMetadata\": {\"orgId\": \"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\", \"shortName\": \"siemens-SADP\", \"dateUpdated\": \"2026-05-12T10:12:38.346Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-3019\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-12-03T15:26:38.315489Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-12-03T15:26:42.817Z\"}}], \"cna\": {\"title\": \"Qemu: e1000e: heap use-after-free in e1000e_write_packet_to_guest()\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Moderate\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 6, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"HIGH\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::crb\", \"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8090020231206155326.a75119d5\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"virt-devel:rhel\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::crb\", \"cpe:/a:redhat:enterprise_linux:8::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8090020231206155326.a75119d5\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"virt:rhel\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:8.6::appstream\", \"cpe:/a:redhat:rhel_eus:8.6::crb\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.6 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8060020231128234847.ad008a3a\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"virt-devel:rhel\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:8.6::appstream\", \"cpe:/a:redhat:rhel_eus:8.6::crb\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.6 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8060020231128234847.ad008a3a\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"virt:rhel\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:8.8::appstream\", \"cpe:/a:redhat:rhel_eus:8.8::crb\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.8 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8080020240116113044.63b34585\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"virt-devel:rhel\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:rhel_eus:8.8::appstream\", \"cpe:/a:redhat:rhel_eus:8.8::crb\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8.8 Extended Update Support\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"8080020240116113044.63b34585\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"virt:rhel\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"17:8.2.0-11.el9_4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"qemu-kvm\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 6\", \"packageName\": \"qemu-kvm\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"qemu-kvm\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"qemu-kvm-ma\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/a:redhat:advanced_virtualization:8::el8\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8 Advanced Virtualization\", \"packageName\": \"virt:av/qemu-kvm\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2023-07-12T00:00:00.000Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2023-06-01T00:00:00.000Z\", \"value\": \"Made public.\"}], \"datePublic\": \"2023-06-01T00:00:00.000Z\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2024:0135\", \"name\": \"RHSA-2024:0135\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:0404\", \"name\": \"RHSA-2024:0404\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:0569\", \"name\": \"RHSA-2024:0569\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2135\", \"name\": \"RHSA-2024:2135\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2023-3019\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2222351\", \"name\": \"RHBZ#2222351\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}], \"x_generator\": {\"engine\": \"cvelib 1.8.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-416\", \"description\": \"Use After Free\"}]}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2026-01-27T10:54:54.278Z\"}, \"x_redhatCweChain\": \"CWE-416: Use After Free\"}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-3019\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-05-12T10:12:38.346Z\", \"dateReserved\": \"2023-05-31T14:08:11.910Z\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"datePublished\": \"2023-07-24T15:19:19.804Z\", \"assignerShortName\": \"redhat\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

alsa-2024:2135

Vulnerability from osv_almalinux

Published

2024-04-30 00:00

Modified

2024-05-07 15:04

Summary

Moderate: qemu-kvm security update

Details

Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM.

Security Fix(es):

QEMU: e1000e: heap use-after-free in e1000e_write_packet_to_guest() (CVE-2023-3019)
QEMU: VNC: infinite loop in inflate_buffer() leads to denial of service (CVE-2023-3255)
QEMU: improper IDE controller reset can lead to MBR overwrite (CVE-2023-5088)
QEMU: VNC: NULL pointer dereference in qemu_clipboard_request() (CVE-2023-6683)
QEMU: am53c974: denial of service due to division by zero (CVE-2023-42467)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Additional Changes:

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.

References

URL

Type

	https://access.redhat.com/errata/RHSA-2024:2135	ADVISORY
	https://access.redhat.com/security/cve/CVE-2023-3019	REPORT
	https://access.redhat.com/security/cve/CVE-2023-3255	REPORT
	https://access.redhat.com/security/cve/CVE-2023-42467	REPORT
	https://access.redhat.com/security/cve/CVE-2023-5088	REPORT
	https://access.redhat.com/security/cve/CVE-2023-6683	REPORT
	https://bugzilla.redhat.com/2218486	REPORT
	https://bugzilla.redhat.com/2222351	REPORT
	https://bugzilla.redhat.com/2238291	REPORT
	https://bugzilla.redhat.com/2247283	REPORT
	https://bugzilla.redhat.com/2254825	REPORT
	https://errata.almalinux.org/9/ALSA-2024-2135.html	ADVISORY

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-guest-agent"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-img"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-audio-pa"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-block-blkio"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-block-curl"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-block-rbd"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-common"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-core"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-device-display-virtio-gpu"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-device-display-virtio-gpu-ccw"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-device-display-virtio-gpu-pci"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-device-display-virtio-vga"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-device-usb-host"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-device-usb-redirect"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-docs"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-tools"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-ui-egl-headless"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-kvm-ui-opengl"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "AlmaLinux:9",
        "name": "qemu-pr-helper"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "17:8.2.0-11.el9_4"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "details": "Kernel-based Virtual Machine (KVM) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm packages provide the user-space component for running virtual machines that use KVM.\n\nSecurity Fix(es):\n\n* QEMU: e1000e: heap use-after-free in e1000e_write_packet_to_guest() (CVE-2023-3019)\n* QEMU: VNC: infinite loop in inflate_buffer() leads to denial of service (CVE-2023-3255)\n* QEMU: improper IDE controller reset can lead to MBR overwrite (CVE-2023-5088)\n* QEMU: VNC: NULL pointer dereference in qemu_clipboard_request() (CVE-2023-6683)\n* QEMU: am53c974: denial of service due to division by zero (CVE-2023-42467)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.",
  "id": "ALSA-2024:2135",
  "modified": "2024-05-07T15:04:25Z",
  "published": "2024-04-30T00:00:00Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://access.redhat.com/errata/RHSA-2024:2135"
    },
    {
      "type": "REPORT",
      "url": "https://access.redhat.com/security/cve/CVE-2023-3019"
    },
    {
      "type": "REPORT",
      "url": "https://access.redhat.com/security/cve/CVE-2023-3255"
    },
    {
      "type": "REPORT",
      "url": "https://access.redhat.com/security/cve/CVE-2023-42467"
    },
    {
      "type": "REPORT",
      "url": "https://access.redhat.com/security/cve/CVE-2023-5088"
    },
    {
      "type": "REPORT",
      "url": "https://access.redhat.com/security/cve/CVE-2023-6683"
    },
    {
      "type": "REPORT",
      "url": "https://bugzilla.redhat.com/2218486"
    },
    {
      "type": "REPORT",
      "url": "https://bugzilla.redhat.com/2222351"
    },
    {
      "type": "REPORT",
      "url": "https://bugzilla.redhat.com/2238291"
    },
    {
      "type": "REPORT",
      "url": "https://bugzilla.redhat.com/2247283"
    },
    {
      "type": "REPORT",
      "url": "https://bugzilla.redhat.com/2254825"
    },
    {
      "type": "ADVISORY",
      "url": "https://errata.almalinux.org/9/ALSA-2024-2135.html"
    }
  ],
  "related": [
    "CVE-2023-3019",
    "CVE-2023-3255",
    "CVE-2023-5088",
    "CVE-2023-6683",
    "CVE-2023-42467"
  ],
  "summary": "Moderate: qemu-kvm security update"
}

BDU:2024-04883

Vulnerability from fstec - Published: 24.07.2023

Title

Уязвимость компонента e1000e сервера QEMU, позволяющая нарушителю вызвать отказ в обслуживании

Description

Уязвимость компонента e1000e сервера QEMU связана с повторным входом DMA. Эксплуатация уязвимости может позволить нарушителю вызвать отказ в обслуживании

Severity


                    
                      AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Vendor

ООО «Ред Софт», ООО «РусБИТех-Астра», АО «ИВК», Fabrice Bellard, АО «НТЦ ИТ РОСА», АО "НППКТ"

Software Name

РЕД ОС (запись в едином реестре российских программ №3751), Astra Linux Special Edition (запись в едином реестре российских программ №369), АЛЬТ СП 10, QEMU, ROSA Virtualization 3.0 (запись в едином реестре российских программ №21308), ОСОН ОСнова Оnyx (запись в едином реестре российских программ №5913)

Software Version

7.3 (РЕД ОС), 1.7 (Astra Linux Special Edition), 4.7 (Astra Linux Special Edition), - (АЛЬТ СП 10), до 8.2.0 (QEMU), 3.0 (ROSA Virtualization 3.0), до 2.12 (ОСОН ОСнова Оnyx)

Possible Mitigations

Для qemu: https://gitlab.com/qemu-project/qemu/-/commit/9050f976e447444ea6ee2ba12c9f77e4b0dc54bc https://gitlab.com/qemu-project/qemu/-/commit/3c0463a650008aec7de29cf84540652730510921 Для РедОС: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/ Для ОС Astra Linux: обновить пакет qemu до 1:7.2+dfsg-7.astra.se17 или более высокой версии, используя рекомендации производителя: https://wiki.astralinux.ru/astra-linux-se17-bulletin-2024-0830SE17 Для ОС Альт 8 СП (релиз 10): установка обновления из публичного репозитория программного средства Для Astra Linux Special Edition 4.7 для архитектуры ARM: обновить пакет qemu до 1:7.2+dfsg-7.astra.se18 или более высокой версии, используя рекомендации производителя: https://wiki.astralinux.ru/astra-linux-se47-bulletin-2024-1031SE47 Для ОС Альт 8 СП (релиз 10): установка обновления из публичного репозитория программного средства Обновление программного обеспечения qemu до версии 1:7.2+dfsg-7+deb12u7osnova2u1 Для программной системы управления средой виртуализации с подсистемой безагентного резервного копирования виртуальных машин «ROSA Virtualization 3.0»: https://abf.rosa.ru/advisories/ROSA-SA-2025-2814

Reference

https://gitlab.com/qemu-project/qemu/-/commit/3c0463a650008aec7de29cf84540652730510921 https://gitlab.com/qemu-project/qemu/-/commit/9050f976e447444ea6ee2ba12c9f77e4b0dc54bc https://redos.red-soft.ru/support/secure/ https://wiki.astralinux.ru/astra-linux-se17-bulletin-2024-0830SE17 https://altsp.su/obnovleniya-bezopasnosti/ https://wiki.astralinux.ru/astra-linux-se47-bulletin-2024-1031SE47 https://altsp.su/obnovleniya-bezopasnosti/ https://поддержка.нппкт.рф/bin/view/ОСнова/Обновления/2.12/ https://abf.rosa.ru/advisories/ROSA-SA-2025-2814

CWE

CWE-416

JSON

To clipboard

{
  "CVSS 2.0": "AV:L/AC:L/Au:S/C:N/I:N/A:C",
  "CVSS 3.0": "AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb, \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb, \u0410\u041e \u00ab\u0418\u0412\u041a\u00bb, Fabrice Bellard, \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb, \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\"",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "7.3 (\u0420\u0415\u0414 \u041e\u0421), 1.7 (Astra Linux Special Edition), 4.7 (Astra Linux Special Edition), - (\u0410\u041b\u042c\u0422 \u0421\u041f 10), \u0434\u043e 8.2.0 (QEMU), 3.0 (ROSA Virtualization 3.0), \u0434\u043e 2.12 (\u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0414\u043b\u044f qemu:\nhttps://gitlab.com/qemu-project/qemu/-/commit/9050f976e447444ea6ee2ba12c9f77e4b0dc54bc\nhttps://gitlab.com/qemu-project/qemu/-/commit/3c0463a650008aec7de29cf84540652730510921\n\n\u0414\u043b\u044f \u0420\u0435\u0434\u041e\u0421: http://repo.red-soft.ru/redos/7.3c/x86_64/updates/\n\n\u0414\u043b\u044f \u041e\u0421 Astra Linux:\n\u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u043a\u0435\u0442 qemu \u0434\u043e 1:7.2+dfsg-7.astra.se17 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se17-bulletin-2024-0830SE17\n\n\u0414\u043b\u044f \u041e\u0421 \u0410\u043b\u044c\u0442 8 \u0421\u041f (\u0440\u0435\u043b\u0438\u0437 10): \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0438\u0437 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e\u0433\u043e \u0440\u0435\u043f\u043e\u0437\u0438\u0442\u043e\u0440\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430\n\n\u0414\u043b\u044f Astra Linux Special Edition 4.7 \u0434\u043b\u044f \u0430\u0440\u0445\u0438\u0442\u0435\u043a\u0442\u0443\u0440\u044b ARM:\n\u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u043a\u0435\u0442 qemu \u0434\u043e 1:7.2+dfsg-7.astra.se18 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se47-bulletin-2024-1031SE47\n\n\u0414\u043b\u044f \u041e\u0421 \u0410\u043b\u044c\u0442 8 \u0421\u041f (\u0440\u0435\u043b\u0438\u0437 10): \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0438\u0437 \u043f\u0443\u0431\u043b\u0438\u0447\u043d\u043e\u0433\u043e \u0440\u0435\u043f\u043e\u0437\u0438\u0442\u043e\u0440\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430\n\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f qemu \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 1:7.2+dfsg-7+deb12u7osnova2u1\n\n\u0414\u043b\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u044b \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0441\u0440\u0435\u0434\u043e\u0439 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u0441 \u043f\u043e\u0434\u0441\u0438\u0441\u0442\u0435\u043c\u043e\u0439 \u0431\u0435\u0437\u0430\u0433\u0435\u043d\u0442\u043d\u043e\u0433\u043e \u0440\u0435\u0437\u0435\u0440\u0432\u043d\u043e\u0433\u043e \u043a\u043e\u043f\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0445 \u043c\u0430\u0448\u0438\u043d \u00abROSA Virtualization 3.0\u00bb: https://abf.rosa.ru/advisories/ROSA-SA-2025-2814",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "24.07.2023",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "19.08.2025",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "28.06.2024",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2024-04883",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2023-3019",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "\u0420\u0415\u0414 \u041e\u0421 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), Astra Linux Special Edition (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u0410\u041b\u042c\u0422 \u0421\u041f 10, QEMU, ROSA Virtualization 3.0 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u211621308), \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913)",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u041e\u041e\u041e \u00ab\u0420\u0435\u0434 \u0421\u043e\u0444\u0442\u00bb \u0420\u0415\u0414 \u041e\u0421 7.3  (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21163751), \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 1.7  (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 4.7 ARM (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u0410\u041e \u00ab\u0418\u0412\u041a\u00bb \u0410\u041b\u042c\u0422 \u0421\u041f 10 - , \u0410\u041e \u00ab\u041d\u0422\u0426 \u0418\u0422 \u0420\u041e\u0421\u0410\u00bb ROSA Virtualization 3.0 3.0  (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u211621308), \u0410\u041e \"\u041d\u041f\u041f\u041a\u0422\" \u041e\u0421\u041e\u041d \u041e\u0421\u043d\u043e\u0432\u0430 \u041enyx \u0434\u043e 2.12  (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21165913)",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 e1000e \u0441\u0435\u0440\u0432\u0435\u0440\u0430 QEMU, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u043f\u043e\u0441\u043b\u0435 \u043e\u0441\u0432\u043e\u0431\u043e\u0436\u0434\u0435\u043d\u0438\u044f (CWE-416)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 e1000e \u0441\u0435\u0440\u0432\u0435\u0440\u0430 QEMU \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043f\u043e\u0432\u0442\u043e\u0440\u043d\u044b\u043c \u0432\u0445\u043e\u0434\u043e\u043c DMA. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u0430\u043c\u0438 \u0434\u0430\u043d\u043d\u044b\u0445",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://gitlab.com/qemu-project/qemu/-/commit/3c0463a650008aec7de29cf84540652730510921\nhttps://gitlab.com/qemu-project/qemu/-/commit/9050f976e447444ea6ee2ba12c9f77e4b0dc54bc\nhttps://redos.red-soft.ru/support/secure/\nhttps://wiki.astralinux.ru/astra-linux-se17-bulletin-2024-0830SE17\nhttps://altsp.su/obnovleniya-bezopasnosti/\nhttps://wiki.astralinux.ru/astra-linux-se47-bulletin-2024-1031SE47\nhttps://altsp.su/obnovleniya-bezopasnosti/\nhttps://\u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0430.\u043d\u043f\u043f\u043a\u0442.\u0440\u0444/bin/view/\u041e\u0421\u043d\u043e\u0432\u0430/\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f/2.12/\nhttps://abf.rosa.ru/advisories/ROSA-SA-2025-2814",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u041e \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438/\u041f\u041e \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430, \u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-416",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 4,6)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,5)"
}

CERTFR-2024-AVI-0997

Vulnerability from certfr_avis - Published: 2024-11-18 - Updated: 2024-11-18

De multiples vulnérabilités ont été découvertes dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Ubuntu	Ubuntu	Ubuntu 16.04 ESM
Ubuntu	Ubuntu	Ubuntu 24.04 LTS
Ubuntu	Ubuntu	Ubuntu 18.04 ESM
Ubuntu	Ubuntu	Ubuntu 20.04 LTS
Ubuntu	Ubuntu	Ubuntu 24.10
Ubuntu	Ubuntu	Ubuntu 14.04 ESM
Ubuntu	Ubuntu	Ubuntu 22.04 LTS

References

Title

Publication Time

CERTFR-2025-AVI-0018

Vulnerability from certfr_avis - Published: 2025-01-09 - Updated: 2025-01-09

De multiples vulnérabilités ont été découvertes dans les produits Juniper Networks. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Impacted products

Vendor	Product	Description
Juniper Networks	Junos OS	Junos OS versions 22.4.x antérieures à 22.4R3-S5
Juniper Networks	Junos Space	Junos Space versions antérieures à 24.1R2
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions antérieures à 21.2R3-S9-EVO
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions 23.4.x-EVO antérieures à 23.4R2-S3-EVO
Juniper Networks	Junos OS	Junos OS versions 24.2.x antérieures à 24.2R1-S2 et 24.2R2
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions 23.2.x-EVO antérieures à 23.2R2-S3-EVO
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions 21.4.x-EVO antérieures à 21.4R3-S10-EVO
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions 22.4.x-EVO antérieures à 22.4R3-S5-EVO
Juniper Networks	Junos OS	Junos OS versions 22.2.x antérieures à 22.2R3-S5
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions 22.3.x-EVO antérieures à 22.3R3-S4-EVO
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions 24.2.x-EVO antérieures à 24.2R1-S2-EVO et 24.2R2-EVO
Juniper Networks	Junos OS	Junos OS versions 22.3.x antérieures à 22.3R3-S4
Juniper Networks	Junos OS	Junos OS versions 23.4.x antérieures à 23.4R2-S3
Juniper Networks	Junos OS	Junos OS versions 21.4.x antérieures à 21.4R3-S10
Juniper Networks	Junos OS	Junos OS versions 23.2.x antérieures à 23.2R2-S3
Juniper Networks	Junos OS	Junos OS versions antérieures à 21.2R3-S9
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions 22.2.x-EVO antérieures à 22.2R3-S5-EVO

References

Title

Publication Time

CNVD-2023-61010

Vulnerability from cnvd - Published: 2023-08-03

Title

QEMU内存错误引用漏洞（CNVD-2023-61010）

Description

QEMU是法国法布里斯-贝拉（Fabrice Bellard）个人开发者的一套模拟处理器软件。该软件具有速度快、跨平台等特点。 QEMU存在内存错误引用漏洞，该漏洞源于e1000e NIC仿真代码负责释放内存的指令发生混乱。攻击者可利用该漏洞使主机上的QEMU进程崩溃，进而导致拒绝服务。

Severity

中

Formal description

厂商尚未发布漏洞修复程序，请及时关注更新： https://bugzilla.redhat.com/show_bug.cgi?id=2222351

Reference

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3019

Impacted products

Name
Qemu QEMU

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2023-3019",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2023-3019"
    }
  },
  "description": "QEMU\u662f\u6cd5\u56fd\u6cd5\u5e03\u91cc\u65af-\u8d1d\u62c9\uff08Fabrice Bellard\uff09\u4e2a\u4eba\u5f00\u53d1\u8005\u7684\u4e00\u5957\u6a21\u62df\u5904\u7406\u5668\u8f6f\u4ef6\u3002\u8be5\u8f6f\u4ef6\u5177\u6709\u901f\u5ea6\u5feb\u3001\u8de8\u5e73\u53f0\u7b49\u7279\u70b9\u3002\n\nQEMU\u5b58\u5728\u5185\u5b58\u9519\u8bef\u5f15\u7528\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8ee1000e NIC\u4eff\u771f\u4ee3\u7801\u8d1f\u8d23\u91ca\u653e\u5185\u5b58\u7684\u6307\u4ee4\u53d1\u751f\u6df7\u4e71\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u4f7f\u4e3b\u673a\u4e0a\u7684QEMU\u8fdb\u7a0b\u5d29\u6e83\uff0c\u8fdb\u800c\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002",
  "formalWay": "\u5382\u5546\u5c1a\u672a\u53d1\u5e03\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://bugzilla.redhat.com/show_bug.cgi?id=2222351",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2023-61010",
  "openTime": "2023-08-03",
  "products": {
    "product": "Qemu QEMU"
  },
  "referenceLink": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3019",
  "serverity": "\u4e2d",
  "submitTime": "2023-07-30",
  "title": "QEMU\u5185\u5b58\u9519\u8bef\u5f15\u7528\u6f0f\u6d1e\uff08CNVD-2023-61010\uff09"
}

FKIE_CVE-2023-3019

Vulnerability from fkie_nvd - Published: 2023-07-24 16:15 - Updated: 2026-05-12 10:16

Severity

6.0 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H
6.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Summary

References

URL	Tags
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:0135	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:0404	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:0569	Third Party Advisory
secalert@redhat.com	https://access.redhat.com/errata/RHSA-2024:2135
secalert@redhat.com	https://access.redhat.com/security/cve/CVE-2023-3019	Third Party Advisory
secalert@redhat.com	https://bugzilla.redhat.com/show_bug.cgi?id=2222351	Issue Tracking, Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:0135	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:0404	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:0569	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/errata/RHSA-2024:2135
af854a3a-2127-422b-91ae-364da2661108	https://access.redhat.com/security/cve/CVE-2023-3019	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.redhat.com/show_bug.cgi?id=2222351	Issue Tracking, Patch, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2025/04/msg00042.html
af854a3a-2127-422b-91ae-364da2661108	https://security.netapp.com/advisory/ntap-20230831-0005/
0b142b55-0307-4c5a-b3c9-f314f3fb7c5e	https://cert-portal.siemens.com/productcert/html/ssa-577017.html

Impacted products

Vendor	Product	Version
qemu	qemu	*
redhat	enterprise_linux	8.0
redhat	enterprise_linux	8.0
redhat	enterprise_linux	9.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8298AC47-931D-466E-8EFF-6F9CD0F0E504",
              "versionEndExcluding": "8.2.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:-:*:*:*",
              "matchCriteriaId": "053C1B35-3869-41C2-9551-044182DE0A64",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:advanced_virtualization:*:*:*",
              "matchCriteriaId": "3AA08768-75AF-4791-B229-AE938C780959",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7F6FB57C-2BC7-487C-96DD-132683AEB35D",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service."
    }
  ],
  "id": "CVE-2023-3019",
  "lastModified": "2026-05-12T10:16:39.570",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.0,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "HIGH",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.5,
        "impactScore": 4.0,
        "source": "secalert@redhat.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "CHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.0,
        "impactScore": 4.0,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2023-07-24T16:15:12.253",
  "references": [
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2024:0135"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2024:0404"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2024:0569"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://access.redhat.com/errata/RHSA-2024:2135"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/security/cve/CVE-2023-3019"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Issue Tracking",
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222351"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2024:0135"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2024:0404"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/errata/RHSA-2024:0569"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://access.redhat.com/errata/RHSA-2024:2135"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://access.redhat.com/security/cve/CVE-2023-3019"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Issue Tracking",
        "Patch",
        "Third Party Advisory"
      ],
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222351"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://lists.debian.org/debian-lts-announce/2025/04/msg00042.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://security.netapp.com/advisory/ntap-20230831-0005/"
    },
    {
      "source": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-577017.html"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "secalert@redhat.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-416"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-786X-44FX-QQH8

Vulnerability from github – Published: 2023-07-24 18:30 – Updated: 2026-05-12 12:31

Details

Severity

6.0 (Medium)


                  
                    CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-3019"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-416"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2023-07-24T16:15:12Z",
    "severity": "MODERATE"
  },
  "details": "A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service.",
  "id": "GHSA-786x-44fx-qqh8",
  "modified": "2026-05-12T12:31:28Z",
  "published": "2023-07-24T18:30:44Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3019"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:0135"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:0404"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:0569"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2024:2135"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/security/cve/CVE-2023-3019"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222351"
    },
    {
      "type": "WEB",
      "url": "https://cert-portal.siemens.com/productcert/html/ssa-577017.html"
    },
    {
      "type": "WEB",
      "url": "https://lists.debian.org/debian-lts-announce/2025/04/msg00042.html"
    },
    {
      "type": "WEB",
      "url": "https://security.netapp.com/advisory/ntap-20230831-0005"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2023-3019

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Aliases

CVE-2023-3019

Aliases

CVE-2023-3019

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-3019",
    "id": "GSD-2023-3019"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-3019"
      ],
      "details": "A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service.",
      "id": "GSD-2023-3019",
      "modified": "2023-12-13T01:20:54.317493Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2023-3019",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Red Hat Enterprise Linux 8",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "affected",
                            "versions": [
                              {
                                "lessThan": "*",
                                "status": "unaffected",
                                "version": "8090020231206155326.a75119d5",
                                "versionType": "rpm"
                              }
                            ]
                          }
                        },
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "affected",
                            "versions": [
                              {
                                "lessThan": "*",
                                "status": "unaffected",
                                "version": "8090020231206155326.a75119d5",
                                "versionType": "rpm"
                              }
                            ]
                          }
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Red Hat Enterprise Linux 8.6 Extended Update Support",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "affected",
                            "versions": [
                              {
                                "lessThan": "*",
                                "status": "unaffected",
                                "version": "8060020231128234847.ad008a3a",
                                "versionType": "rpm"
                              }
                            ]
                          }
                        },
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "affected",
                            "versions": [
                              {
                                "lessThan": "*",
                                "status": "unaffected",
                                "version": "8060020231128234847.ad008a3a",
                                "versionType": "rpm"
                              }
                            ]
                          }
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Red Hat Enterprise Linux 8.8 Extended Update Support",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "affected",
                            "versions": [
                              {
                                "lessThan": "*",
                                "status": "unaffected",
                                "version": "8080020240116113044.63b34585",
                                "versionType": "rpm"
                              }
                            ]
                          }
                        },
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "affected",
                            "versions": [
                              {
                                "lessThan": "*",
                                "status": "unaffected",
                                "version": "8080020240116113044.63b34585",
                                "versionType": "rpm"
                              }
                            ]
                          }
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Red Hat Enterprise Linux 6",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "unknown"
                          }
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Red Hat Enterprise Linux 7",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "unknown"
                          }
                        },
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "unknown"
                          }
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Red Hat Enterprise Linux 8 Advanced Virtualization",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "affected"
                          }
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "Red Hat Enterprise Linux 9",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "affected"
                          }
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Red Hat"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service."
          }
        ]
      },
      "impact": {
        "cvss": [
          {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "cweId": "CWE-416",
                "lang": "eng",
                "value": "Use After Free"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://access.redhat.com/errata/RHSA-2024:0135",
            "refsource": "MISC",
            "url": "https://access.redhat.com/errata/RHSA-2024:0135"
          },
          {
            "name": "https://access.redhat.com/errata/RHSA-2024:0404",
            "refsource": "MISC",
            "url": "https://access.redhat.com/errata/RHSA-2024:0404"
          },
          {
            "name": "https://access.redhat.com/errata/RHSA-2024:0569",
            "refsource": "MISC",
            "url": "https://access.redhat.com/errata/RHSA-2024:0569"
          },
          {
            "name": "https://access.redhat.com/security/cve/CVE-2023-3019",
            "refsource": "MISC",
            "url": "https://access.redhat.com/security/cve/CVE-2023-3019"
          },
          {
            "name": "https://bugzilla.redhat.com/show_bug.cgi?id=2222351",
            "refsource": "MISC",
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222351"
          },
          {
            "name": "https://security.netapp.com/advisory/ntap-20230831-0005/",
            "refsource": "MISC",
            "url": "https://security.netapp.com/advisory/ntap-20230831-0005/"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:qemu:qemu:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "8298AC47-931D-466E-8EFF-6F9CD0F0E504",
                    "versionEndExcluding": "8.2.0",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:-:*:*:*",
                    "matchCriteriaId": "053C1B35-3869-41C2-9551-044182DE0A64",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:advanced_virtualization:*:*:*",
                    "matchCriteriaId": "3AA08768-75AF-4791-B229-AE938C780959",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*",
                    "matchCriteriaId": "7F6FB57C-2BC7-487C-96DD-132683AEB35D",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service."
          }
        ],
        "id": "CVE-2023-3019",
        "lastModified": "2024-03-07T19:57:07.887",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 6.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 2.0,
              "impactScore": 4.0,
              "source": "nvd@nist.gov",
              "type": "Primary"
            },
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 6.0,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "HIGH",
                "scope": "CHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 1.5,
              "impactScore": 4.0,
              "source": "secalert@redhat.com",
              "type": "Secondary"
            }
          ]
        },
        "published": "2023-07-24T16:15:12.253",
        "references": [
          {
            "source": "secalert@redhat.com",
            "tags": [
              "Third Party Advisory"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:0135"
          },
          {
            "source": "secalert@redhat.com",
            "tags": [
              "Third Party Advisory"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:0404"
          },
          {
            "source": "secalert@redhat.com",
            "tags": [
              "Third Party Advisory"
            ],
            "url": "https://access.redhat.com/errata/RHSA-2024:0569"
          },
          {
            "source": "secalert@redhat.com",
            "tags": [
              "Third Party Advisory"
            ],
            "url": "https://access.redhat.com/security/cve/CVE-2023-3019"
          },
          {
            "source": "secalert@redhat.com",
            "tags": [
              "Issue Tracking",
              "Patch",
              "Third Party Advisory"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222351"
          },
          {
            "source": "secalert@redhat.com",
            "tags": [
              "Third Party Advisory"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20230831-0005/"
          }
        ],
        "sourceIdentifier": "secalert@redhat.com",
        "vulnStatus": "Analyzed",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-416"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          },
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-416"
              }
            ],
            "source": "secalert@redhat.com",
            "type": "Secondary"
          }
        ]
      }
    }
  }
}

ICSA-26-134-16

Vulnerability from csaf_cisa - Published: 2026-05-12 00:00 - Updated: 2026-05-14 06:00

Summary

Siemens Ruggedcom Rox

Notes

Summary: Ruggedcom Rox before v2.17.1 contain multiple third-party vulnerabilities. Siemens has released new versions for the affected products and recommends to update to the latest versions.

General Recommendations: As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals. Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity

Additional Resources: For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories

Terms of Use: The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.

Legal Notice and Terms of Use: This product is provided subject to this Notification (https://www.cisa.gov/notification) and this Privacy & Use policy (https://www.cisa.gov/privacy-policy).

Advisory Conversion Disclaimer: This ICSA is a verbatim republication of Siemens ProductCERT SSA-577017 from a direct conversion of the vendor's Common Security Advisory Framework (CSAF) advisory. This is republished to CISA's website as a means of increasing visibility and is provided "as-is" for informational purposes only. CISA is not responsible for the editorial or technical accuracy of republished advisories and provides no warranties of any kind regarding any information contained within this advisory. Further, CISA does not endorse any commercial product or service. Please contact Siemens ProductCERT directly for any questions regarding this advisory.

Recommended Practices: CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.

Recommended Practices: Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.

Recommended Practices: Locate control system networks and remote devices behind firewalls and isolate them from business networks.

Recommended Practices: When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.

Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.

Recommended Practices: CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.

Recommended Practices: CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.

Recommended Practices: Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.

Critical infrastructure sectors: Critical Manufacturing

Countries/areas deployed: Worldwide

Company headquarters location: Germany

CVE-2019-13103

7.1 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CWE-674 - Uncontrolled Recursion

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-13104

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-191 - Integer Underflow (Wrap or Wraparound)

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-13106

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-14192

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-191 - Integer Underflow (Wrap or Wraparound)

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-14193

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-14194

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-14195

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-14196

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-14197

9.1 (Critical)


                        
                          CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

CWE-125 - Out-of-bounds Read

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-14198

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-14199

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-191 - Integer Underflow (Wrap or Wraparound)

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-14200

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-14201

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-14202

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-14203

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2019-14204

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2020-10648

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

CWE-20 - Improper Input Validation

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2022-2347

7.7 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

CWE-122 - Heap-based Buffer Overflow

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2022-30552

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2022-30790

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2022-34835

9.8 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-787 - Out-of-bounds Write

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2023-3019

6.0 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

CWE-416 - Use After Free

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2023-27043

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CWE-1286 - Improper Validation of Syntactic Correctness of Input

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2024-3447

6.0 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

CWE-122 - Heap-based Buffer Overflow

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2024-22365

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-664 - Improper Control of a Resource Through its Lifetime

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2024-57256

7.1 (High)


                        
                          CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE-190 - Integer Overflow or Wraparound

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2024-57258

7.1 (High)


                        
                          CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H

CWE-190 - Integer Overflow or Wraparound

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2025-0395

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-131 - Incorrect Calculation of Buffer Size

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2025-3576

5.9 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-328 - Use of Weak Hash

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2025-6020

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2025-7425

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H

CWE-416 - Use After Free

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2025-9714

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-674 - Uncontrolled Recursion

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2025-46836

6.6 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

CWE-121 - Stack-based Buffer Overflow

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2025-49794

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

CWE-825 - Expired Pointer Dereference

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

CVE-2025-49796

9.1 (Critical)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

CWE-125 - Out-of-bounds Read

Affected products

Known affected 11 products

Product	Version	Remediation
RUGGEDCOM ROX MX5000 Siemens / RUGGEDCOM ROX MX5000	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX MX5000RE Siemens / RUGGEDCOM ROX MX5000RE	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1400 Siemens / RUGGEDCOM ROX RX1400	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1500 Siemens / RUGGEDCOM ROX RX1500	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1501 Siemens / RUGGEDCOM ROX RX1501	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1510 Siemens / RUGGEDCOM ROX RX1510	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1511 Siemens / RUGGEDCOM ROX RX1511	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1512 Siemens / RUGGEDCOM ROX RX1512	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1524 Siemens / RUGGEDCOM ROX RX1524	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX1536 Siemens / RUGGEDCOM ROX RX1536	vers:intdot/<2.17.1	Vendor Fix fix
RUGGEDCOM ROX RX5000 Siemens / RUGGEDCOM ROX RX5000	vers:intdot/<2.17.1	Vendor Fix fix

References

76 references

URL	Category
https://cert-portal.siemens.com/productcert/csaf/…	self
https://cert-portal.siemens.com/productcert/html/…	self
https://raw.githubusercontent.com/cisagov/CSAF/de…	self
https://www.cisa.gov/news-events/ics-advisories/i…	self
https://www.cisa.gov/news-events/ics-alerts/ics-a…	external
https://www.cisa.gov/resources-tools/resources/ic…	external
https://www.cisa.gov/topics/industrial-control-systems	external
https://www.cisa.gov/sites/default/files/recommen…	external
https://www.cisa.gov/sites/default/files/publicat…	external
https://www.cisa.gov/news-events/news/targeted-cy…	external
https://www.cve.org/CVERecord?id=CVE-2019-13103	external
https://cwe.mitre.org/data/definitions/674.html	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2019-13104	external
https://cwe.mitre.org/data/definitions/191.html	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2019-13106	external
https://cwe.mitre.org/data/definitions/787.html	external
https://www.cve.org/CVERecord?id=CVE-2019-14192	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2019-14193	external
https://www.cve.org/CVERecord?id=CVE-2019-14194	external
https://www.cve.org/CVERecord?id=CVE-2019-14195	external
https://www.cve.org/CVERecord?id=CVE-2019-14196	external
https://www.cve.org/CVERecord?id=CVE-2019-14197	external
https://cwe.mitre.org/data/definitions/125.html	external
https://www.first.org/cvss/calculator/3.0#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2019-14198	external
https://www.cve.org/CVERecord?id=CVE-2019-14199	external
https://www.cve.org/CVERecord?id=CVE-2019-14200	external
https://www.cve.org/CVERecord?id=CVE-2019-14201	external
https://www.cve.org/CVERecord?id=CVE-2019-14202	external
https://www.cve.org/CVERecord?id=CVE-2019-14203	external
https://www.cve.org/CVERecord?id=CVE-2019-14204	external
https://www.cve.org/CVERecord?id=CVE-2020-10648	external
https://cwe.mitre.org/data/definitions/20.html	external
https://www.cve.org/CVERecord?id=CVE-2022-2347	external
https://cwe.mitre.org/data/definitions/122.html	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2022-30552	external
https://cwe.mitre.org/data/definitions/120.html	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2022-30790	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2022-34835	external
https://www.cve.org/CVERecord?id=CVE-2023-3019	external
https://cwe.mitre.org/data/definitions/416.html	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2023-27043	external
https://cwe.mitre.org/data/definitions/1286.html	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2024-3447	external
https://www.cve.org/CVERecord?id=CVE-2024-22365	external
https://cwe.mitre.org/data/definitions/664.html	external
https://www.cve.org/CVERecord?id=CVE-2024-57256	external
https://cwe.mitre.org/data/definitions/190.html	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2024-57258	external
https://www.cve.org/CVERecord?id=CVE-2025-0395	external
https://cwe.mitre.org/data/definitions/131.html	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2025-3576	external
https://cwe.mitre.org/data/definitions/328.html	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2025-6020	external
https://cwe.mitre.org/data/definitions/22.html	external
https://www.cve.org/CVERecord?id=CVE-2025-7425	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2025-9714	external
https://www.cve.org/CVERecord?id=CVE-2025-46836	external
https://cwe.mitre.org/data/definitions/121.html	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2025-49794	external
https://cwe.mitre.org/data/definitions/825.html	external
https://www.first.org/cvss/calculator/3.1#CVSS:3.…	external
https://www.cve.org/CVERecord?id=CVE-2025-49796	external

Acknowledgments

Siemens ProductCERT

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "organization": "Siemens ProductCERT",
        "summary": "reported these vulnerabilities to CISA."
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Disclosure is not limited",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.cisa.gov/news-events/news/traffic-light-protocol-tlp-definitions-and-usage"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Ruggedcom Rox before v2.17.1 contain multiple third-party vulnerabilities.\n\nSiemens has released new versions for the affected products and recommends to update to the latest versions.",
        "title": "Summary"
      },
      {
        "category": "general",
        "text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
        "title": "General Recommendations"
      },
      {
        "category": "general",
        "text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.",
        "title": "Terms of Use"
      },
      {
        "category": "legal_disclaimer",
        "text": "This product is provided subject to this Notification (https://www.cisa.gov/notification) and this Privacy \u0026 Use policy (https://www.cisa.gov/privacy-policy).",
        "title": "Legal Notice and Terms of Use"
      },
      {
        "category": "other",
        "text": "This ICSA is a verbatim republication of Siemens ProductCERT SSA-577017 from a direct conversion of the vendor\u0027s Common Security Advisory Framework (CSAF) advisory. This is republished to CISA\u0027s website as a means of increasing visibility and is provided \"as-is\" for informational purposes only. CISA is not responsible for the editorial or technical accuracy of republished advisories and provides no warranties of any kind regarding any information contained within this advisory.  Further, CISA does not endorse any commercial product or service.  Please contact Siemens ProductCERT directly for any questions regarding this advisory.",
        "title": "Advisory Conversion Disclaimer"
      },
      {
        "category": "general",
        "text": "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
        "title": "Recommended Practices"
      },
      {
        "category": "general",
        "text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
        "title": "Recommended Practices"
      },
      {
        "category": "other",
        "text": "Critical Manufacturing",
        "title": "Critical infrastructure sectors"
      },
      {
        "category": "other",
        "text": "Worldwide",
        "title": "Countries/areas deployed"
      },
      {
        "category": "other",
        "text": "Germany",
        "title": "Company headquarters location"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "central@cisa.dhs.gov",
      "name": "CISA",
      "namespace": "https://www.cisa.gov/"
    },
    "references": [
      {
        "category": "self",
        "summary": "SSA-577017: Multiple Vulnerabilities in Ruggedcom Rox Before 2.17.1 - CSAF Version",
        "url": "https://cert-portal.siemens.com/productcert/csaf/ssa-577017.json"
      },
      {
        "category": "self",
        "summary": "SSA-577017: Multiple Vulnerabilities in Ruggedcom Rox Before 2.17.1 - HTML Version",
        "url": "https://cert-portal.siemens.com/productcert/html/ssa-577017.html"
      },
      {
        "category": "self",
        "summary": "ICS Advisory ICSA-26-134-16 JSON",
        "url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2026/icsa-26-134-16.json"
      },
      {
        "category": "self",
        "summary": "ICS Advisory ICSA-26-134-16 - Web Version",
        "url": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-16"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/news-events/ics-alerts/ics-alert-10-301-01"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/topics/industrial-control-systems"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
      },
      {
        "category": "external",
        "summary": "Recommended Practices",
        "url": "https://www.cisa.gov/news-events/news/targeted-cyber-intrusion-detection-and-mitigation-strategies-update-b"
      }
    ],
    "title": "Siemens Ruggedcom Rox",
    "tracking": {
      "current_release_date": "2026-05-14T06:00:00.000000Z",
      "generator": {
        "date": "2026-05-13T19:19:00.090407Z",
        "engine": {
          "name": "CISA CSAF Generator",
          "version": "1.5.0"
        }
      },
      "id": "ICSA-26-134-16",
      "initial_release_date": "2026-05-12T00:00:00.000000Z",
      "revision_history": [
        {
          "date": "2026-05-12T00:00:00.000000Z",
          "legacy_version": "Initial",
          "number": "1",
          "summary": "Publication Date"
        },
        {
          "date": "2026-05-14T06:00:00.000000Z",
          "legacy_version": "CISA Republication",
          "number": "2",
          "summary": "Initial CISA Republication of Siemens ProductCERT SSA-577017 advisory"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:intdot/\u003c2.17.1",
                "product": {
                  "name": "RUGGEDCOM ROX MX5000",
                  "product_id": "CSAFPID-0001"
                }
              }
            ],
            "category": "product_name",
            "name": "RUGGEDCOM ROX MX5000"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:intdot/\u003c2.17.1",
                "product": {
                  "name": "RUGGEDCOM ROX MX5000RE",
                  "product_id": "CSAFPID-0002"
                }
              }
            ],
            "category": "product_name",
            "name": "RUGGEDCOM ROX MX5000RE"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:intdot/\u003c2.17.1",
                "product": {
                  "name": "RUGGEDCOM ROX RX1400",
                  "product_id": "CSAFPID-0003"
                }
              }
            ],
            "category": "product_name",
            "name": "RUGGEDCOM ROX RX1400"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:intdot/\u003c2.17.1",
                "product": {
                  "name": "RUGGEDCOM ROX RX1500",
                  "product_id": "CSAFPID-0004"
                }
              }
            ],
            "category": "product_name",
            "name": "RUGGEDCOM ROX RX1500"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:intdot/\u003c2.17.1",
                "product": {
                  "name": "RUGGEDCOM ROX RX1501",
                  "product_id": "CSAFPID-0005"
                }
              }
            ],
            "category": "product_name",
            "name": "RUGGEDCOM ROX RX1501"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:intdot/\u003c2.17.1",
                "product": {
                  "name": "RUGGEDCOM ROX RX1510",
                  "product_id": "CSAFPID-0006"
                }
              }
            ],
            "category": "product_name",
            "name": "RUGGEDCOM ROX RX1510"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:intdot/\u003c2.17.1",
                "product": {
                  "name": "RUGGEDCOM ROX RX1511",
                  "product_id": "CSAFPID-0007"
                }
              }
            ],
            "category": "product_name",
            "name": "RUGGEDCOM ROX RX1511"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:intdot/\u003c2.17.1",
                "product": {
                  "name": "RUGGEDCOM ROX RX1512",
                  "product_id": "CSAFPID-0008"
                }
              }
            ],
            "category": "product_name",
            "name": "RUGGEDCOM ROX RX1512"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:intdot/\u003c2.17.1",
                "product": {
                  "name": "RUGGEDCOM ROX RX1524",
                  "product_id": "CSAFPID-0009"
                }
              }
            ],
            "category": "product_name",
            "name": "RUGGEDCOM ROX RX1524"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:intdot/\u003c2.17.1",
                "product": {
                  "name": "RUGGEDCOM ROX RX1536",
                  "product_id": "CSAFPID-0010"
                }
              }
            ],
            "category": "product_name",
            "name": "RUGGEDCOM ROX RX1536"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "vers:intdot/\u003c2.17.1",
                "product": {
                  "name": "RUGGEDCOM ROX RX5000",
                  "product_id": "CSAFPID-0011"
                }
              }
            ],
            "category": "product_name",
            "name": "RUGGEDCOM ROX RX5000"
          }
        ],
        "category": "vendor",
        "name": "Siemens"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2019-13103",
      "cwe": {
        "id": "CWE-674",
        "name": "Uncontrolled Recursion"
      },
      "notes": [
        {
          "category": "summary",
          "text": "A crafted self-referential DOS partition table will cause all Das U-Boot versions through 2019.07-rc4 to infinitely recurse, causing the stack to grow infinitely and eventually either crash or overwrite other data.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-13103"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/674.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-13103"
    },
    {
      "cve": "CVE-2019-13104",
      "cwe": {
        "id": "CWE-191",
        "name": "Integer Underflow (Wrap or Wraparound)"
      },
      "notes": [
        {
          "category": "summary",
          "text": "In Das U-Boot versions 2016.11-rc1 through 2019.07-rc4, an underflow can cause memcpy() to overwrite a very large amount of data (including the whole stack) while reading a crafted ext4 filesystem.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-13104"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/191.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-13104"
    },
    {
      "cve": "CVE-2019-13106",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "summary",
          "text": "Das U-Boot versions 2016.09 through 2019.07-rc4 can memset() too much data while reading a crafted ext4 filesystem, which results in a stack buffer overflow and likely code execution.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-13106"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/787.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-13106"
    },
    {
      "cve": "CVE-2019-14192",
      "cwe": {
        "id": "CWE-191",
        "name": "Integer Underflow (Wrap or Wraparound)"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an nc_input_packet call.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14192"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/191.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-14192"
    },
    {
      "cve": "CVE-2019-14193",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with an unvalidated length at nfs_readlink_reply, in the \"if\" block after calculating the new path length.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14193"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/787.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-14193"
    },
    {
      "cve": "CVE-2019-14194",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv2 case.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14194"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/787.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-14194"
    },
    {
      "cve": "CVE-2019-14195",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with unvalidated length at nfs_readlink_reply in the \"else\" block after calculating the new path length.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14195"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/787.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-14195"
    },
    {
      "cve": "CVE-2019-14196",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_lookup_reply.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14196"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/787.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-14196"
    },
    {
      "cve": "CVE-2019-14197",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An issue was discovered in Das U-Boot through 2019.07. There is a read of out-of-bounds data at nfs_read_reply.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14197"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/125.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
            "version": "3.0"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-14197"
    },
    {
      "cve": "CVE-2019-14198",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy with a failed length check at nfs_read_reply when calling store_block in the NFSv3 case.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14198"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/787.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-14198"
    },
    {
      "cve": "CVE-2019-14199",
      "cwe": {
        "id": "CWE-191",
        "name": "Integer Underflow (Wrap or Wraparound)"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an *udp_packet_handler call.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14199"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/191.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-14199"
    },
    {
      "cve": "CVE-2019-14200",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: rpc_lookup_reply.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14200"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/787.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-14200"
    },
    {
      "cve": "CVE-2019-14201",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_lookup_reply.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14201"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/787.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-14201"
    },
    {
      "cve": "CVE-2019-14202",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_readlink_reply.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14202"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/787.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-14202"
    },
    {
      "cve": "CVE-2019-14203",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_mount_reply.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14203"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/787.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-14203"
    },
    {
      "cve": "CVE-2019-14204",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An issue was discovered in Das U-Boot through 2019.07. There is a stack-based buffer overflow in this nfs_handler reply helper function: nfs_umountall_reply.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2019-14204"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/787.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2019-14204"
    },
    {
      "cve": "CVE-2020-10648",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "notes": [
        {
          "category": "summary",
          "text": "Das U-Boot through 2020.01 allows attackers to bypass verified boot restrictions and subsequently boot arbitrary images by providing a crafted FIT image to a system configured to boot the default configuration.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2020-10648"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/20.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2020-10648"
    },
    {
      "cve": "CVE-2022-2347",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "summary",
          "text": "There exists an unchecked length field in UBoot. The U-Boot DFU implementation does not bound the length field in USB DFU download setup packets, and it does not verify that the transfer direction corresponds to the specified command. Consequently, if a physical attacker crafts a USB DFU download setup packet with a `wLength` greater than 4096 bytes, they can write beyond the heap-allocated request buffer.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-2347"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/122.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2022-2347"
    },
    {
      "cve": "CVE-2022-30552",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "notes": [
        {
          "category": "summary",
          "text": "Das U-Boot 2022.01 has a Buffer Overflow.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-30552"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/120.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2022-30552"
    },
    {
      "cve": "CVE-2022-30790",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "summary",
          "text": "Das U-Boot 2022.01 has a Buffer Overflow, a different issue than CVE-2022-30552.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-30790"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/787.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2022-30790"
    },
    {
      "cve": "CVE-2022-34835",
      "cwe": {
        "id": "CWE-787",
        "name": "Out-of-bounds Write"
      },
      "notes": [
        {
          "category": "summary",
          "text": "In Das U-Boot through 2022.07-rc5, an integer signedness error and resultant stack-based buffer overflow in the \"i2c md\" command enables the corruption of the return address pointer of the do_i2c_md function.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-34835"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/787.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2022-34835"
    },
    {
      "cve": "CVE-2023-3019",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "summary",
          "text": "A DMA reentrancy issue leading to a use-after-free error was found in the e1000e NIC emulation code in QEMU. This issue could allow a privileged guest user to crash the QEMU process on the host, resulting in a denial of service.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-3019"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/416.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.0,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2023-3019"
    },
    {
      "cve": "CVE-2023-27043",
      "cwe": {
        "id": "CWE-1286",
        "name": "Improper Validation of Syntactic Correctness of Input"
      },
      "notes": [
        {
          "category": "summary",
          "text": "The email module of Python through 3.11.3 incorrectly parses e-mail addresses that contain a special character. The wrong portion of an RFC2822 header is identified as the value of the addr-spec. In some applications, an attacker can bypass a protection mechanism in which application access is granted only after verifying receipt of e-mail to a specific domain (e.g., only @company.example.com addresses may be used for signup). This occurs in email/_parseaddr.py in recent versions of Python.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-27043"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/1286.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2023-27043"
    },
    {
      "cve": "CVE-2024-3447",
      "cwe": {
        "id": "CWE-122",
        "name": "Heap-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "summary",
          "text": "A heap-based buffer overflow was found in the SDHCI device emulation of QEMU. The bug is triggered when both `s-\u003edata_count` and the size of  `s-\u003efifo_buffer` are set to 0x200, leading to an out-of-bound access. A malicious guest could use this flaw to crash the QEMU process on the host, resulting in a denial of service condition.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-3447"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/122.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.0,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2024-3447"
    },
    {
      "cve": "CVE-2024-22365",
      "cwe": {
        "id": "CWE-664",
        "name": "Improper Control of a Resource Through its Lifetime"
      },
      "notes": [
        {
          "category": "summary",
          "text": "linux-pam (aka Linux PAM) before 1.6.0 allows attackers to cause a denial of service (blocked login process) via mkfifo because the openat call (for protect_dir) lacks O_DIRECTORY.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-22365"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/664.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2024-22365"
    },
    {
      "cve": "CVE-2024-57256",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "notes": [
        {
          "category": "summary",
          "text": "An integer overflow in ext4fs_read_symlink in Das U-Boot before 2025.01-rc1 occurs for zalloc (adding one to an le32 variable) via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-57256"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/190.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2024-57256"
    },
    {
      "cve": "CVE-2024-57258",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "notes": [
        {
          "category": "summary",
          "text": "Integer overflows in memory allocation in Das U-Boot before 2025.01-rc1 occur for a crafted squashfs filesystem via sbrk, via request2size, or because ptrdiff_t is mishandled on x86_64.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2024-57258"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/190.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2024-57258"
    },
    {
      "cve": "CVE-2025-0395",
      "cwe": {
        "id": "CWE-131",
        "name": "Incorrect Calculation of Buffer Size"
      },
      "notes": [
        {
          "category": "summary",
          "text": "When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-0395"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/131.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2025-0395"
    },
    {
      "cve": "CVE-2025-3576",
      "cwe": {
        "id": "CWE-328",
        "name": "Use of Weak Hash"
      },
      "notes": [
        {
          "category": "summary",
          "text": "A vulnerability in the MIT Kerberos implementation allows GSSAPI-protected messages using RC4-HMAC-MD5 to be spoofed due to weaknesses in the MD5 checksum design. If RC4 is preferred over stronger encryption types, an attacker could exploit MD5 collisions to forge message integrity codes. This may lead to unauthorized message tampering.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-3576"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/328.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.9,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2025-3576"
    },
    {
      "cve": "CVE-2025-6020",
      "cwe": {
        "id": "CWE-22",
        "name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
      },
      "notes": [
        {
          "category": "summary",
          "text": "A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper protection, allowing local users to elevate their privileges to root via multiple symlink attacks and race conditions.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-6020"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/22.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2025-6020"
    },
    {
      "cve": "CVE-2025-7425",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "summary",
          "text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/416.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2025-7425"
    },
    {
      "cve": "CVE-2025-9714",
      "cwe": {
        "id": "CWE-674",
        "name": "Uncontrolled Recursion"
      },
      "notes": [
        {
          "category": "summary",
          "text": "Uncontrolled recursion in\u00a0XPath evaluation\u00a0in libxml2 up to and including version 2.9.14 allows a local attacker to cause a stack overflow via crafted expressions. XPath processing functions `xmlXPathRunEval`, `xmlXPathCtxtCompile`, and `xmlXPathEvalExpr` were resetting recursion depth to zero before making potentially recursive calls. When such functions were called recursively this could allow for uncontrolled recursion and lead to a stack overflow. These functions now preserve recursion depth across recursive calls, allowing recursion depth to be controlled.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-9714"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/674.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2025-9714"
    },
    {
      "cve": "CVE-2025-46836",
      "cwe": {
        "id": "CWE-121",
        "name": "Stack-based Buffer Overflow"
      },
      "notes": [
        {
          "category": "summary",
          "text": "net-tools is a collection of programs that form the base set of the NET-3 networking distribution for the Linux operating system. Inn versions up to and including 2.10, the Linux network utilities (like ifconfig) from the net-tools package do not properly validate the structure of /proc files when showing interfaces. `get_name()` in `interface.c` copies interface labels from `/proc/net/dev` into a fixed 16-byte stack buffer without bounds checking, leading to possible arbitrary code execution or crash. The known attack path does not require privilege but also does not provide privilege escalation in this scenario. A patch is available and expected to be part of version 2.20.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-46836"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/121.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 6.6,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2025-46836"
    },
    {
      "cve": "CVE-2025-49794",
      "cwe": {
        "id": "CWE-825",
        "name": "Expired Pointer Dereference"
      },
      "notes": [
        {
          "category": "summary",
          "text": "A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the \u003csch:name path=\"...\"/\u003e schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program\u0027s crash using libxml or other possible undefined behaviors.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/825.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2025-49794"
    },
    {
      "cve": "CVE-2025-49796",
      "cwe": {
        "id": "CWE-125",
        "name": "Out-of-bounds Read"
      },
      "notes": [
        {
          "category": "summary",
          "text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
          "title": "Summary"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-0001",
          "CSAFPID-0002",
          "CSAFPID-0003",
          "CSAFPID-0004",
          "CSAFPID-0005",
          "CSAFPID-0006",
          "CSAFPID-0007",
          "CSAFPID-0008",
          "CSAFPID-0009",
          "CSAFPID-0010",
          "CSAFPID-0011"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "www.cve.org",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
        },
        {
          "category": "external",
          "summary": "cwe.mitre.org",
          "url": "https://cwe.mitre.org/data/definitions/125.html"
        },
        {
          "category": "external",
          "summary": "www.first.org",
          "url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Update to V2.17.1 or later version",
          "product_ids": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ],
          "url": "https://support.industry.siemens.com/cs/ww/en/view/110002017/"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-0001",
            "CSAFPID-0002",
            "CSAFPID-0003",
            "CSAFPID-0004",
            "CSAFPID-0005",
            "CSAFPID-0006",
            "CSAFPID-0007",
            "CSAFPID-0008",
            "CSAFPID-0009",
            "CSAFPID-0010",
            "CSAFPID-0011"
          ]
        }
      ],
      "title": "CVE-2025-49796"
    }
  ]
}

MSRC_CVE-2023-3019

Vulnerability from csaf_microsoft - Published: 2023-07-01 07:00 - Updated: 2026-02-18 14:52

Summary

Qemu: e1000e: heap use-after-free in e1000e_write_packet_to_guest()

Notes

Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle

Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.

CVE-2023-3019

6.0 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H

CWE-416 - Use After Free

Affected products

Fixed 3 products

Product	Identifier	Version	Remediation
Unresolved product id: 18160-17086		—
Unresolved product id: 19662-17086		—
Unresolved product id: 17093-17086		—

Known affected 3 products

Product	Version	Remediation
Unresolved product id: 17086-2	—	Vendor Fix fix
Unresolved product id: 17086-1	—	Vendor Fix fix
Unresolved product id: 17086-3	—	Vendor Fix fix

References

4 references

URL	Category
https://msrc.microsoft.com/csaf/vex/2023/msrc_cve…	self
https://support.microsoft.com/lifecycle	external
https://www.first.org/cvss	external
https://msrc.microsoft.com/csaf/vex/2023/msrc_cve…	self

JSON

To clipboard

{
  "document": {
    "category": "csaf_vex",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Public",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en-US",
    "notes": [
      {
        "category": "general",
        "text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
        "title": "Additional Resources"
      },
      {
        "category": "legal_disclaimer",
        "text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
        "title": "Disclaimer"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "secure@microsoft.com",
      "name": "Microsoft Security Response Center",
      "namespace": "https://msrc.microsoft.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "CVE-2023-3019 Qemu: e1000e: heap use-after-free in e1000e_write_packet_to_guest() - VEX",
        "url": "https://msrc.microsoft.com/csaf/vex/2023/msrc_cve-2023-3019.json"
      },
      {
        "category": "external",
        "summary": "Microsoft Support Lifecycle",
        "url": "https://support.microsoft.com/lifecycle"
      },
      {
        "category": "external",
        "summary": "Common Vulnerability Scoring System",
        "url": "https://www.first.org/cvss"
      }
    ],
    "title": "Qemu: e1000e: heap use-after-free in e1000e_write_packet_to_guest()",
    "tracking": {
      "current_release_date": "2026-02-18T14:52:31.000Z",
      "generator": {
        "date": "2026-02-21T00:07:24.178Z",
        "engine": {
          "name": "MSRC Generator",
          "version": "1.0"
        }
      },
      "id": "msrc_CVE-2023-3019",
      "initial_release_date": "2023-07-01T07:00:00.000Z",
      "revision_history": [
        {
          "date": "2025-04-17T00:00:00.000Z",
          "legacy_version": "1",
          "number": "1",
          "summary": "Information published."
        },
        {
          "date": "2026-02-18T14:52:31.000Z",
          "legacy_version": "2",
          "number": "2",
          "summary": "Information published."
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "2.0",
                "product": {
                  "name": "CBL Mariner 2.0",
                  "product_id": "17086"
                }
              }
            ],
            "category": "product_name",
            "name": "Azure Linux"
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "\u003ccbl2 qemu 6.2.0-23",
                "product": {
                  "name": "\u003ccbl2 qemu 6.2.0-23",
                  "product_id": "2"
                }
              },
              {
                "category": "product_version",
                "name": "cbl2 qemu 6.2.0-23",
                "product": {
                  "name": "cbl2 qemu 6.2.0-23",
                  "product_id": "18160"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003ccbl2 qemu 6.2.0-24",
                "product": {
                  "name": "\u003ccbl2 qemu 6.2.0-24",
                  "product_id": "1"
                }
              },
              {
                "category": "product_version",
                "name": "cbl2 qemu 6.2.0-24",
                "product": {
                  "name": "cbl2 qemu 6.2.0-24",
                  "product_id": "19662"
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003ccbl2 qemu 6.2.0-24",
                "product": {
                  "name": "\u003ccbl2 qemu 6.2.0-24",
                  "product_id": "3"
                }
              },
              {
                "category": "product_version",
                "name": "cbl2 qemu 6.2.0-24",
                "product": {
                  "name": "cbl2 qemu 6.2.0-24",
                  "product_id": "17093"
                }
              }
            ],
            "category": "product_name",
            "name": "qemu"
          }
        ],
        "category": "vendor",
        "name": "Microsoft"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "\u003ccbl2 qemu 6.2.0-23 as a component of CBL Mariner 2.0",
          "product_id": "17086-2"
        },
        "product_reference": "2",
        "relates_to_product_reference": "17086"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cbl2 qemu 6.2.0-23 as a component of CBL Mariner 2.0",
          "product_id": "18160-17086"
        },
        "product_reference": "18160",
        "relates_to_product_reference": "17086"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "\u003ccbl2 qemu 6.2.0-24 as a component of CBL Mariner 2.0",
          "product_id": "17086-1"
        },
        "product_reference": "1",
        "relates_to_product_reference": "17086"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cbl2 qemu 6.2.0-24 as a component of CBL Mariner 2.0",
          "product_id": "19662-17086"
        },
        "product_reference": "19662",
        "relates_to_product_reference": "17086"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "\u003ccbl2 qemu 6.2.0-24 as a component of CBL Mariner 2.0",
          "product_id": "17086-3"
        },
        "product_reference": "3",
        "relates_to_product_reference": "17086"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cbl2 qemu 6.2.0-24 as a component of CBL Mariner 2.0",
          "product_id": "17093-17086"
        },
        "product_reference": "17093",
        "relates_to_product_reference": "17086"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-3019",
      "cwe": {
        "id": "CWE-416",
        "name": "Use After Free"
      },
      "notes": [
        {
          "category": "general",
          "text": "redhat",
          "title": "Assigning CNA"
        }
      ],
      "product_status": {
        "fixed": [
          "18160-17086",
          "19662-17086",
          "17093-17086"
        ],
        "known_affected": [
          "17086-2",
          "17086-1",
          "17086-3"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "CVE-2023-3019 Qemu: e1000e: heap use-after-free in e1000e_write_packet_to_guest() - VEX",
          "url": "https://msrc.microsoft.com/csaf/vex/2023/msrc_cve-2023-3019.json"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2025-04-17T00:00:00.000Z",
          "details": "6.2.0-23:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
          "product_ids": [
            "17086-2",
            "17086-1",
            "17086-3"
          ],
          "url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.0,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "environmentalsScore": 0.0,
            "integrityImpact": "NONE",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "temporalScore": 6.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "17086-2",
            "17086-1",
            "17086-3"
          ]
        }
      ],
      "title": "Qemu: e1000e: heap use-after-free in e1000e_write_packet_to_guest()"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-3019 (GCVE-0-2023-3019)

Vulnerability from osv_almalinux

Solutions

Solutions

Tags

Sightings

Nomenclature