CVE & CISA-KEV Catalog

CVE-2019-10936

HIGHEPSS 79th pctl
7.5
CVSS v3
NVD

Description

Affected devices improperly handle large amounts of specially crafted UDP packets. This could allow an unauthenticated remote attacker to trigger a denial of service condition.

How to fix

Remediation Available
ek-ertec 200p firmwareNVD
Affected:< 4.6Fixed in:4.6CVE-2019-10936derived from NVD
simatic cfu pa firmwareNVD
Affected:< 1.2.0Fixed in:1.2.0CVE-2019-10936derived from NVD
simatic et 200mp im 155-5 pn ba firmwareNVD
Affected:< 4.3.0Fixed in:4.3.0CVE-2019-10936derived from NVD
simatic et 200mp im 155-5 pn hf firmwareNVD
Affected:< 4.4.0Fixed in:4.4.0CVE-2019-10936derived from NVD
simatic et 200sp im 155-6 pn\/2 hf firmwareNVD
Affected:< 4.2.2Fixed in:4.2.2CVE-2019-10936derived from NVD
simatic et 200sp im 155-6 pn\/3 hf firmwareNVD
Affected:< 4.2.1Fixed in:4.2.1CVE-2019-10936derived from NVD
simatic et 200sp im 155-6 pn hf firmwareNVD
Affected:< 4.2.2Fixed in:4.2.2CVE-2019-10936derived from NVD
simatic pn\/pn coupler firmwareNVD
Affected:< 4.2.1Fixed in:4.2.1CVE-2019-10936derived from NVD
simatic profinet driver firmwareNVD
Affected:< 2.1Fixed in:2.1CVE-2019-10936derived from NVD
simatic s7-1200 cpu 1211c firmwareNVD
Affected:< 4.4.0Fixed in:4.4.0CVE-2019-10936derived from NVD
simatic s7-1200 cpu 1212c firmwareNVD
Affected:< 4.4.0Fixed in:4.4.0CVE-2019-10936derived from NVD
simatic s7-1200 cpu 1214c firmwareNVD
Affected:< 4.4.0Fixed in:4.4.0CVE-2019-10936derived from NVD
simatic s7-1200 cpu firmwareNVD
Affected:< 4.4.0Fixed in:4.4.0CVE-2019-10936derived from NVD
simatic s7-1500 cpu 1511c firmwareNVD
Affected:< 2.0Fixed in:2.0CVE-2019-10936derived from NVD
simatic s7-1500 cpu 1512c firmwareNVD
Affected:< 2.0Fixed in:2.0CVE-2019-10936derived from NVD
simatic s7-1500 cpu 1518 firmwareNVD
Affected:< 2.0Fixed in:2.0CVE-2019-10936derived from NVD
simatic s7-1500 cpu firmwareNVD
Affected:< 2.0Fixed in:2.0CVE-2019-10936derived from NVD
simatic s7-1500s cpu firmwareNVD
Affected:< 2.0Fixed in:2.0CVE-2019-10936derived from NVD
simatic s7-1500t cpu firmwareNVD
Affected:< 2.0Fixed in:2.0CVE-2019-10936derived from NVD
simatic s7-300 cpu 312 ifm firmwareNVD
Affected:< 3.3.17Fixed in:3.3.17CVE-2019-10936derived from NVD
simatic s7-300 cpu 313 firmwareNVD
Affected:< 3.3.17Fixed in:3.3.17CVE-2019-10936derived from NVD
simatic s7-300 cpu 314 firmwareNVD
Affected:< 3.3.17Fixed in:3.3.17CVE-2019-10936derived from NVD
simatic s7-300 cpu 314 ifm firmwareNVD
Affected:< 3.3.17Fixed in:3.3.17CVE-2019-10936derived from NVD
simatic s7-300 cpu 315-2 dp firmwareNVD
Affected:< 3.3.17Fixed in:3.3.17CVE-2019-10936derived from NVD
simatic s7-300 cpu 315 firmwareNVD
Affected:< 3.3.17Fixed in:3.3.17CVE-2019-10936derived from NVD
simatic s7-300 cpu 316-2 dp firmwareNVD
Affected:< 3.3.17Fixed in:3.3.17CVE-2019-10936derived from NVD
simatic s7-300 cpu 318-2 firmwareNVD
Affected:< 3.3.17Fixed in:3.3.17CVE-2019-10936derived from NVD
simatic s7-300 cpu firmwareNVD
Affected:< 3.3.17Fixed in:3.3.17CVE-2019-10936derived from NVD
simatic s7-400 v6 firmwareNVD
Affected:< 6.0.9Fixed in:6.0.9CVE-2019-10936derived from NVD
simatic s7-400h v6 firmwareNVD
Affected:< 6.0.9Fixed in:6.0.9CVE-2019-10936derived from NVD
simatic s7-410 v8 firmwareNVD
Affected:< 8.2.2Fixed in:8.2.2CVE-2019-10936derived from NVD
simatic winac rtx \(f\) firmwareNVD
Affected:< 2010Fixed in:2010CVE-2019-10936derived from NVD
sinamics dcm firmwareNVD
Affected:< 1.5Fixed in:1.5CVE-2019-10936derived from NVD
sinamics dcp firmwareNVD
Affected:< 1.3Fixed in:1.3CVE-2019-10936derived from NVD
sinamics g110m firmwareNVD
Affected:< 4.7Fixed in:4.7CVE-2019-10936derived from NVD
sinamics g120 firmwareNVD
Affected:< 4.7Fixed in:4.7CVE-2019-10936derived from NVD
sinamics g130 firmwareNVD
Affected:< 5.2Fixed in:5.2CVE-2019-10936derived from NVD
sinamics g150 firmwareNVD
Affected:< 5.2Fixed in:5.2CVE-2019-10936derived from NVD
sinamics gl150 firmwareNVD
Affected:< 4.8Fixed in:4.8CVE-2019-10936derived from NVD
sinamics gm150 firmwareNVD
Affected:< 4.8Fixed in:4.8CVE-2019-10936derived from NVD
sinamics s120 firmwareNVD
Affected:< 5.2Fixed in:5.2CVE-2019-10936derived from NVD
sinamics s150 firmwareNVD
Affected:< 5.2Fixed in:5.2CVE-2019-10936derived from NVD
sinamics sl150 firmwareNVD
Affected:< 4.7Fixed in:4.7CVE-2019-10936derived from NVD
sinumerik 828dNVD
Affected:< 4.8Fixed in:4.8CVE-2019-10936derived from NVD

Remediation is compiled from vendor and distribution security advisories. Always confirm against the linked source for your exact version and platform.

CVSS v3 Vector

Exploitability

Attack VectorNetwork
Attack ComplexityLow
Privileges RequiredNone
User InteractionNone
ScopeUnchanged

Impact

ConfidentialityNone
IntegrityNone
AvailabilityHigh

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploit Intelligence

2.07%probability of exploitation in 30 days
79thpercentile

Elevated risk: more likely to be exploited than 79% of all known CVEs.

References

Vendor Advisory1
Other references1

Related Vulnerabilities

Other CWE-400 (Resource Exhaustion) vulnerabilities, ordered by exploit likelihood. View all

CVESeverityCVSSEPSSExploitedFix
CVE-2023-44487High7.5100%KEVFix
CVE-2021-44228Critical10.0100%KEV + RansomFix
CVE-2011-3192High7.899%-Fix
CVE-2019-11478Medium5.395%-Fix
CVE-2024-25617Medium5.389%-Fix
CVE-2018-1000115High7.589%-Fix
Embed a live status badge for CVE-2019-10936
CVE-2019-10936 severity badge

Markdown

[![CVE-2019-10936](https://tridentstack.com/cve/badge/CVE-2019-10936.svg)](https://tridentstack.com/cve/CVE-2019-10936)

HTML

<a href="https://tridentstack.com/cve/CVE-2019-10936"><img src="https://tridentstack.com/cve/badge/CVE-2019-10936.svg" alt="CVE-2019-10936"></a>

Find and fix vulnerabilities across your fleet

TridentStack Control continuously scans your Windows, macOS, and Linux fleet for known vulnerabilities, prioritizes them by severity and active exploitation, and patches them automatically.

Start free

This product uses NVD data but is not endorsed or certified by the NVD. EPSS scores courtesy of FIRST.org (https://www.first.org/epss). Source: CISA KEV Catalog. Data as of 2024-11-21.