Siemens SIMATIC PROCESS HISTORIAN OPC UA SERVER FIRMWARE 2019

CPE Details

Siemens SIMATIC PROCESS HISTORIAN OPC UA SERVER FIRMWARE 2019
siemens
simatic_process_historian_opc_ua_server_firmware
2019
2021-09-03
10h06 +00:00
2021-09-03
18h17 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:o:siemens:simatic_process_historian_opc_ua_server_firmware:2019:*:*:*:*:*:*:*

Informations

Vendor

siemens

Product

simatic_process_historian_opc_ua_server_firmware

Version

2019

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-40142 2021-08-27 04h51 +00:00 In OPC Foundation Local Discovery Server (LDS) before 1.04.402.463, remote attackers can cause a denial of service (DoS) by sending carefully crafted messages that lead to Access of a Memory Location After the End of a Buffer.
7.5
High
CVE-2021-3449 2021-03-25 14h25 +00:00 An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).
5.9
Medium