CVE-2023-29105

HIGH Year: 2023
CVSS v3 Score
7.5
High
Weakness Type
CWE-544
View all →

Vulnerability Description

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 (All versions >= V2.0 < V2.1), SIMATIC Cloud Connect 7 CC712 (All versions < V2.1), SIMATIC Cloud Connect 7 CC716 (All versions >= V2.0 < V2.1), SIMATIC Cloud Connect 7 CC716 (All versions < V2.1). The affected device is vulnerable to a denial of service while parsing a random (non-JSON) MQTT payload. This could allow an attacker who can manipulate the communication between the MQTT broker and the affected device to cause a denial of service (DoS).

Related Vulnerabilities

CVE-2024-41768

MEDIUM
CVSS:6.5(Medium)

IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to cause an unhandled SSL exception which could leave the connection in an unexpected or insecure stat...

CWE-5442024

CVE-2024-47971

MEDIUM
CVSS:6.5(Medium)

Improper error handling in firmware of some SSD DC Products may allow an attacker to enable denial of service.

CWE-5442024

CVE-2020-5359

MEDIUM
CVSS:5.8(Medium)

Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to mod...

CWE-5442020

CVE-2024-41768

MEDIUM
CVSS:6.5(Medium)

IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 could allow a remote attacker to cause an unhandled SSL exception which could leave the connection in an unexpected or insecure stat...

CWE-5442024

CVE-2024-47971

MEDIUM
CVSS:6.5(Medium)

Improper error handling in firmware of some SSD DC Products may allow an attacker to enable denial of service.

CWE-5442024

CVE-2020-5359

MEDIUM
CVSS:5.8(Medium)

Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to mod...

CWE-5442020