How severe is CVE-2023-37195?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 4.4 out of 10.

What type of vulnerability is CVE-2023-37195?

This is classified as CWE-400, which is a common weakness in software security.

CVE-2023-37195 - MEDIUM Severity | CVSS 4.4

Vulnerability Description

A vulnerability has been identified in SIMATIC CP 1604 (All versions), SIMATIC CP 1616 (All versions), SIMATIC CP 1623 (All versions), SIMATIC CP 1626 (All versions), SIMATIC CP 1628 (All versions). Affected devices insufficiently control continuous mapping of direct memory access (DMA) requests. This could allow local attackers with administrative privileges to cause a denial of service situation on the host. A physical power cycle is required to get the system working again.

Related Vulnerabilities

CVE-2018-17977

MEDIUM

CVSS:4.4(Medium)

The Linux kernel 4.14.67 mishandles certain interaction among XFRM Netlink messages, IPPROTO_AH packets, and IPPROTO_IP packets, which allows local users to cause a denial of service (memory consumpti...

CWE-4002018

CVE-2021-0008

MEDIUM

CVSS:4.4(Medium)

Uncontrolled resource consumption in firmware for Intel(R) Ethernet Adapters 800 Series Controllers and associated adapters before version 1.5.3.0 may allow privileged user to potentially enable denia...

CWE-4002021

CVE-2021-0092

MEDIUM

CVSS:4.4(Medium)

Improper access control in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable a denial of service via local access.

CWE-4002021

CVE-2022-0353

MEDIUM

CVSS:4.4(Medium)

A denial of service vulnerability was reported in the Lenovo HardwareScanPlugin versions prior to 1.3.1.2 and Lenovo Diagnostics versions prior to 4.45 that could allow a local user with administrativ...

CWE-4002022

CVE-2022-3698

MEDIUM

CVSS:4.4(Medium)

CWE-4002022

CVE-2022-43880

MEDIUM

CVSS:4.4(Medium)

IBM QRadar WinCollect Agent 10.0 through 10.1.2 could allow a privileged user to cause a denial of service. IBM X-Force ID: 240151.

CWE-4002022