CVE-2020-28393

An unauthenticated remote attacker could create a permanent denial-of-service condition by sending specially crafted OSPF packets. Successful exploitation requires OSPF to be enabled on an affected device on the SCALANCE XM-400, XR-500 (All versions prior to v6.4).

Summary:

An unauthenticated remote attacker could create a permanent denial-of-service condition by sending specially crafted OSPF packets. Successful exploitation requires OSPF to be enabled on an affected device on the SCALANCE XM-400, XR-500 (All versions prior to v6.4).

Reference Links(if available):

  • https://cert-portal.siemens.com/productcert/pdf/ssa-116379.pdf
  • https://us-cert.cisa.gov/ics/advisories/icsa-21-131-10
  • CVSS Score (if available)

    v2: / MEDIUM

    v3: /

    Links to Exploits(if available)