CNNVD-202509-1422 Information
CNNVD ID
CNNVD-202509-1422
Related CVE
- CNNVD Published: 2025-09-09
Description (Chinese)
Siemens SIMATIC PCS neo和Siemens User Management Component都是德国西门子(Siemens)公司的产品。Siemens SIMATIC PCS neo是一个分布式控制系统。Siemens User Management Component是一个维护西门子软件的组件。 Siemens SIMATIC PCS neo和Siemens User Management Component存在缓冲区错误漏洞,该漏洞源于越界读取,可能导致拒绝服务。以下版本受到影响:SIMATIC PCS neo V4.1版本、V5.0版本和UMC V2.15.1.3之前版本。
Description (English)
Siemens SIMATIC PCS neo and Siemens User Management Component are products of Siemens, Germany. Siemens SIMATIC PCS neo is a distributed control system. Siemens User Management Component is a component for the maintenance of Siemens software. Siemens SIMATIC PCS neo and Siemens User Management Component had an erroneous loophole in the buffer zone, which originated in cross-border access and could lead to the denial of services. The following versions were affected: SIMATIC PCS neo V4.1, V5.0 and UMC V2.15.1.3.
Hazard Level
Medium
Vulnerability Type
缓冲区错误
Affected Vendor
西门子
Published
2025-09-09
Last Modified
2026-02-24
References
https://cert-portal.siemens.com/productcert/html/ssa-722410.html