CVE-2023-40709 Information

Description

An adversary could crash the entire device by sending a large quantity of ICMP requests if the controller has the built-in web server enabled but does not have the built-in web server completely set up and configured for the SNAP PAC S1 Firmware version R10.3b

Reference

https://www.cisa.gov/news-events/ics-advisories/icsa-23-236-02