Primary

Context

Siemens SiPass Integrated Out-of-Bounds Read Vulnerability Leading to Denial-of-Service

Vulnerability

Patched

A denial-of-service vulnerability has been identified in Siemens SiPass Integrated versions prior to V2.95.3.18. The issue arises from an out-of-bounds read past the end of an allocated buffer in the affected server applications. This vulnerability allows an unauthenticated remote attacker to create a denial-of-service condition by disrupting the normal functioning of the application.

Impact

Exploitation of this vulnerability can lead to a denial-of-service condition, causing the application to become unresponsive or unavailable.

Remediation

Users are advised to update SiPass Integrated to version V2.95.3.18 or later. For more information, visit the Siemens Industry Support page.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

7.0

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

2.5

exploitability

7.0

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Siemens SiPass Integrated Out-of-Bounds Read Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Remediation

Affected Products

Siemens SiPass integrated

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating