Cyber Resilience

CVE-2023-28831

High

Published: 12 September 2023

Published
12 September 2023
Modified
18 August 2025
KEV Added
Patch
CVSS Score v4 8.7 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
EPSS Score 0.0071 72.8th percentile
Risk Priority 18 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-28831 is a high-severity Integer Overflow or Wraparound (CWE-190) vulnerability in Siemens Simatic S7-1500 Software Controller Firmware. Its CVSS base score is 8.7 (High).

Operationally, ranked in the top 27.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation. This could allow an unauthenticated remote attacker to create a…

more

denial of service condition by sending a specially crafted certificate.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

siemens
simatic cloud connect 7 cc712 firmware
≤ 2.2
siemens
simatic cloud connect 7 cc716 firmware
≤ 2.2
siemens
simatic drive controller cpu 1504d tf firmware
≤ 2.2
siemens
simatic drive controller cpu 1507d tf firmware
≤ 2.9.7
siemens
simatic et 200sp open controller cpu firmware
≤ 2.9.7
siemens
simatic s7-1200 cpu firmware
≤ 3.0.3
siemens
simatic s7-1500 cpu 1510sp-1 pn firmware
≤ 2.9.7
siemens
simatic s7-1500 cpu 1510sp f-1 pn firmware
≤ 3.0.3
siemens
simatic s7-1500 cpu 1511-1 pn firmware
≤ 21.9.7
siemens
simatic s7-1500 cpu 1511c-1 pn firmware
≤ 30.0.0
+68 more product configuration(s) — see NVD for full list

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References