What is CVE-2022-38371?

CVE-2022-38371 is a high-severity vulnerability in Siemens Apogee Mbc (Ppc) (Bacnet), classified under Uncontrolled Resource Consumption. CVSS score: 7.5/10. Published 2022-10-11.

How severe is CVE-2022-38371?

High severity. CVSS v3 base score is 7.5 out of 10.

Resource exhaustion in Siemens Apogee Mbc (Ppc) (Bacnet)

CVE-2022-38371

A vulnerability has been identified in APOGEE MBC (PPC) (BACnet) (All versions), APOGEE MBC (PPC) (P2 Ethernet) (All versions), APOGEE MEC (PPC) (BACnet) (All versions), APOGEE MEC (PPC) (P2 Ethernet) (All versions), APOGEE PXC Compact (BA…

Vulnerability class: DoS (Denial of Service)

EPSS: 0.008 (74.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Siemens Apogee Mbc (Ppc) (Bacnet) — versions All versions
Siemens Apogee Mbc (Ppc) (P2 Ethernet) — versions All versions
Siemens Apogee Mec (Ppc) (Bacnet) — versions All versions
Siemens Apogee Mec (Ppc) (P2 Ethernet) — versions All versions
Siemens Apogee Pxc Compact (Bacnet) — versions 0
Siemens Apogee Pxc Compact (P2 Ethernet) — versions 0
Siemens Apogee Pxc Modular (Bacnet) — versions 0
Siemens Apogee Pxc Modular (P2 Ethernet) — versions 0
Siemens Desigo Pxc001-e.d — versions V2.3
Siemens Desigo Pxc00-e.d — versions V2.3

Weakness classification (CWE)

CWE-400 — Uncontrolled Resource Consumption

References

Frequently asked questions

What is CVE-2022-38371?: CVE-2022-38371 is a high-severity vulnerability in Siemens Apogee Mbc (Ppc) (Bacnet), classified under Uncontrolled Resource Consumption. CVSS score: 7.5/10. Published 2022-10-11.
How severe is CVE-2022-38371?: High severity. CVSS v3 base score is 7.5 out of 10.