LiveActive security incident?Get immediate response
CVE Record

CVE-2019-19300: A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, Developme...

A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P, KTK ATE530S, SIDOOR ATD430W, SIDOOR ATE530S COATED, SIDOOR ATE531S, SIMATIC ET 200AL IM 157-1 PN (6ES7157-1AB00-0AB0), SIMATIC ET 200eco PN, AI 8xRTD/TC, M12-L (6ES7144-6JF00-0BB0), SIMATIC ET 200eco PN, CM 4x IO-Link, M12-L (6ES7148-6JE00-0BB0), SIMATIC ET 200eco PN, CM 8x IO-Link, M12-L (6ES7148-6JG00-0BB0), SIMATIC ET 200eco PN, CM 8x IO-Link, M12-L (6ES7148-6JJ00-0BB0), SIMATIC ET 200eco PN, DI 16x24VDC, M12-L (6ES7141-6BH00-0BB0), SIMATIC ET 200eco PN, DI 8x24VDC, M12-L (6ES7141-6BG00-0BB0), SIMATIC ET 200eco PN, DIQ 16x24VDC/2A, M12-L (6ES7143-6BH00-0BB0), SIMATIC ET 200eco PN, DQ 8x24VDC/0,5A, M12-L (6ES7142-6BG00-0BB0), SIMATIC ET 200eco PN, DQ 8x24VDC/2A, M12-L (6ES7142-6BR00-0BB0), SIMATIC ET 200MP IM 155-5 PN HF (6ES7155-5AA00-0AC0), SIMATIC ET 200pro IM 154-8 PN/DP CPU (6ES7154-8AB01-0AB0), SIMATIC ET 200pro IM 154-8F PN/DP CPU (6ES7154-8FB01-0AB0), SIMATIC ET 200pro IM 154-8FX PN/DP CPU (6ES7154-8FX00-0AB0), SIMATIC ET 200S IM 151-8 PN/DP CPU (6ES7151-8AB01-0AB0), SIMATIC ET 200S IM 151-8F PN/DP CPU (6ES7151-8FB01-0AB0), SIMATIC ET 200SP IM 155-6 MF HF (6ES7155-6MU00-0CN0), SIMATIC ET 200SP IM 155-6 PN HA (incl. SIPLUS variants), SIMATIC ET 200SP IM 155-6 PN HF (6ES7155-6AU00-0CN0), SIMATIC ET 200SP IM 155-6 PN/2 HF (6ES7155-6AU01-0CN0), SIMATIC ET 200SP IM 155-6 PN/3 HF (6ES7155-6AU30-0CN0), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants), SIMATIC MICRO-DRIVE PDC, SIMATIC PN/MF Coupler (6ES7158-3MU10-0XA0), SIMATIC PN/PN Coupler (6ES7158-3AD10-0XA0), SIMATIC S7-1200 CPU family (incl. SIPLUS variants), SIMATIC S7-1500 CPU family (incl. related ET 200 CPUs and SIPLUS variants), SIMATIC S7-1500 Software Controller, SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0), SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0), SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0), SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0), SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0), SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0), SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0), SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0), SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0), SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0), SIMATIC S7-400 H V6 and below CPU family (incl. SIPLUS variants), SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants), SIMATIC S7-410 V10 CPU family (incl. SIPLUS variants), SIMATIC S7-410 V8 CPU family (incl. SIPLUS variants), SIMATIC TDC CP51M1, SIMATIC TDC CPU555, SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0), SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0), SINAMICS S/G Control Unit w. PROFINET, SIPLUS ET 200MP IM 155-5 PN HF (6AG1155-5AA00-2AC0), SIPLUS ET 200MP IM 155-5 PN HF (6AG1155-5AA00-7AC0), SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL (6AG2155-5AA00-1AC0), SIPLUS ET 200S IM 151-8 PN/DP CPU (6AG1151-8AB01-7AB0), SIPLUS ET 200S IM 151-8F PN/DP CPU (6AG1151-8FB01-2AB0), SIPLUS ET 200SP IM 155-6 PN HF (6AG1155-6AU00-2CN0), SIPLUS ET 200SP IM 155-6 PN HF (6AG1155-6AU00-4CN0), SIPLUS ET 200SP IM 155-6 PN HF (6AG1155-6AU01-2CN0), SIPLUS ET 200SP IM 155-6 PN HF (6AG1155-6AU01-7CN0), SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL (6AG2155-6AU00-1CN0), SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL (6AG2155-6AU01-1CN0), SIPLUS ET 200SP IM 155-6 PN HF TX RAIL (6AG2155-6AU01-4CN0), SIPLUS NET PN/PN Coupler (6AG2158-3AD10-4XA0), SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0), SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0), SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0), SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0), SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0). The Interniche-based TCP Stack can be forced to make very expensive calls for every incoming packet which can lead to a denial of service.

HighCVSS 7.5Not KEV-listedUpdated
Glexia's TakeAutomated analysishigh

Security readout for executives and security teams

Plain-English summary

This CVE affects many Siemens industrial controllers and PROFINET-connected modules using an Interniche-based TCP stack. A remote, unauthenticated attacker could make the device spend excessive processing effort on incoming packets, causing a denial of service. The business risk is operational disruption where these devices support production, safety, or building automation workflows.

Executive priority

Prioritize environments where affected Siemens devices control production, safety, doors, drives, or distributed I/O. The issue is availability-focused, but remote unauthenticated denial of service can still create material operational risk in industrial settings.

Technical view

The issue is CWE-400 uncontrolled resource consumption in the Interniche-based TCP stack. CVSS 3.1 is 7.5: network attack vector, low complexity, no privileges, no user interaction, and high availability impact only. The supplied data names many Siemens SIMATIC, SIPLUS, SIDOOR, SINAMICS, and PROFINET development or evaluation products.

Likely exposure

Exposure is most likely in OT environments running affected Siemens SIMATIC S7, ET 200, SIPLUS, SINAMICS, SIDOOR, or PROFINET evaluation devices on reachable industrial networks. Internet exposure is not stated in the sources and should be verified asset by asset.

Exploitation context

The source bundle marks CISA KEV as false, and no cited source states active exploitation. The CVSS temporal vector lists proof-of-concept exploit maturity, but the bundle does not provide exploit details. Treat this as a credible remote availability risk, not confirmed in-the-wild exploitation.

Researcher notes

The supplied evidence is strong for vulnerability class, impact, CVSS, and broad affected Siemens scope. It is incomplete for exact fixed versions in this prompt excerpt. Use Siemens SSA-593272 as the authoritative source for per-product remediation and avoid assuming unsupported fixes.

Mitigation direction

  • Identify affected Siemens product families and exact firmware versions in OT asset inventory.
  • Review Siemens SSA-593272 for product-specific updates, mitigations, and lifecycle guidance.
  • Apply vendor-supported firmware or software updates where available and operationally approved.
  • Restrict network access to affected devices from untrusted or non-operational networks.
  • Use OT segmentation and monitoring to reduce denial-of-service blast radius.

Validation and detection

  • Compare deployed Siemens model numbers and versions against the Siemens advisory affected list.
  • Verify whether affected devices are reachable from corporate, remote-access, or external networks.
  • Confirm vendor update status and compensating controls for each affected asset.
  • Review monitoring for unusual traffic volume or availability events affecting Siemens OT devices.
Prepared
Confidence
high
Sources
4

Generated from the cited source records. This long-tail analysis has not been individually reviewed by a named human.

Potential ATT&CK relevance

Conservative CVE-to-ATT&CK context

These mappings and lookup hints may be relevant to the vulnerability behavior, CWE, affected product, or exposure path. Glexia-inferred context is not an official MITRE, ATT&CK, CWE, or CVE Program mapping.

ATT&CK lookup starting points

Use these exact CWE pages and searches to review the Glexia ATT&CK library from this CVE's weakness and description context.

cwe · low confidence lookup

CWE-400: Exact CWE lookup

Use the exact CWE identifier as the starting point before reviewing related ATT&CK behavior. Open the exact CWE lookup page first, then review the ATT&CK searches from that MITRE weakness context. This is a Glexia lookup hint, not an official ATT&CK mapping.

Open ATT&CK lookup
cve · low confidence lookup

CVE-2019-19300 mapping review

Open the CVE-to-ATT&CK bridge for reviewed, inferred, or future official mappings tied to this CVE.

Open ATT&CK lookup
Vulnerability profileCVE Program record
Severity
High
CVSS
7.5 (3.1)
Known Exploited
No
Published

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C

Official CVE source material

CNA and ADP enrichment extracted from CVE v5

These fields come from the CVE record and ADP containers, not from Glexia's Take. They preserve time-varying source decisions such as CISA SSVC, KEV status, CVSS metrics, and provider references.

1CVSS vectors
0Timeline events
0ADP providers
3Source links

CVSS vector scores

1 official score

We collect every scored CVSS vector available in the official CNA and ADP containers. When more than one version is present, the table keeps the source vectors side by side instead of collapsing them into the highest score.

ScoreVersionSeverityVectorExploitImpactSource
7.5CVSS 3.1HighCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C3.93.6Primary CVE score

Vulnerability scoring details

Base CVSS 3.1 score

7.5High
CVSS 3.1 vector shape for CVE-2019-19300Attack VectorAttack ComplexityPrivileges RequiredUser InteractionScopeConfidentiality ImpactIntegrity ImpactAvailability Impact

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C

Attack Vector
NetworkAdjacentLocalPhysical
Attack Complexity
LowHigh
Privileges Required
NoneLowHigh
User Interaction
NoneRequired
Scope
ChangedUnchanged
Confidentiality Impact
HighLowNone
Integrity Impact
HighLowNone
Availability Impact
HighLowNone
Affected products

Products and packages named in the record

VendorProductVersion / packageStatus
SiemensDevelopment/Evaluation Kits for PROFINET IO: EK-ERTEC 2000unknown
SiemensDevelopment/Evaluation Kits for PROFINET IO: EK-ERTEC 200P0unknown
SiemensKTK ATE530S0unknown
SiemensSIDOOR ATD430W0unknown
SiemensSIDOOR ATE530S COATED0unknown
SiemensSIDOOR ATE531S0unknown
SiemensSIMATIC ET 200AL IM 157-1 PN0unknown
SiemensSIMATIC ET 200eco PN, AI 8xRTD/TC, M12-LV5.1.1unknown
SiemensSIMATIC ET 200eco PN, CM 4x IO-Link, M12-LV5.1.1unknown
SiemensSIMATIC ET 200eco PN, CM 8x IO-Link, M12-LV5.1.1unknown
SiemensSIMATIC ET 200eco PN, CM 8x IO-Link, M12-LV5.1.1unknown
SiemensSIMATIC ET 200eco PN, DI 16x24VDC, M12-LV5.1.1unknown
SiemensSIMATIC ET 200eco PN, DI 8x24VDC, M12-LV5.1.1unknown
SiemensSIMATIC ET 200eco PN, DIQ 16x24VDC/2A, M12-LV5.1.1unknown
SiemensSIMATIC ET 200eco PN, DQ 8x24VDC/0,5A, M12-LV5.1.1unknown
SiemensSIMATIC ET 200eco PN, DQ 8x24VDC/2A, M12-LV5.1.1unknown
SiemensSIMATIC ET 200MP IM 155-5 PN HFV4.2.0unknown
SiemensSIMATIC ET 200pro IM 154-8 PN/DP CPU0unknown
SiemensSIMATIC ET 200pro IM 154-8F PN/DP CPU0unknown
SiemensSIMATIC ET 200pro IM 154-8FX PN/DP CPU0unknown
SiemensSIMATIC ET 200S IM 151-8 PN/DP CPU0unknown
SiemensSIMATIC ET 200S IM 151-8F PN/DP CPU0unknown
SiemensSIMATIC ET 200SP IM 155-6 MF HF0unknown
SiemensSIMATIC ET 200SP IM 155-6 PN HA (incl. SIPLUS variants)0unknown
SiemensSIMATIC ET 200SP IM 155-6 PN HFV4.2.0unknown
SiemensSIMATIC ET 200SP IM 155-6 PN/2 HFV4.2.0unknown
SiemensSIMATIC ET 200SP IM 155-6 PN/3 HFV4.2.0unknown
SiemensSIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)0unknown
SiemensSIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants)0unknown
SiemensSIMATIC MICRO-DRIVE PDC0unknown
Weakness

CWE details

CWE links open Glexia weakness intelligence pages with official CWE context, developer remediation guidance, and related CVE mappings.

CWE-400 · source CWE mapping

Uncontrolled Resource Consumption

Uncontrolled Resource Consumption represents a recurring weakness pattern that can create exploitable paths when design, validation, or implementation controls are missing.