CVE-2023-28766
Severity CVSS v4.0:
Pending analysis
Type:
CWE-476
NULL Pointer Dereference
Publication date:
11/04/2023
Last modified:
11/11/2025
Description
A vulnerability has been identified in SIPROTEC 5 6MD85 (CP300) (All versions >= V7.80 = V7.80 = V7.80 = V7.80 = V7.80
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:siemens:siprotec_5_6md85_firmware:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:siemens:siprotec_5_6md85:cp200:*:*:*:*:*:*:* | ||
| cpe:2.3:o:siemens:siprotec_5_6md85_firmware:*:*:*:*:*:*:*:* | 9.40 (excluding) | |
| cpe:2.3:h:siemens:siprotec_5_6md85:cp300:*:*:*:*:*:*:* | ||
| cpe:2.3:o:siemens:siprotec_5_6md86_firmware:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:siemens:siprotec_5_6md86:cp200:*:*:*:*:*:*:* | ||
| cpe:2.3:o:siemens:siprotec_5_6md86_firmware:*:*:*:*:*:*:*:* | 9.40 (excluding) | |
| cpe:2.3:h:siemens:siprotec_5_6md86:cp300:*:*:*:*:*:*:* | ||
| cpe:2.3:o:siemens:siprotec_5_6md89_firmware:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:siemens:siprotec_5_6md89:cp300:*:*:*:*:*:*:* | ||
| cpe:2.3:o:siemens:siprotec_5_6mu85_firmware:*:*:*:*:*:*:*:* | 9.40 (excluding) | |
| cpe:2.3:h:siemens:siprotec_5_6mu85:cp300:*:*:*:*:*:*:* | ||
| cpe:2.3:o:siemens:siprotec_5_7ke85_firmware:*:*:*:*:*:*:*:* | ||
| cpe:2.3:h:siemens:siprotec_5_7ke85:cp200:*:*:*:*:*:*:* | ||
| cpe:2.3:o:siemens:siprotec_5_7ke85_firmware:*:*:*:*:*:*:*:* | 9.40 (excluding) |
To consult the complete list of CPE names with products and versions, see this page