https://cert-portal.siemens.com/productcert/pdf/ssa-849072.pdf

OR
     *cpe:2.3:a:siemens:sicam_pas\/pqs:*:*:*:*:*:*:*:* versions from (including) 7.0 up to (excluding) 8.06

OR

OR
     *cpe:2.3:a:siemens:sicam_pas:*:*:*:*:*:*:*:* versions from (including) 7.0 from (excluding) 8.06

OR
     *cpe:2.3:a:siemens:sicam_pas/pqs:*:*:*:*:*:*:*:* versions from (including) 7.0 from (excluding) 8.06

OR
     *cpe:2.3:a:siemens:sicam_pqs:*:*:*:*:*:*:*:* versions from (including) 7.0 from (excluding) 8.06

OR
     *cpe:2.3:a:siemens:sicam_pas/pqs:*:*:*:*:*:*:*:* versions from (including) 7.0 from (excluding) 8.06

NIST AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

NIST CWE-20

OR
     *cpe:2.3:a:siemens:sicam_pas:*:*:*:*:*:*:*:* versions from (including) 7.0 up to (excluding) 8.06
     *cpe:2.3:a:siemens:sicam_pqs:*:*:*:*:*:*:*:* versions from (including) 7.0 up to (excluding) 8.06

https://cert-portal.siemens.com/productcert/pdf/ssa-849072.pdf No Types Assigned

https://cert-portal.siemens.com/productcert/pdf/ssa-849072.pdf Patch, Vendor Advisory

A vulnerability has been identified in SICAM PAS/PQS (All versions < V7.0), SICAM PAS/PQS (All versions >= 7.0 < V8.06). Affected software does not properly validate the input for a certain parameter in the s7ontcp.dll. This could allow an unauthenticated remote attacker to send messages and create a denial of service condition as the application crashes.
At the time of assigning the CVE, the affected firmware version of the component has already been superseded by succeeding mainline versions.

A vulnerability has been identified in SICAM PAS/PQS (All versions < V7.0), SICAM PAS/PQS (All versions >= 7.0 < V8.06). Affected software does not properly validate the input for a certain parameter in the s7ontcp.dll. This could allow an unauthenticated remote attacker to send messages and create a denial of service condition as the application crashes. At the time of assigning the CVE, the affected firmware version of the component has already been superseded by succeeding mainline versions.