Vulnerability-Lookup

BDU:2019-01538

Vulnerability from fstec - Published: 23.11.2017

Title

Уязвимость микропрограммного обеспечения программируемого логического контроллера SIMATIC, связанная с недостаточной проверкой вводимых данных, позволяющая злоумышленнику вызвать отказ в обслуживании

Description

Уязвимость микропрограммного обеспечения программируемого логического контроллера SIMATIC связана с недостаточной проверкой вводимых данных. Эксплуатация уязвимости может позволить злоумышленнику вызвать отказ в обслуживании, путем отправки специально подготовленных пакетов на порт 161/UDP

Severity ?


                    
                      AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Vendor

Siemens AG

Software Name

SIMATIC ET 200ecoPN, SIMATIC ET 200M, SIMATIC ET 200pro, SIMATIC ET 200S, SIMATIC ET 200SP IM155-6 PN HF, SIMATIC WinAC RTX 2010 incl. F, SIRIUS Soft Starter 3RW44 PN, SINAMICS S120 w. PN, SIMATIC S7-1200, SIMATIC S7-200 SMART, SIMATIC S7-400-H, SIMATIC S7-400 PN/DP, SIMATIC S7-410, SIMATIC S7-300, SIMATIC S7-1500, SIMATIC S7-1500 Software Controller, SIMATIC ET 200AL, SIMATIC ET 200MP IM155-5 PN BA, SIMATIC ET 200MP IM155-5 PN ST, SIMATIC ET 200MP IM155-5 PN HF, SINAMICS DCM w. PN, SINAMICS DCP w. PN, SINAMICS G110M w. PN, SINAMICS S110 w. PN, SINAMICS V90 w. PN, SINUMERIK 840D sl, SIMOCODE pro V PROFINET, SIMATIC S7-400 PN, SIMATIC ET 200SP IM 155-6 PN HA, SIMATIC ET 200SP (except IM 155-6 PN HF), Development/Evaluation Kits for PROFINET IO DK Standard Ethernet Controller, Development/Evaluation Kits for PROFINET IO EK-ERTEC 200P, Development/Evaluation Kits for PROFINET IO EK-ERTEC 200, SIMOTION D, SIMOTION C, SIMOTION P, SINAMICS G120(C/P/D) w. PN, SINAMICS G130 w. PN, SINAMICS G150 w. PN, SINAMICS S120 SP1 w. PN, SINAMICS S150 w. PN, SIMATIC Compact Field Unit, SIMATIC PN/PN Coupler, SIMOCODE pro V EIP

Software Version

- (SIMATIC ET 200ecoPN), - (SIMATIC ET 200M), - (SIMATIC ET 200pro), - (SIMATIC ET 200S), до 4.2.0 (SIMATIC ET 200SP IM155-6 PN HF), - (SIMATIC WinAC RTX 2010 incl. F), - (SIRIUS Soft Starter 3RW44 PN), до V4.7 (SINAMICS S120 w. PN), до 4.2.3 (SIMATIC S7-1200), до 2.03.01 (SIMATIC S7-200 SMART), до 6.0.8 (SIMATIC S7-400-H), до 7.0.2 (SIMATIC S7-400 PN/DP), до 8.2.1 (SIMATIC S7-410), до 3.x.16 (SIMATIC S7-300), до 2.0 (SIMATIC S7-1500), до 2.0 (SIMATIC S7-1500 Software Controller), - (SIMATIC ET 200AL), до 4.0.2 (SIMATIC ET 200MP IM155-5 PN BA), до 4.1 (SIMATIC ET 200MP IM155-5 PN ST), до 4.2 (SIMATIC ET 200MP IM155-5 PN HF), до 1.4 SP1 HF6 (SINAMICS DCM w. PN), до 1.2 HF2 (SINAMICS DCP w. PN), до 4.7 SP9 HF1 (SINAMICS G110M w. PN), до 4.4 SP3 HF6 (SINAMICS S110 w. PN), до 1.02 (SINAMICS V90 w. PN), до 4.8 (SINUMERIK 840D sl), до 2.1.1 (SIMOCODE pro V PROFINET), до 6.0.6 (SIMATIC S7-400 PN), до 1.1.0 (SIMATIC ET 200SP IM 155-6 PN HA), - (SIMATIC ET 200SP (except IM 155-6 PN HF)), до 4.1.1 Patch 05 (Development/Evaluation Kits for PROFINET IO DK Standard Ethernet Controller), до 4.5 (Development/Evaluation Kits for PROFINET IO EK-ERTEC 200P), до 4.5 (Development/Evaluation Kits for PROFINET IO EK-ERTEC 200), до 5.1 HF1 (SIMOTION D), до 5.1 HF1 (SIMOTION C), до 4.5 HF5 (SIMOTION P), до 5.1 HF1 (SIMOTION P), до 4.7 SP9 HF1 (SINAMICS G120(C/P/D) w. PN), до 4.7 HF29 (SINAMICS G130 w. PN), до 4.8 HF4 (SINAMICS G130 w. PN), до 4.7 HF29 (SINAMICS G150 w. PN), до 4.8 HF4 (SINAMICS G150 w. PN), до 4.7 HF29 (SINAMICS S120 w. PN), до 4.8 HF5 (SINAMICS S120 w. PN), - (SINAMICS S120 SP1 w. PN), до 4.7 HF29 (SINAMICS S150 w. PN), до 4.8 HF4 (SINAMICS S150 w. PN), - (SIMATIC Compact Field Unit), до 2.1.0 (SIMATIC PN/PN Coupler), до 1.0.2 (SIMOCODE pro V EIP)

Possible Mitigations

Обновление программного обеспечения: Для SIMATIC S7-200 Smart до V2.03.01: https://support.industry.siemens.com/cs/cn/en/view/109749409 Для SIMATIC S7-400 PN до V6.0.6: https://support.industry.siemens.com/cs/de/en/view/109474874 Для SIMATIC S7-400 H до V6.0.8: https://support.industry.siemens.com/cs/ww/en/view/109474550 Для SIMATIC S7-400 PN/DP до V7.0.2: https://support.industry.siemens.com/cs/ww/en/view/109752685 Для SIMATIC S7-410 до V8.2.1: https://support.industry.siemens.com/cs/ww/en/view/109476571 Для SIMATIC S7-1200 до V4.2.3: https://support.industry.siemens.com/cs/us/en/view/109741461 Для SIMATIC S7-1500 до V2.0 или новее: https://support.industry.siemens.com/cs/us/en/ps/13717/dl Для SIMATIC S7-1500 Software Controller до V2.0 или новее: https://support.industry.siemens.com/cs/us/en/view/109478528 Для SIMATIC ET 200MP IM155-5 PN BA до V4.0.2: https://support.industry.siemens.com/cs/ww/en/view/109754281 Для SIMATIC ET 200MP IM155-5 PN ST до V4.1: https://support.industry.siemens.com/cs/ww/en/view/78647504 Для SIMATIC ET 200MP IM155-5 PN HF до V4.2: https://support.industry.siemens.com/cs/us/en/view/93012181 Для SIMATIC ET 200SP IM 155-6 PN HF до V4.2.0: https://support.industry.siemens.com/cs/ww/en/view/85624387 Для SIMATIC ET 200SP IM 155-6 PN HA до V1.1.0: https://support.industry.siemens.com/cs/ww/en/view/109763483 Для Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller до V4.1.1 Patch 05: https://support.industry.siemens.com/cs/ww/en/view/109755160 Для Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P до V4.5: https://support.industry.siemens.com/cs/ww/en/view/109750012 Для Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 до V4.5: https://support.industry.siemens.com/cs/ww/en/view/109755151 Для SIMOTION D до V5.1 HF1: https://support.industry.siemens.com/cs/ww/en/view/31045047 Для SINAMICS DCM w. PN до V1.4 SP1 HF6: https://support.industry.siemens.com/cs/ww/en/view/44029688 Для SINAMICS DCP w. PN до V1.2 HF2: https://support.industry.siemens.com/cs/ww/en/view/109474935 Для SINAMICS G110M w. PN и SINAMICS G120 (C/P/D) w. PN до V4.7 SP9 HF1: https://support.industry.siemens.com/cs/document/109750507 Для SINAMICS G130 V4.7 w. PN до V4.7 HF29: https://support.industry.siemens.com/cs/ww/en/view/103433117 Для SINAMICS G130 V4.8 w. PN и SINAMICS G150 V4.8 w. PN до V4.8 HF4: https://support.industry.siemens.com/cs/ww/en/view/109742040 Для SINAMICS G150 V4.7 w. PN до V4.7 HF29: https://support.industry.siemens.com/cs/ww/en/view/103433117 Для SINAMICS S110 w. PN до V4.4 SP3 HF6: https://support.industry.siemens.com/cs/document/109474320 Для SINAMICS S120 prior to V4.7 w. PN и SINAMICS S120 V4.7 SP1 w. PN до V5.1 SP1: https://support.industry.siemens.com/cs/document/109758423 Для SINAMICS S120 V4.7 w. PN до V4.7 HF29: https://support.industry.siemens.com/cs/ww/en/view/92522512 Для SINAMICS S120 V4.8 w. PN до V4.8 HF5: https://support.industry.siemens.com/cs/us/en/view/109740193 Для SINAMICS S150 V4.7 w. PN до V4.7 HF29: https://support.industry.siemens.com/cs/ww/en/view/103433117 Для SINAMICS S150 V4.8 w. PN до V4.8 HF4: https://support.industry.siemens.com/cs/ww/en/view/109742040 Для SINAMICS V90 w. PN до V1.02: https://support.industry.siemens.com/cs/document/109746210 Для SIMATIC PN/PN Coupler до V4.2.0: https://support.industry.siemens.com/cs/ww/en/view/109760973 Для SIMOCODE pro V PROFINET до V2.1.1: https://support.industry.siemens.com/cs/ww/en/view/109749989 Для SINUMERIK 840D sl до V4.8 SP3 можно получить в технической поддержке. Для SIMOTION P V4.4 and V4.5 до V4.5 HF5 можно получить в технической поддержке. Для SIMOTION P V5 до V5.1 HF1 можно получить в технической поддержке. Компенсирующие меры: Использование VPN для защиты сетевого взаимодействия Защита сетевого доступа к порту 161/UPD затронутых устройств https://www.siemens.com/cert/operational-guidelines-industrial-security

Reference

https://cert-portal.siemens.com/productcert/pdf/ssa-346262.pdf https://nvd.nist.gov/vuln/detail/CVE-2017-12741

CWE

CWE-20

JSON

To clipboard

{
  "CVSS 2.0": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
  "CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
  "CVSS 4.0": null,
  "remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
  "remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
  "\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Siemens AG",
  "\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (SIMATIC ET 200ecoPN), - (SIMATIC ET 200M), - (SIMATIC ET 200pro), - (SIMATIC ET 200S), \u0434\u043e 4.2.0 (SIMATIC ET 200SP IM155-6 PN HF), - (SIMATIC WinAC RTX 2010 incl. F), - (SIRIUS Soft Starter 3RW44 PN), \u0434\u043e V4.7 (SINAMICS S120 w. PN), \u0434\u043e 4.2.3 (SIMATIC S7-1200), \u0434\u043e 2.03.01 (SIMATIC S7-200 SMART), \u0434\u043e 6.0.8 (SIMATIC S7-400-H), \u0434\u043e 7.0.2 (SIMATIC S7-400 PN/DP), \u0434\u043e 8.2.1 (SIMATIC S7-410), \u0434\u043e 3.x.16 (SIMATIC S7-300), \u0434\u043e 2.0 (SIMATIC S7-1500), \u0434\u043e 2.0 (SIMATIC S7-1500 Software Controller), - (SIMATIC ET 200AL), \u0434\u043e 4.0.2 (SIMATIC ET 200MP IM155-5 PN BA), \u0434\u043e 4.1 (SIMATIC ET 200MP IM155-5 PN ST), \u0434\u043e 4.2 (SIMATIC ET 200MP IM155-5 PN HF), \u0434\u043e 1.4 SP1 HF6 (SINAMICS DCM w. PN), \u0434\u043e 1.2 HF2 (SINAMICS DCP w. PN), \u0434\u043e 4.7 SP9 HF1 (SINAMICS G110M w. PN), \u0434\u043e 4.4 SP3 HF6 (SINAMICS S110 w. PN), \u0434\u043e 1.02 (SINAMICS V90 w. PN), \u0434\u043e 4.8 (SINUMERIK 840D sl), \u0434\u043e 2.1.1 (SIMOCODE pro V PROFINET), \u0434\u043e 6.0.6 (SIMATIC S7-400 PN), \u0434\u043e 1.1.0 (SIMATIC ET 200SP IM 155-6 PN HA), - (SIMATIC ET 200SP (except IM 155-6 PN HF)), \u0434\u043e 4.1.1 Patch 05 (Development/Evaluation Kits for PROFINET IO DK Standard Ethernet Controller), \u0434\u043e 4.5 (Development/Evaluation Kits for PROFINET IO EK-ERTEC 200P), \u0434\u043e 4.5 (Development/Evaluation Kits for PROFINET IO EK-ERTEC 200), \u0434\u043e 5.1 HF1 (SIMOTION D), \u0434\u043e 5.1 HF1 (SIMOTION C), \u0434\u043e 4.5 HF5 (SIMOTION P), \u0434\u043e 5.1 HF1 (SIMOTION P), \u0434\u043e 4.7 SP9 HF1 (SINAMICS G120(C/P/D) w. PN), \u0434\u043e 4.7 HF29 (SINAMICS G130 w. PN), \u0434\u043e 4.8 HF4 (SINAMICS G130 w. PN), \u0434\u043e 4.7 HF29 (SINAMICS G150 w. PN), \u0434\u043e 4.8 HF4 (SINAMICS G150 w. PN), \u0434\u043e 4.7 HF29 (SINAMICS S120 w. PN), \u0434\u043e 4.8 HF5 (SINAMICS S120 w. PN), - (SINAMICS S120 SP1 w. PN), \u0434\u043e 4.7 HF29 (SINAMICS S150 w. PN), \u0434\u043e 4.8 HF4 (SINAMICS S150 w. PN), - (SIMATIC Compact Field Unit), \u0434\u043e 2.1.0 (SIMATIC PN/PN Coupler), \u0434\u043e 1.0.2 (SIMOCODE pro V EIP)",
  "\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f:\n\u0414\u043b\u044f SIMATIC S7-200 Smart \u0434\u043e V2.03.01:\nhttps://support.industry.siemens.com/cs/cn/en/view/109749409\n\n\u0414\u043b\u044f SIMATIC S7-400 PN \u0434\u043e V6.0.6:\nhttps://support.industry.siemens.com/cs/de/en/view/109474874\n\n\u0414\u043b\u044f SIMATIC S7-400 H \u0434\u043e V6.0.8:\nhttps://support.industry.siemens.com/cs/ww/en/view/109474550\n\n\u0414\u043b\u044f SIMATIC S7-400 PN/DP \u0434\u043e V7.0.2:\nhttps://support.industry.siemens.com/cs/ww/en/view/109752685\n\n\u0414\u043b\u044f SIMATIC S7-410 \u0434\u043e V8.2.1:\nhttps://support.industry.siemens.com/cs/ww/en/view/109476571\n\n\u0414\u043b\u044f SIMATIC S7-1200 \u0434\u043e V4.2.3:\nhttps://support.industry.siemens.com/cs/us/en/view/109741461\n\n\u0414\u043b\u044f SIMATIC S7-1500 \u0434\u043e V2.0 \u0438\u043b\u0438 \u043d\u043e\u0432\u0435\u0435:\nhttps://support.industry.siemens.com/cs/us/en/ps/13717/dl\n\n\u0414\u043b\u044f SIMATIC S7-1500 Software Controller \u0434\u043e V2.0 \u0438\u043b\u0438 \u043d\u043e\u0432\u0435\u0435:\nhttps://support.industry.siemens.com/cs/us/en/view/109478528\n\n\u0414\u043b\u044f SIMATIC ET 200MP IM155-5 PN BA \u0434\u043e V4.0.2:\nhttps://support.industry.siemens.com/cs/ww/en/view/109754281\n\n\u0414\u043b\u044f SIMATIC ET 200MP IM155-5 PN ST \u0434\u043e V4.1:\nhttps://support.industry.siemens.com/cs/ww/en/view/78647504\n\n\u0414\u043b\u044f SIMATIC ET 200MP IM155-5 PN HF \u0434\u043e V4.2:\nhttps://support.industry.siemens.com/cs/us/en/view/93012181\n\n\u0414\u043b\u044f SIMATIC ET 200SP IM 155-6 PN HF \u0434\u043e V4.2.0:\nhttps://support.industry.siemens.com/cs/ww/en/view/85624387\n\n\u0414\u043b\u044f SIMATIC ET 200SP IM 155-6 PN HA \u0434\u043e V1.1.0:\nhttps://support.industry.siemens.com/cs/ww/en/view/109763483\n\n\u0414\u043b\u044f Development/Evaluation Kits for PROFINET IO:\nDK Standard Ethernet Controller \u0434\u043e V4.1.1 Patch 05:\nhttps://support.industry.siemens.com/cs/ww/en/view/109755160\n\n\u0414\u043b\u044f Development/Evaluation Kits for PROFINET IO:\nEK-ERTEC 200P \u0434\u043e V4.5:\nhttps://support.industry.siemens.com/cs/ww/en/view/109750012\n\n\u0414\u043b\u044f Development/Evaluation Kits for PROFINET IO:\nEK-ERTEC 200 \u0434\u043e V4.5:\nhttps://support.industry.siemens.com/cs/ww/en/view/109755151\n\n\u0414\u043b\u044f SIMOTION D \u0434\u043e V5.1 HF1:\nhttps://support.industry.siemens.com/cs/ww/en/view/31045047\n\n\u0414\u043b\u044f SINAMICS DCM w. PN \u0434\u043e V1.4 SP1 HF6:\nhttps://support.industry.siemens.com/cs/ww/en/view/44029688\n\n\u0414\u043b\u044f SINAMICS DCP w. PN \u0434\u043e V1.2 HF2:\nhttps://support.industry.siemens.com/cs/ww/en/view/109474935\n\n\u0414\u043b\u044f SINAMICS G110M w. PN \u0438 SINAMICS G120 (C/P/D) w. PN \u0434\u043e V4.7 SP9 HF1:\nhttps://support.industry.siemens.com/cs/document/109750507\n\n\u0414\u043b\u044f SINAMICS G130 V4.7 w. PN \u0434\u043e V4.7 HF29:\nhttps://support.industry.siemens.com/cs/ww/en/view/103433117\n\n\u0414\u043b\u044f SINAMICS G130 V4.8 w. PN \u0438 SINAMICS G150 V4.8 w. PN \u0434\u043e V4.8 HF4:\nhttps://support.industry.siemens.com/cs/ww/en/view/109742040\n\n\u0414\u043b\u044f SINAMICS G150 V4.7 w. PN \u0434\u043e V4.7 HF29:\nhttps://support.industry.siemens.com/cs/ww/en/view/103433117\n\n\u0414\u043b\u044f SINAMICS S110 w. PN \u0434\u043e V4.4 SP3 HF6:\nhttps://support.industry.siemens.com/cs/document/109474320\n\n\u0414\u043b\u044f SINAMICS S120 prior to V4.7 w. PN \u0438 SINAMICS S120 V4.7 SP1 w. PN \u0434\u043e V5.1 SP1:\nhttps://support.industry.siemens.com/cs/document/109758423\n\n\u0414\u043b\u044f SINAMICS S120 V4.7 w. PN \u0434\u043e V4.7 HF29:\nhttps://support.industry.siemens.com/cs/ww/en/view/92522512\n\n\u0414\u043b\u044f SINAMICS S120 V4.8 w. PN \u0434\u043e V4.8 HF5:\nhttps://support.industry.siemens.com/cs/us/en/view/109740193\n\n\u0414\u043b\u044f SINAMICS S150 V4.7 w. PN \u0434\u043e V4.7 HF29:\nhttps://support.industry.siemens.com/cs/ww/en/view/103433117\n\n\u0414\u043b\u044f SINAMICS S150 V4.8 w. PN \u0434\u043e V4.8 HF4:\nhttps://support.industry.siemens.com/cs/ww/en/view/109742040\n\n\u0414\u043b\u044f SINAMICS V90 w. PN \u0434\u043e V1.02:\nhttps://support.industry.siemens.com/cs/document/109746210\n\n\u0414\u043b\u044f SIMATIC PN/PN Coupler \u0434\u043e V4.2.0:\nhttps://support.industry.siemens.com/cs/ww/en/view/109760973\n\n\u0414\u043b\u044f SIMOCODE pro V PROFINET \u0434\u043e V2.1.1:\nhttps://support.industry.siemens.com/cs/ww/en/view/109749989\n\n\u0414\u043b\u044f SINUMERIK 840D sl \u0434\u043e V4.8 SP3 \u043c\u043e\u0436\u043d\u043e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0432 \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0435.\n\n\u0414\u043b\u044f SIMOTION P V4.4 and V4.5 \u0434\u043e V4.5 HF5 \u043c\u043e\u0436\u043d\u043e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0432 \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0435.\n\n\u0414\u043b\u044f SIMOTION P V5 \u0434\u043e V5.1 HF1 \u043c\u043e\u0436\u043d\u043e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0432 \u0442\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u043e\u0439 \u043f\u043e\u0434\u0434\u0435\u0440\u0436\u043a\u0435.\n\n\u041a\u043e\u043c\u043f\u0435\u043d\u0441\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u043c\u0435\u0440\u044b:\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 VPN \u0434\u043b\u044f \u0437\u0430\u0449\u0438\u0442\u044b \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f\n\u0417\u0430\u0449\u0438\u0442\u0430 \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u043f\u043e\u0440\u0442\u0443 161/UPD \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b\u0445 \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\nhttps://www.siemens.com/cert/operational-guidelines-industrial-security",
  "\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "23.11.2017",
  "\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "01.07.2021",
  "\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "23.04.2019",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2019-01538",
  "\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2017-12741",
  "\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
  "\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
  "\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "SIMATIC ET 200ecoPN, SIMATIC ET 200M, SIMATIC ET 200pro, SIMATIC ET 200S, SIMATIC ET 200SP IM155-6 PN HF, SIMATIC WinAC RTX 2010 incl. F, SIRIUS Soft Starter 3RW44 PN, SINAMICS S120 w. PN, SIMATIC S7-1200, SIMATIC S7-200 SMART, SIMATIC S7-400-H, SIMATIC S7-400 PN/DP, SIMATIC S7-410, SIMATIC S7-300, SIMATIC S7-1500, SIMATIC S7-1500 Software Controller, SIMATIC ET 200AL, SIMATIC ET 200MP IM155-5 PN BA, SIMATIC ET 200MP IM155-5 PN ST, SIMATIC ET 200MP IM155-5 PN HF, SINAMICS DCM w. PN, SINAMICS DCP w. PN, SINAMICS G110M w. PN, SINAMICS S110 w. PN, SINAMICS V90 w. PN, SINUMERIK 840D sl, SIMOCODE pro V PROFINET, SIMATIC S7-400 PN, SIMATIC ET 200SP IM 155-6 PN HA, SIMATIC ET 200SP (except IM 155-6 PN HF), Development/Evaluation Kits for PROFINET IO DK Standard Ethernet Controller, Development/Evaluation Kits for PROFINET IO EK-ERTEC 200P, Development/Evaluation Kits for PROFINET IO EK-ERTEC 200, SIMOTION D, SIMOTION C, SIMOTION P, SINAMICS G120(C/P/D) w. PN, SINAMICS G130 w. PN, SINAMICS G150 w. PN, SINAMICS S120 SP1 w. PN, SINAMICS S150 w. PN, SIMATIC Compact Field Unit, SIMATIC PN/PN Coupler, SIMOCODE pro V EIP",
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
  "\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0438\u0440\u0443\u0435\u043c\u043e\u0433\u043e \u043b\u043e\u0433\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440\u0430 SIMATIC, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
  "\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
  "\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043c\u0438\u043a\u0440\u043e\u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0438\u0440\u0443\u0435\u043c\u043e\u0433\u043e \u043b\u043e\u0433\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440\u0430 SIMATIC \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0443 \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438, \u043f\u0443\u0442\u0435\u043c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043f\u043e\u0434\u0433\u043e\u0442\u043e\u0432\u043b\u0435\u043d\u043d\u044b\u0445 \u043f\u0430\u043a\u0435\u0442\u043e\u0432 \u043d\u0430 \u043f\u043e\u0440\u0442 161/UDP",
  "\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
  "\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": "-",
  "\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
  "\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
  "\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
  "\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://cert-portal.siemens.com/productcert/pdf/ssa-346262.pdf\nhttps://nvd.nist.gov/vuln/detail/CVE-2017-12741",
  "\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
  "\u0422\u0438\u043f \u041f\u041e": "\u041f\u041e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0410\u0421\u0423 \u0422\u041f, \u041f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e \u0410\u0421\u0423 \u0422\u041f, \u041f\u041e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430",
  "\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
  "\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,5)"
}

CVE-2017-12741 (GCVE-0-2017-12741)

Vulnerability from cvelistv5 – Published: 2017-12-26 04:00 – Updated: 2024-08-05 18:51

Summary

Specially crafted packets sent to port 161/udp could cause a denial of service condition. The affected devices must be restarted manually.

Severity ?

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

8.7 (High)


                        
                          CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N

CWE

CWE-400 - Uncontrolled Resource Consumption

Assigner

siemens

References

URL

Tags

	https://www.securityfocus.com/bid/101964	vdb-entryx_refsource_BID
	https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/pdf/s…	x_refsource_CONFIRM
	https://cert-portal.siemens.com/productcert/html/…
	https://cert-portal.siemens.com/productcert/html/…
	https://cert-portal.siemens.com/productcert/html/…

Impacted products

Vendor

Product

Version

Siemens

Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller

Affected: All versions < V4.1.1 Patch 05

Siemens	Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200	Affected: All versions < V4.5
Siemens	Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P	Affected: All versions < V4.5
Siemens	SIMATIC Compact Field Unit	Affected: All versions
Siemens	SIMATIC ET 200AL IM 157-1 PN	Affected: 0 , < V1.0.2 (custom)
Siemens	SIMATIC ET 200M (incl. SIPLUS variants)	Affected: All versions
Siemens	SIMATIC ET 200MP IM 155-5 PN BA	Affected: 0 , < V4.0.2 (custom)
Siemens	SIMATIC ET 200MP IM 155-5 PN HF	Affected: 0 , < V4.2.0 (custom)
Siemens	SIMATIC ET 200MP IM 155-5 PN ST	Affected: 0 , < V4.1.0 (custom)
Siemens	SIMATIC ET 200pro IM 154-3 PN HF	Affected: 0 , < * (custom)
Siemens	SIMATIC ET 200pro IM 154-4 PN HF	Affected: 0 , < * (custom)
Siemens	SIMATIC ET 200SP IM 155-6 PN BA	Affected: 0 , < * (custom)
Siemens	SIMATIC ET 200SP IM 155-6 PN HA (incl. SIPLUS variants)	Affected: All versions < V1.1.0
Siemens	SIMATIC ET 200SP IM 155-6 PN HF	Affected: 0 , < V4.2.0 (custom)
Siemens	SIMATIC ET 200SP IM 155-6 PN HS	Affected: 0 , < V4.0.1 (custom)
Siemens	SIMATIC ET 200SP IM 155-6 PN ST	Affected: 0 , < * (custom)
Siemens	SIMATIC ET 200SP IM 155-6 PN ST	Affected: 0 , < * (custom)
Siemens	SIMATIC ET 200SP IM 155-6 PN ST BA	Affected: 0 , < * (custom)
Siemens	SIMATIC ET 200SP IM 155-6 PN ST BA	Affected: 0 , < * (custom)
Siemens	SIMATIC ET200ecoPN, 16DI, DC24V, 8xM12	Affected: All versions
Siemens	SIMATIC ET200ecoPN, 16DO DC24V/1,3A, 8xM12	Affected: All versions
Siemens	SIMATIC ET200ecoPN, 4AO U/I 4xM12	Affected: All versions
Siemens	SIMATIC ET200ecoPN, 8 DIO, DC24V/1,3A, 8xM12	Affected: All versions
Siemens	SIMATIC ET200ecoPN, 8 DO, DC24V/2A, 8xM12	Affected: All versions
Siemens	SIMATIC ET200ecoPN, 8AI RTD/TC 8xM12	Affected: All versions
Siemens	SIMATIC ET200ecoPN, 8AI; 4 U/I; 4 RTD/TC 8xM12	Affected: All versions
Siemens	SIMATIC ET200ecoPN, 8DI, DC24V, 4xM12	Affected: All versions
Siemens	SIMATIC ET200ecoPN, 8DI, DC24V, 8xM12	Affected: All versions
Siemens	SIMATIC ET200ecoPN, 8DO, DC24V/0,5A, 4xM12	Affected: All versions
Siemens	SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 4xM12	Affected: All versions
Siemens	SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 8xM12	Affected: All versions
Siemens	SIMATIC ET200ecoPN: IO-Link Master	Affected: All versions
Siemens	SIMATIC ET200S (incl. SIPLUS variants)	Affected: All versions
Siemens	SIMATIC PN/PN Coupler (incl. SIPLUS NET variants)	Affected: All versions < V4.2.0
Siemens	SIMATIC S7-1200 CPU family (incl. SIPLUS variants)	Affected: All versions < V4.2.3
Siemens	SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)	Affected: All versions < V2.0
Siemens	SIMATIC S7-1500 Software Controller	Affected: All versions < V2.0
Siemens	SIMATIC S7-200 SMART	Affected: All versions < V2.03.01
Siemens	SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants)	Affected: 0 , < V3.X.16 (custom)
Siemens	SIMATIC S7-400 H V6 and below CPU family (incl. SIPLUS variants)	Affected: 0 , < V6.0.8 (custom)
Siemens	SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants)	Affected: 0 , < V6.0.6 (custom)
Siemens	SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)	Affected: 0 , < V7.0.2 (custom)
Siemens	SIMATIC S7-410 V8 CPU family (incl. SIPLUS variants)	Affected: All versions < V8.2.1
Siemens	SIMATIC TDC CP51M1	Affected: 0 , < V1.1.8 (custom)
Siemens	SIMATIC TDC CPU555	Affected: 0 , < V1.1.1 (custom)
Siemens	SIMATIC WinAC RTX 2010	Affected: All versions < V2010 SP3
Siemens	SIMATIC WinAC RTX F 2010	Affected: All versions < V2010 SP3
Siemens	SIMOCODE pro V PROFINET (incl. SIPLUS variants)	Affected: All versions < V2.1.1
Siemens	SIMOTION C	Affected: All versions < V5.1 HF1
Siemens	SIMOTION D	Affected: All versions < V5.1 HF1
Siemens	SIMOTION D4xx V4.4 for SINAMICS SM150i-2 w. PROFINET (incl. SIPLUS variants)	Affected: All versions < V4.4 HF26
Siemens	SIMOTION P V4.4 and V4.5	Affected: All versions < V4.5 HF5
Siemens	SIMOTION P V5	Affected: All versions < V5.1 HF1
Siemens	SINAMICS DCM w. PN	Affected: All versions < V1.4 SP1 HF6
Siemens	SINAMICS DCP w. PN	Affected: All versions < V1.2 HF2
Siemens	SINAMICS G110M w. PN	Affected: All versions < V4.7 SP9 HF1
Siemens	SINAMICS G120(C/P/D) w. PN (incl. SIPLUS variants)	Affected: All versions < V4.7 SP9 HF1
Siemens	SINAMICS G130 V4.7 w. PN	Affected: All versions < V4.7 HF29
Siemens	SINAMICS G130 V4.8 w. PN	Affected: All versions < V4.8 HF4
Siemens	SINAMICS G150 V4.7 w. PN	Affected: All versions < V4.7 HF29
Siemens	SINAMICS G150 V4.8 w. PN	Affected: All versions < V4.8 HF4
Siemens	SINAMICS GH150 V4.7 w. PROFINET	Affected: All versions < V4.7 SP5 HF7
Siemens	SINAMICS GL150 V4.7 w. PROFINET	Affected: All versions < V4.8 SP2
Siemens	SINAMICS GM150 V4.7 w. PROFINET	Affected: All versions < V4.7 HF31
Siemens	SINAMICS S110 w. PN	Affected: All versions < V4.4 SP3 HF6
Siemens	SINAMICS S120 prior to V4.7 w. PN (incl. SIPLUS variants)	Affected: All versions < V4.7
Siemens	SINAMICS S120 V4.7 SP1 w. PN (incl. SIPLUS variants)	Affected: All versions
Siemens	SINAMICS S120 V4.7 w. PN (incl. SIPLUS variants)	Affected: All versions < V4.7 HF29
Siemens	SINAMICS S120 V4.8 w. PN (incl. SIPLUS variants)	Affected: All versions < V4.8 HF5
Siemens	SINAMICS S150 V4.7 w. PN	Affected: All versions < V4.7 HF29
Siemens	SINAMICS S150 V4.8 w. PN	Affected: All versions < V4.8 HF4
Siemens	SINAMICS SL150 V4.7.0 w. PROFINET	Affected: All versions < V4.7 HF30
Siemens	SINAMICS SL150 V4.7.4 w. PROFINET	Affected: All versions < V4.8 SP2
Siemens	SINAMICS SL150 V4.7.5 w. PROFINET	Affected: All versions < V4.8 SP2
Siemens	SINAMICS SM120 V4.7 w. PROFINET	Affected: All versions < V4.8 SP2
Siemens	SINAMICS V90 w. PN	Affected: All versions < V1.02
Siemens	SINUMERIK 840D sl	Affected: All versions < V4.8 SP3
Siemens	SIPLUS ET 200MP IM 155-5 PN HF	Affected: 0 , < V4.2.0 (custom)
Siemens	SIPLUS ET 200MP IM 155-5 PN HF	Affected: 0 , < V4.2.0 (custom)
Siemens	SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL	Affected: 0 , < V4.2.0 (custom)
Siemens	SIPLUS ET 200MP IM 155-5 PN ST	Affected: 0 , < V4.1.0 (custom)
Siemens	SIPLUS ET 200MP IM 155-5 PN ST TX RAIL	Affected: 0 , < V4.1.0 (custom)
Siemens	SIPLUS ET 200SP IM 155-6 PN HF	Affected: 0 , < V4.2.0 (custom)
Siemens	SIPLUS ET 200SP IM 155-6 PN HF	Affected: 0 , < V4.2.0 (custom)
Siemens	SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL	Affected: 0 , < V4.2.0 (custom)
Siemens	SIPLUS ET 200SP IM 155-6 PN ST	Affected: 0 , < * (custom)
Siemens	SIPLUS ET 200SP IM 155-6 PN ST	Affected: 0 , < * (custom)
Siemens	SIPLUS ET 200SP IM 155-6 PN ST BA	Affected: 0 , < * (custom)
Siemens	SIPLUS ET 200SP IM 155-6 PN ST BA	Affected: 0 , < * (custom)
Siemens	SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL	Affected: 0 , < * (custom)
Siemens	SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL	Affected: 0 , < * (custom)
Siemens	SIPLUS ET 200SP IM 155-6 PN ST TX RAIL	Affected: 0 , < * (custom)
Siemens	SIPLUS ET 200SP IM 155-6 PN ST TX RAIL	Affected: 0 , < * (custom)
Siemens	SIRIUS Soft Starter 3RW44 PN	Affected: All versions

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T18:51:06.315Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "101964",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "https://www.securityfocus.com/bid/101964"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-546832.pdf"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-346262.pdf"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-141614.pdf"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-346262.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-546832.html"
          },
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://cert-portal.siemens.com/productcert/html/ssa-141614.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unknown",
          "product": "Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.1.1 Patch 05"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.5"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.5"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC Compact Field Unit",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200AL IM 157-1 PN",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V1.0.2",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200M (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200MP IM 155-5 PN BA",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V4.0.2",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200MP IM 155-5 PN HF",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V4.2.0",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200MP IM 155-5 PN ST",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V4.1.0",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200pro IM 154-3 PN HF",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200pro IM 154-4 PN HF",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200SP IM 155-6 PN BA",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200SP IM 155-6 PN HA (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V1.1.0"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200SP IM 155-6 PN HF",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V4.2.0",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200SP IM 155-6 PN HS",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V4.0.1",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200SP IM 155-6 PN ST",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200SP IM 155-6 PN ST",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200SP IM 155-6 PN ST BA",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET 200SP IM 155-6 PN ST BA",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET200ecoPN, 16DI, DC24V, 8xM12",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET200ecoPN, 16DO DC24V/1,3A, 8xM12",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET200ecoPN, 4AO U/I 4xM12",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET200ecoPN, 8 DIO, DC24V/1,3A, 8xM12",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET200ecoPN, 8 DO, DC24V/2A, 8xM12",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET200ecoPN, 8AI RTD/TC 8xM12",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET200ecoPN, 8AI; 4 U/I; 4 RTD/TC 8xM12",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET200ecoPN, 8DI, DC24V, 4xM12",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET200ecoPN, 8DI, DC24V, 8xM12",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET200ecoPN, 8DO, DC24V/0,5A, 4xM12",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 4xM12",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 8xM12",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET200ecoPN: IO-Link Master",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC ET200S (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC PN/PN Coupler (incl. SIPLUS NET variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.2.0"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC S7-1200 CPU family (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.2.3"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V2.0"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC S7-1500 Software Controller",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V2.0"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC S7-200 SMART",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V2.03.01"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V3.X.16",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC S7-400 H V6\u00a0and below\u00a0CPU family (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V6.0.8",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V6.0.6",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V7.0.2",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC S7-410 V8 CPU family (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V8.2.1"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC TDC CP51M1",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V1.1.8",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC TDC CPU555",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V1.1.1",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC WinAC RTX 2010",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V2010 SP3"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMATIC WinAC RTX F 2010",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V2010 SP3"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMOCODE pro V PROFINET (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V2.1.1"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMOTION C",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V5.1 HF1"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMOTION D",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V5.1 HF1"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMOTION D4xx V4.4 for SINAMICS SM150i-2 w. PROFINET (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.4 HF26"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMOTION P V4.4 and V4.5",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.5 HF5"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIMOTION P V5",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V5.1 HF1"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS DCM w. PN",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V1.4 SP1 HF6"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS DCP w. PN",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V1.2 HF2"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS G110M w. PN",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.7 SP9 HF1"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS G120(C/P/D) w. PN (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.7 SP9 HF1"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS G130 V4.7 w. PN",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.7 HF29"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS G130 V4.8 w. PN",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.8 HF4"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS G150 V4.7 w. PN",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.7 HF29"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS G150 V4.8 w. PN",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.8 HF4"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS GH150 V4.7 w. PROFINET",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.7 SP5 HF7"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS GL150 V4.7 w. PROFINET",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.8 SP2"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS GM150 V4.7 w. PROFINET",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.7 HF31"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS S110 w. PN",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.4 SP3 HF6"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS S120 prior to V4.7 w. PN (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.7"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS S120 V4.7 SP1 w. PN (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS S120 V4.7 w. PN (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.7 HF29"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS S120 V4.8 w. PN (incl. SIPLUS variants)",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.8 HF5"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS S150 V4.7 w. PN",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.7 HF29"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS S150 V4.8 w. PN",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.8 HF4"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS SL150 V4.7.0 w. PROFINET",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.7 HF30"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS SL150 V4.7.4 w. PROFINET",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.8 SP2"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS SL150 V4.7.5 w. PROFINET",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.8 SP2"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS SM120 V4.7 w. PROFINET",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.8 SP2"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINAMICS V90 w. PN",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V1.02"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SINUMERIK 840D sl",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions \u003c V4.8 SP3"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200MP IM 155-5 PN HF",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V4.2.0",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200MP IM 155-5 PN HF",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V4.2.0",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V4.2.0",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200MP IM 155-5 PN ST",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V4.1.0",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200MP IM 155-5 PN ST TX RAIL",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V4.1.0",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200SP IM 155-6 PN HF",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V4.2.0",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200SP IM 155-6 PN HF",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V4.2.0",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "V4.2.0",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200SP IM 155-6 PN ST",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200SP IM 155-6 PN ST",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200SP IM 155-6 PN ST BA",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200SP IM 155-6 PN ST BA",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200SP IM 155-6 PN ST TX RAIL",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIPLUS ET 200SP IM 155-6 PN ST TX RAIL",
          "vendor": "Siemens",
          "versions": [
            {
              "lessThan": "*",
              "status": "affected",
              "version": "0",
              "versionType": "custom"
            }
          ]
        },
        {
          "defaultStatus": "unknown",
          "product": "SIRIUS Soft Starter 3RW44 PN",
          "vendor": "Siemens",
          "versions": [
            {
              "status": "affected",
              "version": "All versions"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Specially crafted packets sent to port 161/udp could cause a denial of service condition. The affected devices must be restarted manually."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        },
        {
          "cvssV4_0": {
            "baseScore": 8.7,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
            "version": "4.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-400",
              "description": "CWE-400: Uncontrolled Resource Consumption",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-07-09T12:03:53.948Z",
        "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
        "shortName": "siemens"
      },
      "references": [
        {
          "name": "101964",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "https://www.securityfocus.com/bid/101964"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-546832.pdf"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-346262.pdf"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-141614.pdf"
        },
        {
          "url": "https://cert-portal.siemens.com/productcert/html/ssa-346262.html"
        },
        {
          "url": "https://cert-portal.siemens.com/productcert/html/ssa-546832.html"
        },
        {
          "url": "https://cert-portal.siemens.com/productcert/html/ssa-141614.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
    "assignerShortName": "siemens",
    "cveId": "CVE-2017-12741",
    "datePublished": "2017-12-26T04:00:00.000Z",
    "dateReserved": "2017-08-09T00:00:00.000Z",
    "dateUpdated": "2024-08-05T18:51:06.315Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

BDU:2019-01538

CVE-2017-12741 (GCVE-0-2017-12741)

Tags

Sightings

Nomenclature