Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-4843 (GCVE-0-2018-4843)
Vulnerability from cvelistv5 – Published: 2018-03-20 14:00 – Updated: 2024-08-05 05:18
VLAI
EPSS
Summary
A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions < V7.0.3), SIMATIC CP 343-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 (All versions < V3.3), SIMATIC CP 443-1 (All versions < V3.3), SIMATIC CP 443-1 Advanced (All versions < V3.3), SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200pro IM154-8FX PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200S IM151-8 PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200S IM151-8F PN/DP CPU (All versions < V3.2.16), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V1.7.0), SIMATIC S7-1500 Software Controller (All versions < V1.7.0), SIMATIC S7-300 CPU 314C-2 PN/DP (All versions < V3.3.16), SIMATIC S7-300 CPU 315-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 315F-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 315T-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317F-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317T-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317TF-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 319-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 319F-3 PN/DP (All versions < V3.2.16), SIMATIC S7-400 CPU 412-2 PN V7 (All versions < V7.0.3), SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) (All versions < V6.0.9), SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants) (All versions < V6.0.7), SIMATIC S7-410 CPU family (incl. SIPLUS variants) (All versions < V8.1), SIMATIC WinAC RTX 2010 (All versions < V2010 SP3), SIMATIC WinAC RTX F 2010 (All versions < V2010 SP3), SINUMERIK 828D (All versions < V4.7 SP6 HF1), SIPLUS ET 200S IM151-8 PN/DP CPU (All versions < V3.2.16), SIPLUS ET 200S IM151-8F PN/DP CPU (All versions < V3.2.16), SIPLUS NET CP 443-1 (All versions < V3.3), SIPLUS NET CP 443-1 Advanced (All versions < V3.3), SIPLUS S7-300 CPU 314C-2 PN/DP (All versions < V3.3.16), SIPLUS S7-300 CPU 315-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 315F-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 317-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 317F-2 PN/DP (All versions < V3.2.16), SIPLUS S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIPLUS S7-400 CPU 416-3 PN/DP V7 (All versions < V7.0.3), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a denial of service condition of the requesting system.
The security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. A manual restart is required to recover the system.
Severity
CWE
- CWE-20 - Improper Input Validation
Assigner
References
1 reference
Impacted products
44 products
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T05:18:26.626Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-400 CPU 414-3 PN/DP V7",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.0.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-400 CPU 414F-3 PN/DP V7",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.0.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-400 CPU 416-3 PN/DP V7",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.0.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-400 CPU 416F-3 PN/DP V7",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.0.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC CP 343-1 (incl. SIPLUS variants)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC CP 443-1",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC CP 443-1",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC CP 443-1 Advanced",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC ET 200pro IM154-8 PN/DP CPU",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC ET 200pro IM154-8F PN/DP CPU",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC ET 200pro IM154-8FX PN/DP CPU",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC ET 200S IM151-8 PN/DP CPU",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC ET 200S IM151-8F PN/DP CPU",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V1.7.0"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1500 Software Controller",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V1.7.0"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-300 CPU 314C-2 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-300 CPU 315-2 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-300 CPU 315F-2 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-300 CPU 315T-3 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-300 CPU 317-2 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-300 CPU 317F-2 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-300 CPU 317T-3 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-300 CPU 317TF-3 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-300 CPU 319-3 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-300 CPU 319F-3 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-400 CPU 412-2 PN V7",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.0.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V6.0.9"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V6.0.7"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-410 CPU family (incl. SIPLUS variants)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V8.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC WinAC RTX 2010",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V2010 SP3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC WinAC RTX F 2010",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V2010 SP3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SINUMERIK 828D",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V4.7 SP6 HF1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS ET 200S IM151-8 PN/DP CPU",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS ET 200S IM151-8F PN/DP CPU",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS NET CP 443-1",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS NET CP 443-1 Advanced",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-300 CPU 314C-2 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-300 CPU 315-2 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-300 CPU 315F-2 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-300 CPU 317-2 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-300 CPU 317F-2 PN/DP",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.2.16"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-400 CPU 414-3 PN/DP V7",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.0.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-400 CPU 416-3 PN/DP V7",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.0.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "Softnet PROFINET IO for PC-based Windows systems",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC CP 343-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 (All versions \u003c V3.3), SIMATIC CP 443-1 (All versions \u003c V3.3), SIMATIC CP 443-1 Advanced (All versions \u003c V3.3), SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200pro IM154-8FX PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200S IM151-8 PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200S IM151-8F PN/DP CPU (All versions \u003c V3.2.16), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions \u003c V1.7.0), SIMATIC S7-1500 Software Controller (All versions \u003c V1.7.0), SIMATIC S7-300 CPU 314C-2 PN/DP (All versions \u003c V3.3.16), SIMATIC S7-300 CPU 315-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 315F-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 315T-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317F-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317T-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317TF-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 319-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 319F-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-400 CPU 412-2 PN V7 (All versions \u003c V7.0.3), SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) (All versions \u003c V6.0.9), SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants) (All versions \u003c V6.0.7), SIMATIC S7-410 CPU family (incl. SIPLUS variants) (All versions \u003c V8.1), SIMATIC WinAC RTX 2010 (All versions \u003c V2010 SP3), SIMATIC WinAC RTX F 2010 (All versions \u003c V2010 SP3), SINUMERIK 828D (All versions \u003c V4.7 SP6 HF1), SIPLUS ET 200S IM151-8 PN/DP CPU (All versions \u003c V3.2.16), SIPLUS ET 200S IM151-8F PN/DP CPU (All versions \u003c V3.2.16), SIPLUS NET CP 443-1 (All versions \u003c V3.3), SIPLUS NET CP 443-1 Advanced (All versions \u003c V3.3), SIPLUS S7-300 CPU 314C-2 PN/DP (All versions \u003c V3.3.16), SIPLUS S7-300 CPU 315-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 315F-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 317-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 317F-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-400 CPU 414-3 PN/DP V7 (All versions \u003c V7.0.3), SIPLUS S7-400 CPU 416-3 PN/DP V7 (All versions \u003c V7.0.3), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a denial of service condition of the requesting system.\r\n\r\nThe security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. A manual restart is required to recover the system."
}
],
"metrics": [
{
"cvssV3_1": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20: Improper Input Validation",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-05-09T11:50:59.460Z",
"orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
"shortName": "siemens"
},
"references": [
{
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
"assignerShortName": "siemens",
"cveId": "CVE-2018-4843",
"datePublished": "2018-03-20T14:00:00.000Z",
"dateReserved": "2018-01-02T00:00:00.000Z",
"dateUpdated": "2024-08-05T05:18:26.626Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2018-4843",
"date": "2026-06-08",
"epss": "0.0025",
"percentile": "0.48608"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2018-4843\",\"sourceIdentifier\":\"productcert@siemens.com\",\"published\":\"2018-03-20T14:29:00.413\",\"lastModified\":\"2024-11-21T04:07:34.080\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC CP 343-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 (All versions \u003c V3.3), SIMATIC CP 443-1 (All versions \u003c V3.3), SIMATIC CP 443-1 Advanced (All versions \u003c V3.3), SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200pro IM154-8FX PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200S IM151-8 PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200S IM151-8F PN/DP CPU (All versions \u003c V3.2.16), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions \u003c V1.7.0), SIMATIC S7-1500 Software Controller (All versions \u003c V1.7.0), SIMATIC S7-300 CPU 314C-2 PN/DP (All versions \u003c V3.3.16), SIMATIC S7-300 CPU 315-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 315F-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 315T-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317F-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317T-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317TF-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 319-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 319F-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-400 CPU 412-2 PN V7 (All versions \u003c V7.0.3), SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) (All versions \u003c V6.0.9), SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants) (All versions \u003c V6.0.7), SIMATIC S7-410 CPU family (incl. SIPLUS variants) (All versions \u003c V8.1), SIMATIC WinAC RTX 2010 (All versions \u003c V2010 SP3), SIMATIC WinAC RTX F 2010 (All versions \u003c V2010 SP3), SINUMERIK 828D (All versions \u003c V4.7 SP6 HF1), SIPLUS ET 200S IM151-8 PN/DP CPU (All versions \u003c V3.2.16), SIPLUS ET 200S IM151-8F PN/DP CPU (All versions \u003c V3.2.16), SIPLUS NET CP 443-1 (All versions \u003c V3.3), SIPLUS NET CP 443-1 Advanced (All versions \u003c V3.3), SIPLUS S7-300 CPU 314C-2 PN/DP (All versions \u003c V3.3.16), SIPLUS S7-300 CPU 315-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 315F-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 317-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 317F-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-400 CPU 414-3 PN/DP V7 (All versions \u003c V7.0.3), SIPLUS S7-400 CPU 416-3 PN/DP V7 (All versions \u003c V7.0.3), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a denial of service condition of the requesting system.\\r\\n\\r\\nThe security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. A manual restart is required to recover the system.\"},{\"lang\":\"es\",\"value\":\"Se ha identificado una vulnerabilidad en SIMATIC CP 343-1 (incl. variantes SIPLUS) (Todas las versiones), SIMATIC CP 343-1 Advanced (incl. variantes SIPLUS) (Todas las versiones), SIMATIC CP 443-1 (incl. variantes SIPLUS) (Todas las versiones), SIMATIC CP 443-1 Advanced (incl. variantes SIPLUS) variantes SIPLUS) (Todas las versiones), familia de CPUs SIMATIC S7-1500 (incl. CPUs ET200 relacionadas y variantes SIPLUS) (Todas las versiones anteriores a V1.7.0), Software Controller SIMATIC S7-1500 (incl. F) (Todas las versiones anteriores a V1.7.0), familia de CPUs SIMATIC S7-300 (incl. CPUs ET200 relacionadas y variantes SIPLUS) (Todas las versiones anteriores a V3.X.16 ), familia de CPU SIMATIC S7-400 H V6 (incl. variantes SIPLUS) (Todas las versiones anteriores a V6.0.9), familia de CPU SIMATIC S7-400 PN/DP V6 (incl. variantes SIPLUS) (Todas las versiones anteriores a V6.0.7), familia de CPU SIMATIC S7-400 PN/DP V7 (incl. variantes SIPLUS) (Todas las versiones), familia de CPU SIMATIC S7-410 (incl. variantes SIPLUS) (Todas las versiones). SIPLUS) (Todas las versiones anteriores a V8.1), SIMATIC WinAC RTX (F) 2010 (Todas las versiones anteriores a SIMATIC WinAC RTX 2010 SP3), SINUMERIK 828D (Todas las versiones anteriores a V4.7 SP6 HF1), Softnet PROFINET IO para sistemas Windows basados en PC (Todas las versiones). La respuesta a una solicitud PROFINET DCP con un paquete PROFINET DCP especialmente dise\u00f1ado podr\u00eda causar una condici\u00f3n de denegaci\u00f3n de servicio del sistema solicitante. La vulnerabilidad de seguridad podr\u00eda ser explotada por un atacante situado en el mismo segmento Ethernet (capa 2 de OSI) que el dispositivo objetivo. El \u00e9xito de la explotaci\u00f3n no requiere ninguna interacci\u00f3n del usuario o privilegios y afecta a la disponibilidad de la funcionalidad principal del dispositivo afectado. Se requiere un reinicio manual para recuperar el sistema. En el momento de la publicaci\u00f3n del aviso no se conoce ninguna explotaci\u00f3n p\u00fablica de esta vulnerabilidad de seguridad. Siemens proporciona mitigaciones para resolver el problema de seguridad. Las interfaces PROFIBUS no est\u00e1n afectadas.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"productcert@siemens.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"ADJACENT_NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:A/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":6.1,\"accessVector\":\"ADJACENT_NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":6.5,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"productcert@siemens.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_cp_343-1_firmware:-:*:*:*:advanced:*:*:*\",\"matchCriteriaId\":\"0332CA85-1B72-4008-8783-4ED53D1BF4BB\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_cp_343-1:-:*:*:*:advanced:*:*:*\",\"matchCriteriaId\":\"E1F3B078-577E-4F4A-9874-A33C763C0548\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_cp_343-1_firmware:-:*:*:*:standard:*:*:*\",\"matchCriteriaId\":\"D787C4D4-93F0-4D5C-A95A-FF89A07AA6A7\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_cp_343-1:-:*:*:*:standard:*:*:*\",\"matchCriteriaId\":\"943315C8-8962-4F3A-986A-36064C355FB2\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_cp_443-1_firmware:-:*:*:*:advanced:*:*:*\",\"matchCriteriaId\":\"5FDE21BE-E8F0-4D6D-934E-5FF40B017B8B\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_cp_443-1:-:*:*:*:advanced:*:*:*\",\"matchCriteriaId\":\"B8D53233-1AC7-42FF-95BB-DF4D140E2D5E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_cp_443-1_firmware:-:*:*:*:standard:*:*:*\",\"matchCriteriaId\":\"2C90D35C-6566-4568-B090-C33FF20E5138\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_cp_443-1:-:*:*:*:standard:*:*:*\",\"matchCriteriaId\":\"3879DFE1-0F4E-49E3-86B7-0280F7DBCAAA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-1500_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.7.0\",\"matchCriteriaId\":\"DC53F124-7E16-4C2E-9474-CC4D4DF283AA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-1500:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"30DDEA9B-E1BF-4572-8E12-D13C54603E77\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-300_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4C096137-C1E3-4D19-87A9-BEB7A081DD1E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-300:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7EFD4E99-5C66-443F-8B6F-FA01C895DE78\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-400_h_v6_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E23473D4-A49C-4E82-BADC-4DD0B5775FE2\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-400_h_v6:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63E69699-A7ED-4710-9758-D1213EC834C0\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-400_pn\\\\/dp_v6_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.0.7\",\"matchCriteriaId\":\"B9B6A790-F52B-4430-819C-D32E95DA913E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-400_pn\\\\/dp_v6:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C27A6138-1536-4BCD-B072-B64767140F1E\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-400_pn\\\\/dp_v7_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A1E779F-1A56-4552-9E82-F881D3B044C0\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-400_pn\\\\/dp_v7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C48D93F2-FB6B-4D4D-84FB-3A7CDE89B727\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-410_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"8.1\",\"matchCriteriaId\":\"8FDD8141-B14A-42B8-B851-726DFBFF755F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-410:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9C67EEFE-85A1-4FFB-B049-AB0F9DB9EA99\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_winac_rtx_2010_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"94A06329-866E-47B9-AFAE-A5144D432FC4\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_winac_rtx_2010:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EBBCD2A1-A531-4BB9-8906-8992DFE35C6C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:sinumerik_828d_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F445CD7-DEEA-4FDF-8E08-71E3031F6184\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:sinumerik_828d:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7D97047C-9772-4AEB-B993-131EBBAE33BA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:softnet_pn-io_linux_firmware:-:*:*:*:*:windows:*:*\",\"matchCriteriaId\":\"2C99F4FE-30BE-4C44-B9FF-CFFCB63063A5\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:softnet_pn-io_linux:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DF9D2F8-77EF-47F9-B644-F9C48E0B1AD3\"}]}]}],\"references\":[{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf\",\"source\":\"productcert@siemens.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
}
}
Title
Уязвимость программного обеспечения продуктов Siemens, связанная с недостаточной проверкой вводимых данных, позволяющая нарушителю вызвать отказ в обслуживании
Description
Уязвимость программного обеспечения продуктов Siemens связана с недостаточной проверкой вводимых данных. Эксплуатация уязвимости может позволить нарушителю вызвать отказ в обслуживании при ответе на запрос PROFINET DCP специально подготовленным пакетом
Severity
Vendor
Siemens AG
Software Name
SIMATIC CP 343-1 Advanced, SIMATIC WinAC RTX 2010 incl. F, SIMATIC S7-400-H, SIMATIC S7-400 PN/DP включая F, SIMATIC S7-410, SINUMERIK 828D, Softnet PROFINET IO для Windows, SIMATIC S7-400 PN/DP V7 включая F, SIMATIC CP 343-1 Std, SIMATIC CP 443-1 Std, SIMATIC S7-1500 Software Controller включая F, SIMATIC S7-1500 включая F, SIMATIC S7-300 включая F и T
Software Version
- (SIMATIC CP 343-1 Advanced), - (SIMATIC WinAC RTX 2010 incl. F), от 6 до 6.0.9 (SIMATIC S7-400-H), от 6 до 6.0.7 (SIMATIC S7-400 PN/DP включая F), до 8.1 (SIMATIC S7-410), до 4.7 SP6 HF1 (SINUMERIK 828D), - (Softnet PROFINET IO для Windows), - (SIMATIC S7-400 PN/DP V7 включая F), - (SIMATIC CP 343-1 Std), - (SIMATIC CP 443-1 Std), до V1.7.0 (SIMATIC S7-1500 Software Controller включая F), до V1.7.0 (SIMATIC S7-1500 включая F), до V3.X.16 (SIMATIC S7-300 включая F и T)
Possible Mitigations
Обновление программного обеспечения:
Для SIMATIC S7-1500 Software Controller включая F до V1.8.5:
https://support.industry.siemens.com/cs/ww/en/view/109478528
Для SIMATIC S7-1500 включая F до V1.8.5:
https://support.industry.siemens.com/cs/ww/en/view/109478459
Для SIMATIC S7-300 включая F and T до V3.X.16:
https://support.industry.siemens.com/cs/ww/en/ps/13752/dl
Для SIMATIC S7-400 H до V6.0.9:
https://support.industry.siemens.com/cs/ww/en/view/109474550
Для SIMATIC S7-400 PN/DP включая F до V6.0.7:
https://support.industry.siemens.com/cs/ww/en/view/109474874
Для SIMATIC S7-410 до V8.1 или выше:
https://support.industry.siemens.com/cs/ww/en/view/109476571
Для SINUMERIK 828D до V4.7 SP6 HF1:
Получение обновления через менеджера по работе с клиентами Siemens
Для SIMATIC WinAC RTX (F) 2010 до SIMATIC WinAC RTX 2010 SP3:
https://support.industry.siemens.com/cs/ww/en/view/109765109
Компенсирующие меры:
Применение концепции защиты клеток:
https://www.siemens.com/cert/operational-guidelines-industrialsecurity
Использование VPN для защиты сетевого взаимодействия
Применение глубокоэшелонированной защиты:
https://www.siemens.com/cert/operational-guidelines-industrial-security
Reference
https://nvd.nist.gov/vuln/detail/CVE-2018-4843
https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf
CWE
CWE-20
{
"CVSS 2.0": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
"CVSS 3.0": "AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Siemens AG",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "- (SIMATIC CP 343-1 Advanced), - (SIMATIC WinAC RTX 2010 incl. F), \u043e\u0442 6 \u0434\u043e 6.0.9 (SIMATIC S7-400-H), \u043e\u0442 6 \u0434\u043e 6.0.7 (SIMATIC S7-400 PN/DP \u0432\u043a\u043b\u044e\u0447\u0430\u044f F), \u0434\u043e 8.1 (SIMATIC S7-410), \u0434\u043e 4.7 SP6 HF1 (SINUMERIK 828D), - (Softnet PROFINET IO \u0434\u043b\u044f Windows), - (SIMATIC S7-400 PN/DP V7 \u0432\u043a\u043b\u044e\u0447\u0430\u044f F), - (SIMATIC CP 343-1 Std), - (SIMATIC CP 443-1 Std), \u0434\u043e V1.7.0 (SIMATIC S7-1500 Software Controller \u0432\u043a\u043b\u044e\u0447\u0430\u044f F), \u0434\u043e V1.7.0 (SIMATIC S7-1500 \u0432\u043a\u043b\u044e\u0447\u0430\u044f F), \u0434\u043e V3.X.16 (SIMATIC S7-300 \u0432\u043a\u043b\u044e\u0447\u0430\u044f F \u0438 T)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f:\n\u0414\u043b\u044f SIMATIC S7-1500 Software Controller \u0432\u043a\u043b\u044e\u0447\u0430\u044f F \u0434\u043e V1.8.5:\nhttps://support.industry.siemens.com/cs/ww/en/view/109478528\n\n\u0414\u043b\u044f SIMATIC S7-1500 \u0432\u043a\u043b\u044e\u0447\u0430\u044f F \u0434\u043e V1.8.5:\nhttps://support.industry.siemens.com/cs/ww/en/view/109478459\n\n\u0414\u043b\u044f SIMATIC S7-300 \u0432\u043a\u043b\u044e\u0447\u0430\u044f F and T \u0434\u043e V3.X.16:\nhttps://support.industry.siemens.com/cs/ww/en/ps/13752/dl\n\n\u0414\u043b\u044f SIMATIC S7-400 H \u0434\u043e V6.0.9:\nhttps://support.industry.siemens.com/cs/ww/en/view/109474550\n\n\u0414\u043b\u044f SIMATIC S7-400 PN/DP \u0432\u043a\u043b\u044e\u0447\u0430\u044f F \u0434\u043e V6.0.7:\nhttps://support.industry.siemens.com/cs/ww/en/view/109474874\n\n\u0414\u043b\u044f SIMATIC S7-410 \u0434\u043e V8.1 \u0438\u043b\u0438 \u0432\u044b\u0448\u0435:\nhttps://support.industry.siemens.com/cs/ww/en/view/109476571\n\n\u0414\u043b\u044f SINUMERIK 828D \u0434\u043e V4.7 SP6 HF1:\n\u041f\u043e\u043b\u0443\u0447\u0435\u043d\u0438\u0435 \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0447\u0435\u0440\u0435\u0437 \u043c\u0435\u043d\u0435\u0434\u0436\u0435\u0440\u0430 \u043f\u043e \u0440\u0430\u0431\u043e\u0442\u0435 \u0441 \u043a\u043b\u0438\u0435\u043d\u0442\u0430\u043c\u0438 Siemens\n\n\u0414\u043b\u044f SIMATIC WinAC RTX (F) 2010 \u0434\u043e SIMATIC WinAC RTX 2010 SP3:\nhttps://support.industry.siemens.com/cs/ww/en/view/109765109\n\n\u041a\u043e\u043c\u043f\u0435\u043d\u0441\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u043c\u0435\u0440\u044b:\n\u041f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u0438\u0435 \u043a\u043e\u043d\u0446\u0435\u043f\u0446\u0438\u0438 \u0437\u0430\u0449\u0438\u0442\u044b \u043a\u043b\u0435\u0442\u043e\u043a:\nhttps://www.siemens.com/cert/operational-guidelines-industrialsecurity\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 VPN \u0434\u043b\u044f \u0437\u0430\u0449\u0438\u0442\u044b \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u0432\u0437\u0430\u0438\u043c\u043e\u0434\u0435\u0439\u0441\u0442\u0432\u0438\u044f\n\u041f\u0440\u0438\u043c\u0435\u043d\u0435\u043d\u0438\u0435 \u0433\u043b\u0443\u0431\u043e\u043a\u043e\u044d\u0448\u0435\u043b\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0439 \u0437\u0430\u0449\u0438\u0442\u044b:\nhttps://www.siemens.com/cert/operational-guidelines-industrial-security",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "20.03.2018",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "23.03.2021",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "31.05.2019",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2019-01856",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2018-4843",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "SIMATIC CP 343-1 Advanced, SIMATIC WinAC RTX 2010 incl. F, SIMATIC S7-400-H, SIMATIC S7-400 PN/DP \u0432\u043a\u043b\u044e\u0447\u0430\u044f F, SIMATIC S7-410, SINUMERIK 828D, Softnet PROFINET IO \u0434\u043b\u044f Windows, SIMATIC S7-400 PN/DP V7 \u0432\u043a\u043b\u044e\u0447\u0430\u044f F, SIMATIC CP 343-1 Std, SIMATIC CP 443-1 Std, SIMATIC S7-1500 Software Controller \u0432\u043a\u043b\u044e\u0447\u0430\u044f F, SIMATIC S7-1500 \u0432\u043a\u043b\u044e\u0447\u0430\u044f F, SIMATIC S7-300 \u0432\u043a\u043b\u044e\u0447\u0430\u044f F \u0438 T",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Siemens, \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u043e\u0432 Siemens \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e\u0439 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u043e\u0439 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438 \u043f\u0440\u0438 \u043e\u0442\u0432\u0435\u0442\u0435 \u043d\u0430 \u0437\u0430\u043f\u0440\u043e\u0441 PROFINET DCP \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u043f\u043e\u0434\u0433\u043e\u0442\u043e\u0432\u043b\u0435\u043d\u043d\u044b\u043c \u043f\u0430\u043a\u0435\u0442\u043e\u043c",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": "-",
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://nvd.nist.gov/vuln/detail/CVE-2018-4843\nhttps://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041f\u041e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430 \u0410\u0421\u0423 \u0422\u041f, \u041f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u043e \u0410\u0421\u0423 \u0422\u041f",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,1)\n\u0421\u0440\u0435\u0434\u043d\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 6,5)"
}
CERTFR-2018-AVI-140
Vulnerability from certfr_avis - Published: 2018-03-21 - Updated: 2018-03-21
De multiples vulnérabilités ont été découvertes dans SCADA les produits Siemens . Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une atteinte à l'intégrité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Siemens | N/A | SIMATIC WinCC OA UI pour Android versions antérieures à V3.15.10 | ||
| Siemens | N/A | Desigo Automation Controllers for Integration PXC001-E.D versions antérieures à V6.00.204 | ||
| Siemens | N/A | SIMATIC S7-1500 incl. F versions antérieures à V1.8.5 | ||
| Siemens | N/A | Desigo Automation Controllers Compact PXC12/22/36-E.D versions antérieures à V6.00.204 | ||
| Siemens | N/A | Desigo Automation Controllers PXC00/64/128-U avec module Web versions antérieures à V6.00.204 | ||
| Siemens | N/A | SIMATIC S7-1500 Software Controller incl. F versions antérieures à V1.8.5 | ||
| Siemens | N/A | Desigo Automation Controllers Modular PXC00/50/100/200-E.D versions antérieures à V6.00.204 | ||
| Siemens | N/A | SIMATIC WinCC OA UI pour iOS versions antérieures à V3.15.10 | ||
| Siemens | N/A | SIMATIC S7-410 versions antérieures à V8.1 | ||
| Siemens | N/A | Desigo Operator Unit PXM20-E versions antérieures à V6.00.204 | ||
| Siemens | N/A | SIMATIC S7-400 PN/DP V6 Incl. F versions antérieures à V6.0.7 |
References
| Title | Publication Time | Tags | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "SIMATIC WinCC OA UI pour Android versions ant\u00e9rieures \u00e0 V3.15.10",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "Desigo Automation Controllers for Integration PXC001-E.D versions ant\u00e9rieures \u00e0 V6.00.204",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SIMATIC S7-1500 incl. F versions ant\u00e9rieures \u00e0 V1.8.5",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "Desigo Automation Controllers Compact PXC12/22/36-E.D versions ant\u00e9rieures \u00e0 V6.00.204",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "Desigo Automation Controllers PXC00/64/128-U avec module Web versions ant\u00e9rieures \u00e0 V6.00.204",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SIMATIC S7-1500 Software Controller incl. F versions ant\u00e9rieures \u00e0 V1.8.5",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "Desigo Automation Controllers Modular PXC00/50/100/200-E.D versions ant\u00e9rieures \u00e0 V6.00.204",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SIMATIC WinCC OA UI pour iOS versions ant\u00e9rieures \u00e0 V3.15.10",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SIMATIC S7-410 versions ant\u00e9rieures \u00e0 V8.1",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "Desigo Operator Unit PXM20-E versions ant\u00e9rieures \u00e0 V6.00.204",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SIMATIC S7-400 PN/DP V6 Incl. F versions ant\u00e9rieures \u00e0 V6.0.7",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2018-4834",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-4834"
},
{
"name": "CVE-2018-4844",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-4844"
},
{
"name": "CVE-2018-4843",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-4843"
}
],
"initial_release_date": "2018-03-21T00:00:00",
"last_revision_date": "2018-03-21T00:00:00",
"links": [],
"reference": "CERTFR-2018-AVI-140",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2018-03-21T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans SCADA les produits\nSiemens . Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nun d\u00e9ni de service \u00e0 distance, un contournement de la politique de\ns\u00e9curit\u00e9 et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans SCADA les produits Siemens",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 SCADA Siemens ssa-824231 du 20 mars 2018",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-824231.pdf"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 SCADA Siemens ssa-592007 du 20 mars 2018",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 SCADA Siemens ssa-822928 du 20 mars 2018",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-822928.pdf"
}
]
}
CERTFR-2023-AVI-0015
Vulnerability from certfr_avis - Published: 2023-01-10 - Updated: 2023-01-10
De multiples vulnérabilités ont été découvertes dans les produits Siemens. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à l'intégrité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Siemens | N/A | Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P versions antérieures à V4.5.0 | ||
| Siemens | N/A | Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller versions antérieures à V4.1.1 Patch 05 | ||
| Siemens | N/A | SINEC INS versions antérieures à V1.0 SP2 Update 1 | ||
| Siemens | N/A | SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) versions antérieures à V5.4.2 | ||
| Siemens | N/A | Solid Edge versions antérieures à V2023 MP1 | ||
| Siemens | N/A | JT Open versions antérieures à V13.1.1.0 | ||
| Siemens | N/A | Mendix SAML (Mendix 9 compatible, New Track) versions V3.3.x antérieures à V3.3.9 | ||
| Siemens | N/A | Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 versions antérieures à V4.5.0 Patch 01 | ||
| Siemens | N/A | Mendix SAML (Mendix 9 compatible, Upgrade Track) versions V3.3.x antérieures à V3.3.8 | ||
| Siemens | N/A | Automation License Manager V5 | ||
| Siemens | N/A | JT Open versions antérieures à V11.1.1.0 | ||
| Siemens | N/A | Mendix SAML (Mendix 8 compatible) versions V2.3.x antérieures à V2.3.4 | ||
| Siemens | N/A | Automation License Manager versions V6 antérieures à V6 SP9 Upd4 | ||
| Siemens | N/A | De nombreux produits SIMATIC, SIMOTION, SINAMICS, SINUMERIK et SIPLUS (Se référer au bulletin de sécurité de l'éditeur pour les versions affectées) |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P versions ant\u00e9rieures \u00e0 V4.5.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller versions ant\u00e9rieures \u00e0 V4.1.1 Patch 05",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SINEC INS versions ant\u00e9rieures \u00e0 V1.0 SP2 Update 1",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) versions ant\u00e9rieures \u00e0 V5.4.2",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "Solid Edge versions ant\u00e9rieures \u00e0 V2023 MP1",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "JT Open versions ant\u00e9rieures \u00e0 V13.1.1.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "Mendix SAML (Mendix 9 compatible, New Track) versions V3.3.x ant\u00e9rieures \u00e0 V3.3.9",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 versions ant\u00e9rieures \u00e0 V4.5.0 Patch 01",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "Mendix SAML (Mendix 9 compatible, Upgrade Track) versions V3.3.x ant\u00e9rieures \u00e0 V3.3.8",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "Automation License Manager V5",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "JT Open versions ant\u00e9rieures \u00e0 V11.1.1.0",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "Mendix SAML (Mendix 8 compatible) versions V2.3.x ant\u00e9rieures \u00e0 V2.3.4",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "Automation License Manager versions V6 ant\u00e9rieures \u00e0 V6 SP9 Upd4",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
},
{
"description": "De nombreux produits SIMATIC, SIMOTION, SINAMICS, SINUMERIK et SIPLUS (Se r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour les versions affect\u00e9es)",
"product": {
"name": "N/A",
"vendor": {
"name": "Siemens",
"scada": true
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2022-32213",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32213"
},
{
"name": "CVE-2022-35256",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35256"
},
{
"name": "CVE-2022-1292",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1292"
},
{
"name": "CVE-2022-38773",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-38773"
},
{
"name": "CVE-2022-47935",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-47935"
},
{
"name": "CVE-2022-45093",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-45093"
},
{
"name": "CVE-2022-2068",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2068"
},
{
"name": "CVE-2022-45092",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-45092"
},
{
"name": "CVE-2022-45094",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-45094"
},
{
"name": "CVE-2021-44002",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44002"
},
{
"name": "CVE-2021-44014",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44014"
},
{
"name": "CVE-2022-43513",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43513"
},
{
"name": "CVE-2022-32222",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32222"
},
{
"name": "CVE-2022-32212",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32212"
},
{
"name": "CVE-2019-13940",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-13940"
},
{
"name": "CVE-2019-10923",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10923"
},
{
"name": "CVE-2022-2274",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2274"
},
{
"name": "CVE-2022-32215",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-32215"
},
{
"name": "CVE-2018-4843",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-4843"
},
{
"name": "CVE-2022-47967",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-47967"
},
{
"name": "CVE-2022-46823",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-46823"
},
{
"name": "CVE-2022-2097",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2097"
},
{
"name": "CVE-2022-35255",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35255"
},
{
"name": "CVE-2022-43514",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-43514"
}
],
"initial_release_date": "2023-01-10T00:00:00",
"last_revision_date": "2023-01-10T00:00:00",
"links": [],
"reference": "CERTFR-2023-AVI-0015",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2023-01-10T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nSiemens. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0\ndistance et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Siemens",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-936212 du 10 janvier 2023",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-936212.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-482757 du 10 janvier 2023",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-482757.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-332410 du 10 janvier 2023",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-332410.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-476715 du 10 janvier 2023",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-476715.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-431678 du 10 janvier 2023",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-431678.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-997779 du 10 janvier 2023",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-997779.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-592007 du 10 janvier 2023",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-592007.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-349422 du 10 janvier 2023",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-349422.html"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Siemens ssa-496604 du 10 janvier 2023",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-496604.html"
}
]
}
Title
多款Siemens产品拒绝服务漏洞(CNVD-2018-06025)
Description
SIMATIC CP 343-1 Advanced等都是德国西门子(Siemens)公司的产品。Siemens SIMATIC CP 343-1 Advanced是一个用于支持PROFINET(新一代基于工业以太网技术的自动化总线标准)的以太网通讯模块。SIMATIC S7-1500是一款可编程逻辑控制器。
多款Siemens产品中存在拒绝服务漏洞。攻击者可借助PROFINET DCP网络数据包利用该漏洞造成拒绝服务。
Severity
中
Patch Name
多款Siemens产品拒绝服务漏洞(CNVD-2018-06025)的补丁
Patch Description
SIMATIC CP 343-1 Advanced等都是德国西门子(Siemens)公司的产品。Siemens SIMATIC CP 343-1 Advanced是一个用于支持PROFINET(新一代基于工业以太网技术的自动化总线标准)的以太网通讯模块。SIMATIC S7-1500是一款可编程逻辑控制器。
多款Siemens产品中存在拒绝服务漏洞。攻击者可借助PROFINET DCP网络数据包利用该漏洞造成拒绝服务。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
用户可联系供应商获得补丁信息: https://support.industry.siemens.com/cs/ww/en/view/109478528
Reference
https://ics-cert.us-cert.gov/advisories/ICSA-18-079-02
Impacted products
| Name | ['Siemens SIMATIC S7-300 incl. F和T', 'Siemens SIMATIC S7-400 H V6', 'Siemens SIMATIC WinAC RTX 2010 incl. F', 'Siemens SINUMERIK 828D', 'Siemens SINUMERIK 840D sl', 'Siemens Softnet PROFINET IO for PC-based Windows systems', 'Siemens SIMATIC S7-400 PN/DP V7 Incl. F', 'Siemens SIMATIC CP 443-1 Standard', 'Siemens SIMATIC CP 343-1 Advanced', 'Siemens SIMATIC CP 343-1 Standard', 'Siemens SIMATIC S7-1500 Software Controller incl. F <1.7.0', 'Siemens SIMATIC S7-1500 incl. F <1.7.0', 'Siemens SIMATIC S7-400 PN/DP V6 Incl. F <6.0.7', 'Siemens SIMATIC S7-410 <8.1'] |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2018-4843"
}
},
"description": "SIMATIC CP 343-1 Advanced\u7b49\u90fd\u662f\u5fb7\u56fd\u897f\u95e8\u5b50\uff08Siemens\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Siemens SIMATIC CP 343-1 Advanced\u662f\u4e00\u4e2a\u7528\u4e8e\u652f\u6301PROFINET\uff08\u65b0\u4e00\u4ee3\u57fa\u4e8e\u5de5\u4e1a\u4ee5\u592a\u7f51\u6280\u672f\u7684\u81ea\u52a8\u5316\u603b\u7ebf\u6807\u51c6\uff09\u7684\u4ee5\u592a\u7f51\u901a\u8baf\u6a21\u5757\u3002SIMATIC S7-1500\u662f\u4e00\u6b3e\u53ef\u7f16\u7a0b\u903b\u8f91\u63a7\u5236\u5668\u3002\r\n\r\n\u591a\u6b3eSiemens\u4ea7\u54c1\u4e2d\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9PROFINET DCP\u7f51\u7edc\u6570\u636e\u5305\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
"discovererName": "Siemens ProductCERT",
"formalWay": "\u7528\u6237\u53ef\u8054\u7cfb\u4f9b\u5e94\u5546\u83b7\u5f97\u8865\u4e01\u4fe1\u606f\uff1a\r\nhttps://support.industry.siemens.com/cs/ww/en/view/109478528",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2018-06025",
"openTime": "2018-03-22",
"patchDescription": "SIMATIC CP 343-1 Advanced\u7b49\u90fd\u662f\u5fb7\u56fd\u897f\u95e8\u5b50\uff08Siemens\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Siemens SIMATIC CP 343-1 Advanced\u662f\u4e00\u4e2a\u7528\u4e8e\u652f\u6301PROFINET\uff08\u65b0\u4e00\u4ee3\u57fa\u4e8e\u5de5\u4e1a\u4ee5\u592a\u7f51\u6280\u672f\u7684\u81ea\u52a8\u5316\u603b\u7ebf\u6807\u51c6\uff09\u7684\u4ee5\u592a\u7f51\u901a\u8baf\u6a21\u5757\u3002SIMATIC S7-1500\u662f\u4e00\u6b3e\u53ef\u7f16\u7a0b\u903b\u8f91\u63a7\u5236\u5668\u3002\r\n\r\n\u591a\u6b3eSiemens\u4ea7\u54c1\u4e2d\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u3002\u653b\u51fb\u8005\u53ef\u501f\u52a9PROFINET DCP\u7f51\u7edc\u6570\u636e\u5305\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "\u591a\u6b3eSiemens\u4ea7\u54c1\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2018-06025\uff09\u7684\u8865\u4e01",
"products": {
"product": [
"Siemens SIMATIC S7-300 incl. F\u548cT",
"Siemens SIMATIC S7-400 H V6",
"Siemens SIMATIC WinAC RTX 2010 incl. F",
"Siemens SINUMERIK 828D",
"Siemens SINUMERIK 840D sl",
"Siemens Softnet PROFINET IO for PC-based Windows systems",
"Siemens SIMATIC S7-400 PN/DP V7 Incl. F",
"Siemens SIMATIC CP 443-1 Standard",
"Siemens SIMATIC CP 343-1 Advanced",
"Siemens SIMATIC CP 343-1 Standard",
"Siemens SIMATIC S7-1500 Software Controller incl. F \u003c1.7.0",
"Siemens SIMATIC S7-1500 incl. F \u003c1.7.0",
"Siemens SIMATIC S7-400 PN/DP V6 Incl. F \u003c6.0.7",
"Siemens SIMATIC S7-410 \u003c8.1"
]
},
"referenceLink": "https://ics-cert.us-cert.gov/advisories/ICSA-18-079-02",
"serverity": "\u4e2d",
"submitTime": "2018-03-22",
"title": "\u591a\u6b3eSiemens\u4ea7\u54c1\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2018-06025\uff09"
}
FKIE_CVE-2018-4843
Vulnerability from fkie_nvd - Published: 2018-03-20 14:29 - Updated: 2024-11-21 04:07
Severity
Summary
A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions < V7.0.3), SIMATIC CP 343-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 (All versions < V3.3), SIMATIC CP 443-1 (All versions < V3.3), SIMATIC CP 443-1 Advanced (All versions < V3.3), SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200pro IM154-8FX PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200S IM151-8 PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200S IM151-8F PN/DP CPU (All versions < V3.2.16), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V1.7.0), SIMATIC S7-1500 Software Controller (All versions < V1.7.0), SIMATIC S7-300 CPU 314C-2 PN/DP (All versions < V3.3.16), SIMATIC S7-300 CPU 315-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 315F-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 315T-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317F-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317T-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317TF-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 319-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 319F-3 PN/DP (All versions < V3.2.16), SIMATIC S7-400 CPU 412-2 PN V7 (All versions < V7.0.3), SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) (All versions < V6.0.9), SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants) (All versions < V6.0.7), SIMATIC S7-410 CPU family (incl. SIPLUS variants) (All versions < V8.1), SIMATIC WinAC RTX 2010 (All versions < V2010 SP3), SIMATIC WinAC RTX F 2010 (All versions < V2010 SP3), SINUMERIK 828D (All versions < V4.7 SP6 HF1), SIPLUS ET 200S IM151-8 PN/DP CPU (All versions < V3.2.16), SIPLUS ET 200S IM151-8F PN/DP CPU (All versions < V3.2.16), SIPLUS NET CP 443-1 (All versions < V3.3), SIPLUS NET CP 443-1 Advanced (All versions < V3.3), SIPLUS S7-300 CPU 314C-2 PN/DP (All versions < V3.3.16), SIPLUS S7-300 CPU 315-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 315F-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 317-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 317F-2 PN/DP (All versions < V3.2.16), SIPLUS S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIPLUS S7-400 CPU 416-3 PN/DP V7 (All versions < V7.0.3), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a denial of service condition of the requesting system.
The security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. A manual restart is required to recover the system.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:simatic_cp_343-1_firmware:-:*:*:*:advanced:*:*:*",
"matchCriteriaId": "0332CA85-1B72-4008-8783-4ED53D1BF4BB",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:simatic_cp_343-1:-:*:*:*:advanced:*:*:*",
"matchCriteriaId": "E1F3B078-577E-4F4A-9874-A33C763C0548",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:simatic_cp_343-1_firmware:-:*:*:*:standard:*:*:*",
"matchCriteriaId": "D787C4D4-93F0-4D5C-A95A-FF89A07AA6A7",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:simatic_cp_343-1:-:*:*:*:standard:*:*:*",
"matchCriteriaId": "943315C8-8962-4F3A-986A-36064C355FB2",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:simatic_cp_443-1_firmware:-:*:*:*:advanced:*:*:*",
"matchCriteriaId": "5FDE21BE-E8F0-4D6D-934E-5FF40B017B8B",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:simatic_cp_443-1:-:*:*:*:advanced:*:*:*",
"matchCriteriaId": "B8D53233-1AC7-42FF-95BB-DF4D140E2D5E",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:simatic_cp_443-1_firmware:-:*:*:*:standard:*:*:*",
"matchCriteriaId": "2C90D35C-6566-4568-B090-C33FF20E5138",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:simatic_cp_443-1:-:*:*:*:standard:*:*:*",
"matchCriteriaId": "3879DFE1-0F4E-49E3-86B7-0280F7DBCAAA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DC53F124-7E16-4C2E-9474-CC4D4DF283AA",
"versionEndExcluding": "1.7.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:simatic_s7-1500:-:*:*:*:*:*:*:*",
"matchCriteriaId": "30DDEA9B-E1BF-4572-8E12-D13C54603E77",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:simatic_s7-300_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4C096137-C1E3-4D19-87A9-BEB7A081DD1E",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:simatic_s7-300:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7EFD4E99-5C66-443F-8B6F-FA01C895DE78",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:simatic_s7-400_h_v6_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E23473D4-A49C-4E82-BADC-4DD0B5775FE2",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:simatic_s7-400_h_v6:-:*:*:*:*:*:*:*",
"matchCriteriaId": "63E69699-A7ED-4710-9758-D1213EC834C0",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:simatic_s7-400_pn\\/dp_v6_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B9B6A790-F52B-4430-819C-D32E95DA913E",
"versionEndExcluding": "6.0.7",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:simatic_s7-400_pn\\/dp_v6:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C27A6138-1536-4BCD-B072-B64767140F1E",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:simatic_s7-400_pn\\/dp_v7_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2A1E779F-1A56-4552-9E82-F881D3B044C0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:simatic_s7-400_pn\\/dp_v7:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C48D93F2-FB6B-4D4D-84FB-3A7CDE89B727",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:simatic_s7-410_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8FDD8141-B14A-42B8-B851-726DFBFF755F",
"versionEndExcluding": "8.1",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:simatic_s7-410:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9C67EEFE-85A1-4FFB-B049-AB0F9DB9EA99",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:simatic_winac_rtx_2010_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "94A06329-866E-47B9-AFAE-A5144D432FC4",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:simatic_winac_rtx_2010:-:*:*:*:*:*:*:*",
"matchCriteriaId": "EBBCD2A1-A531-4BB9-8906-8992DFE35C6C",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:sinumerik_828d_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "3F445CD7-DEEA-4FDF-8E08-71E3031F6184",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:sinumerik_828d:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7D97047C-9772-4AEB-B993-131EBBAE33BA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:softnet_pn-io_linux_firmware:-:*:*:*:*:windows:*:*",
"matchCriteriaId": "2C99F4FE-30BE-4C44-B9FF-CFFCB63063A5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:softnet_pn-io_linux:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2DF9D2F8-77EF-47F9-B644-F9C48E0B1AD3",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC CP 343-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 (All versions \u003c V3.3), SIMATIC CP 443-1 (All versions \u003c V3.3), SIMATIC CP 443-1 Advanced (All versions \u003c V3.3), SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200pro IM154-8FX PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200S IM151-8 PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200S IM151-8F PN/DP CPU (All versions \u003c V3.2.16), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions \u003c V1.7.0), SIMATIC S7-1500 Software Controller (All versions \u003c V1.7.0), SIMATIC S7-300 CPU 314C-2 PN/DP (All versions \u003c V3.3.16), SIMATIC S7-300 CPU 315-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 315F-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 315T-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317F-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317T-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317TF-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 319-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 319F-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-400 CPU 412-2 PN V7 (All versions \u003c V7.0.3), SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) (All versions \u003c V6.0.9), SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants) (All versions \u003c V6.0.7), SIMATIC S7-410 CPU family (incl. SIPLUS variants) (All versions \u003c V8.1), SIMATIC WinAC RTX 2010 (All versions \u003c V2010 SP3), SIMATIC WinAC RTX F 2010 (All versions \u003c V2010 SP3), SINUMERIK 828D (All versions \u003c V4.7 SP6 HF1), SIPLUS ET 200S IM151-8 PN/DP CPU (All versions \u003c V3.2.16), SIPLUS ET 200S IM151-8F PN/DP CPU (All versions \u003c V3.2.16), SIPLUS NET CP 443-1 (All versions \u003c V3.3), SIPLUS NET CP 443-1 Advanced (All versions \u003c V3.3), SIPLUS S7-300 CPU 314C-2 PN/DP (All versions \u003c V3.3.16), SIPLUS S7-300 CPU 315-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 315F-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 317-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 317F-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-400 CPU 414-3 PN/DP V7 (All versions \u003c V7.0.3), SIPLUS S7-400 CPU 416-3 PN/DP V7 (All versions \u003c V7.0.3), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a denial of service condition of the requesting system.\r\n\r\nThe security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. A manual restart is required to recover the system."
},
{
"lang": "es",
"value": "Se ha identificado una vulnerabilidad en SIMATIC CP 343-1 (incl. variantes SIPLUS) (Todas las versiones), SIMATIC CP 343-1 Advanced (incl. variantes SIPLUS) (Todas las versiones), SIMATIC CP 443-1 (incl. variantes SIPLUS) (Todas las versiones), SIMATIC CP 443-1 Advanced (incl. variantes SIPLUS) variantes SIPLUS) (Todas las versiones), familia de CPUs SIMATIC S7-1500 (incl. CPUs ET200 relacionadas y variantes SIPLUS) (Todas las versiones anteriores a V1.7.0), Software Controller SIMATIC S7-1500 (incl. F) (Todas las versiones anteriores a V1.7.0), familia de CPUs SIMATIC S7-300 (incl. CPUs ET200 relacionadas y variantes SIPLUS) (Todas las versiones anteriores a V3.X.16 ), familia de CPU SIMATIC S7-400 H V6 (incl. variantes SIPLUS) (Todas las versiones anteriores a V6.0.9), familia de CPU SIMATIC S7-400 PN/DP V6 (incl. variantes SIPLUS) (Todas las versiones anteriores a V6.0.7), familia de CPU SIMATIC S7-400 PN/DP V7 (incl. variantes SIPLUS) (Todas las versiones), familia de CPU SIMATIC S7-410 (incl. variantes SIPLUS) (Todas las versiones). SIPLUS) (Todas las versiones anteriores a V8.1), SIMATIC WinAC RTX (F) 2010 (Todas las versiones anteriores a SIMATIC WinAC RTX 2010 SP3), SINUMERIK 828D (Todas las versiones anteriores a V4.7 SP6 HF1), Softnet PROFINET IO para sistemas Windows basados en PC (Todas las versiones). La respuesta a una solicitud PROFINET DCP con un paquete PROFINET DCP especialmente dise\u00f1ado podr\u00eda causar una condici\u00f3n de denegaci\u00f3n de servicio del sistema solicitante. La vulnerabilidad de seguridad podr\u00eda ser explotada por un atacante situado en el mismo segmento Ethernet (capa 2 de OSI) que el dispositivo objetivo. El \u00e9xito de la explotaci\u00f3n no requiere ninguna interacci\u00f3n del usuario o privilegios y afecta a la disponibilidad de la funcionalidad principal del dispositivo afectado. Se requiere un reinicio manual para recuperar el sistema. En el momento de la publicaci\u00f3n del aviso no se conoce ninguna explotaci\u00f3n p\u00fablica de esta vulnerabilidad de seguridad. Siemens proporciona mitigaciones para resolver el problema de seguridad. Las interfaces PROFIBUS no est\u00e1n afectadas."
}
],
"id": "CVE-2018-4843",
"lastModified": "2024-11-21T04:07:34.080",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.1,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 6.5,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "productcert@siemens.com",
"type": "Secondary"
}
]
},
"published": "2018-03-20T14:29:00.413",
"references": [
{
"source": "productcert@siemens.com",
"tags": [
"Vendor Advisory"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf"
}
],
"sourceIdentifier": "productcert@siemens.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "productcert@siemens.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Secondary"
}
]
}
GHSA-2CG6-W8MM-22RG
Vulnerability from github – Published: 2022-05-13 01:31 – Updated: 2022-05-13 01:31
VLAI
Details
A vulnerability has been identified in SIMATIC CP 343-1 Advanced (All versions), SIMATIC CP 343-1 Standard (All versions), SIMATIC CP 443-1 Advanced (All versions), SIMATIC CP 443-1 Standard (All versions), SIMATIC S7-1500 Software Controller incl. F (All versions < V1.7.0), SIMATIC S7-1500 incl. F (All versions < V1.7.0), SIMATIC S7-300 incl. F and T (All versions < V3.X.16), SIMATIC S7-400 H V6 (All versions < V6.0.9), SIMATIC S7-400 PN/DP V6 Incl. F (All versions < V6.0.7), SIMATIC S7-400 PN/DP V7 Incl. F (All versions), SIMATIC S7-410 (All versions < V8.1), SIMATIC WinAC RTX (F) 2010 (All versions < SIMATIC WinAC RTX 2010 SP3), SINUMERIK 828D (All versions < V4.7 SP6 HF1), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a Denial-of-Service condition of the requesting system. The security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. Successful exploitation requires no user interaction or privileges and impacts the availability of core functionality of the affected device. A manual restart is required to recover the system. At the time of advisory publication no public exploitation of this security vulnerability is known. Siemens provides mitigations to resolve the security issue. PROFIBUS interfaces are not affected.
Severity
6.5 (Medium)
{
"affected": [],
"aliases": [
"CVE-2018-4843"
],
"database_specific": {
"cwe_ids": [
"CWE-20"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-03-20T14:29:00Z",
"severity": "MODERATE"
},
"details": "A vulnerability has been identified in SIMATIC CP 343-1 Advanced (All versions), SIMATIC CP 343-1 Standard (All versions), SIMATIC CP 443-1 Advanced (All versions), SIMATIC CP 443-1 Standard (All versions), SIMATIC S7-1500 Software Controller incl. F (All versions \u003c V1.7.0), SIMATIC S7-1500 incl. F (All versions \u003c V1.7.0), SIMATIC S7-300 incl. F and T (All versions \u003c V3.X.16), SIMATIC S7-400 H V6 (All versions \u003c V6.0.9), SIMATIC S7-400 PN/DP V6 Incl. F (All versions \u003c V6.0.7), SIMATIC S7-400 PN/DP V7 Incl. F (All versions), SIMATIC S7-410 (All versions \u003c V8.1), SIMATIC WinAC RTX (F) 2010 (All versions \u003c SIMATIC WinAC RTX 2010 SP3), SINUMERIK 828D (All versions \u003c V4.7 SP6 HF1), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a Denial-of-Service condition of the requesting system. The security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. Successful exploitation requires no user interaction or privileges and impacts the availability of core functionality of the affected device. A manual restart is required to recover the system. At the time of advisory publication no public exploitation of this security vulnerability is known. Siemens provides mitigations to resolve the security issue. PROFIBUS interfaces are not affected.",
"id": "GHSA-2cg6-w8mm-22rg",
"modified": "2022-05-13T01:31:10Z",
"published": "2022-05-13T01:31:10Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-4843"
},
{
"type": "WEB",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2018-4843
Vulnerability from gsd - Updated: 2023-12-13 01:22Details
A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions < V7.0.3), SIMATIC CP 343-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 (All versions < V3.3), SIMATIC CP 443-1 (All versions < V3.3), SIMATIC CP 443-1 Advanced (All versions < V3.3), SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200pro IM154-8FX PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200S IM151-8 PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200S IM151-8F PN/DP CPU (All versions < V3.2.16), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V1.7.0), SIMATIC S7-1500 Software Controller (All versions < V1.7.0), SIMATIC S7-300 CPU 314C-2 PN/DP (All versions < V3.3.16), SIMATIC S7-300 CPU 315-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 315F-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 315T-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317F-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317T-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317TF-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 319-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 319F-3 PN/DP (All versions < V3.2.16), SIMATIC S7-400 CPU 412-2 PN V7 (All versions < V7.0.3), SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) (All versions < V6.0.9), SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants) (All versions < V6.0.7), SIMATIC S7-410 CPU family (incl. SIPLUS variants) (All versions < V8.1), SIMATIC WinAC RTX 2010 (All versions < V2010 SP3), SIMATIC WinAC RTX F 2010 (All versions < V2010 SP3), SINUMERIK 828D (All versions < V4.7 SP6 HF1), SIPLUS ET 200S IM151-8 PN/DP CPU (All versions < V3.2.16), SIPLUS ET 200S IM151-8F PN/DP CPU (All versions < V3.2.16), SIPLUS NET CP 443-1 (All versions < V3.3), SIPLUS NET CP 443-1 Advanced (All versions < V3.3), SIPLUS S7-300 CPU 314C-2 PN/DP (All versions < V3.3.16), SIPLUS S7-300 CPU 315-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 315F-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 317-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 317F-2 PN/DP (All versions < V3.2.16), SIPLUS S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIPLUS S7-400 CPU 416-3 PN/DP V7 (All versions < V7.0.3), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a denial of service condition of the requesting system.
The security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. A manual restart is required to recover the system.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2018-4843",
"description": "A vulnerability has been identified in SIMATIC CP 343-1 Advanced (All versions), SIMATIC CP 343-1 Standard (All versions), SIMATIC CP 443-1 Advanced (All versions), SIMATIC CP 443-1 Standard (All versions), SIMATIC S7-1500 Software Controller incl. F (All versions \u003c V1.7.0), SIMATIC S7-1500 incl. F (All versions \u003c V1.7.0), SIMATIC S7-300 incl. F and T (All versions \u003c V3.X.16), SIMATIC S7-400 H V6 (All versions \u003c V6.0.9), SIMATIC S7-400 PN/DP V6 Incl. F (All versions \u003c V6.0.7), SIMATIC S7-400 PN/DP V7 Incl. F (All versions), SIMATIC S7-410 (All versions \u003c V8.1), SIMATIC WinAC RTX (F) 2010 (All versions \u003c SIMATIC WinAC RTX 2010 SP3), SINUMERIK 828D (All versions \u003c V4.7 SP6 HF1), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a Denial-of-Service condition of the requesting system. The security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. Successful exploitation requires no user interaction or privileges and impacts the availability of core functionality of the affected device. A manual restart is required to recover the system. At the time of advisory publication no public exploitation of this security vulnerability is known. Siemens provides mitigations to resolve the security issue. PROFIBUS interfaces are not affected.",
"id": "GSD-2018-4843"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2018-4843"
],
"details": "A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC CP 343-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 (All versions \u003c V3.3), SIMATIC CP 443-1 (All versions \u003c V3.3), SIMATIC CP 443-1 Advanced (All versions \u003c V3.3), SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200pro IM154-8FX PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200S IM151-8 PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200S IM151-8F PN/DP CPU (All versions \u003c V3.2.16), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions \u003c V1.7.0), SIMATIC S7-1500 Software Controller (All versions \u003c V1.7.0), SIMATIC S7-300 CPU 314C-2 PN/DP (All versions \u003c V3.3.16), SIMATIC S7-300 CPU 315-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 315F-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 315T-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317F-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317T-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317TF-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 319-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 319F-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-400 CPU 412-2 PN V7 (All versions \u003c V7.0.3), SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) (All versions \u003c V6.0.9), SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants) (All versions \u003c V6.0.7), SIMATIC S7-410 CPU family (incl. SIPLUS variants) (All versions \u003c V8.1), SIMATIC WinAC RTX 2010 (All versions \u003c V2010 SP3), SIMATIC WinAC RTX F 2010 (All versions \u003c V2010 SP3), SINUMERIK 828D (All versions \u003c V4.7 SP6 HF1), SIPLUS ET 200S IM151-8 PN/DP CPU (All versions \u003c V3.2.16), SIPLUS ET 200S IM151-8F PN/DP CPU (All versions \u003c V3.2.16), SIPLUS NET CP 443-1 (All versions \u003c V3.3), SIPLUS NET CP 443-1 Advanced (All versions \u003c V3.3), SIPLUS S7-300 CPU 314C-2 PN/DP (All versions \u003c V3.3.16), SIPLUS S7-300 CPU 315-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 315F-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 317-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 317F-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-400 CPU 414-3 PN/DP V7 (All versions \u003c V7.0.3), SIPLUS S7-400 CPU 416-3 PN/DP V7 (All versions \u003c V7.0.3), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a denial of service condition of the requesting system.\r\n\r\nThe security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. A manual restart is required to recover the system.",
"id": "GSD-2018-4843",
"modified": "2023-12-13T01:22:28.273882Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "productcert@siemens.com",
"ID": "CVE-2018-4843",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": " SIMATIC S7-400 CPU 414-3 PN/DP V7",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V7.0.3"
}
]
}
},
{
"product_name": " SIMATIC S7-400 CPU 414F-3 PN/DP V7",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V7.0.3"
}
]
}
},
{
"product_name": " SIMATIC S7-400 CPU 416-3 PN/DP V7",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V7.0.3"
}
]
}
},
{
"product_name": " SIMATIC S7-400 CPU 416F-3 PN/DP V7",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V7.0.3"
}
]
}
},
{
"product_name": "SIMATIC CP 343-1 (incl. SIPLUS variants)",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions"
}
]
}
},
{
"product_name": "SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions"
}
]
}
},
{
"product_name": "SIMATIC CP 443-1",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.3"
},
{
"version_affected": "=",
"version_value": "All versions \u003c V3.3"
}
]
}
},
{
"product_name": "SIMATIC CP 443-1 Advanced",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.3"
}
]
}
},
{
"product_name": "SIMATIC ET 200pro IM154-8 PN/DP CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIMATIC ET 200pro IM154-8F PN/DP CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIMATIC ET 200pro IM154-8FX PN/DP CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIMATIC ET 200S IM151-8 PN/DP CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIMATIC ET 200S IM151-8F PN/DP CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V1.7.0"
}
]
}
},
{
"product_name": "SIMATIC S7-1500 Software Controller",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V1.7.0"
}
]
}
},
{
"product_name": "SIMATIC S7-300 CPU 314C-2 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.3.16"
}
]
}
},
{
"product_name": "SIMATIC S7-300 CPU 315-2 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIMATIC S7-300 CPU 315F-2 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIMATIC S7-300 CPU 315T-3 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIMATIC S7-300 CPU 317-2 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIMATIC S7-300 CPU 317F-2 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIMATIC S7-300 CPU 317T-3 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIMATIC S7-300 CPU 317TF-3 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIMATIC S7-300 CPU 319-3 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIMATIC S7-300 CPU 319F-3 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIMATIC S7-400 CPU 412-2 PN V7",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V7.0.3"
}
]
}
},
{
"product_name": "SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V6.0.9"
}
]
}
},
{
"product_name": "SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants)",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V6.0.7"
}
]
}
},
{
"product_name": "SIMATIC S7-410 CPU family (incl. SIPLUS variants)",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V8.1"
}
]
}
},
{
"product_name": "SIMATIC WinAC RTX 2010",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V2010 SP3"
}
]
}
},
{
"product_name": "SIMATIC WinAC RTX F 2010",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V2010 SP3"
}
]
}
},
{
"product_name": "SINUMERIK 828D",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V4.7 SP6 HF1"
}
]
}
},
{
"product_name": "SIPLUS ET 200S IM151-8 PN/DP CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIPLUS ET 200S IM151-8F PN/DP CPU",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIPLUS NET CP 443-1",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.3"
}
]
}
},
{
"product_name": "SIPLUS NET CP 443-1 Advanced",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.3"
}
]
}
},
{
"product_name": "SIPLUS S7-300 CPU 314C-2 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.3.16"
}
]
}
},
{
"product_name": "SIPLUS S7-300 CPU 315-2 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIPLUS S7-300 CPU 315F-2 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIPLUS S7-300 CPU 317-2 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIPLUS S7-300 CPU 317F-2 PN/DP",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V3.2.16"
}
]
}
},
{
"product_name": "SIPLUS S7-400 CPU 414-3 PN/DP V7",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V7.0.3"
}
]
}
},
{
"product_name": "SIPLUS S7-400 CPU 416-3 PN/DP V7",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions \u003c V7.0.3"
}
]
}
},
{
"product_name": "Softnet PROFINET IO for PC-based Windows systems",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "All versions"
}
]
}
}
]
},
"vendor_name": "Siemens"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC CP 343-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 (All versions \u003c V3.3), SIMATIC CP 443-1 (All versions \u003c V3.3), SIMATIC CP 443-1 Advanced (All versions \u003c V3.3), SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200pro IM154-8FX PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200S IM151-8 PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200S IM151-8F PN/DP CPU (All versions \u003c V3.2.16), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions \u003c V1.7.0), SIMATIC S7-1500 Software Controller (All versions \u003c V1.7.0), SIMATIC S7-300 CPU 314C-2 PN/DP (All versions \u003c V3.3.16), SIMATIC S7-300 CPU 315-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 315F-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 315T-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317F-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317T-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317TF-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 319-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 319F-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-400 CPU 412-2 PN V7 (All versions \u003c V7.0.3), SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) (All versions \u003c V6.0.9), SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants) (All versions \u003c V6.0.7), SIMATIC S7-410 CPU family (incl. SIPLUS variants) (All versions \u003c V8.1), SIMATIC WinAC RTX 2010 (All versions \u003c V2010 SP3), SIMATIC WinAC RTX F 2010 (All versions \u003c V2010 SP3), SINUMERIK 828D (All versions \u003c V4.7 SP6 HF1), SIPLUS ET 200S IM151-8 PN/DP CPU (All versions \u003c V3.2.16), SIPLUS ET 200S IM151-8F PN/DP CPU (All versions \u003c V3.2.16), SIPLUS NET CP 443-1 (All versions \u003c V3.3), SIPLUS NET CP 443-1 Advanced (All versions \u003c V3.3), SIPLUS S7-300 CPU 314C-2 PN/DP (All versions \u003c V3.3.16), SIPLUS S7-300 CPU 315-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 315F-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 317-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 317F-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-400 CPU 414-3 PN/DP V7 (All versions \u003c V7.0.3), SIPLUS S7-400 CPU 416-3 PN/DP V7 (All versions \u003c V7.0.3), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a denial of service condition of the requesting system.\r\n\r\nThe security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. A manual restart is required to recover the system."
}
]
},
"impact": {
"cvss": [
{
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-20",
"lang": "eng",
"value": "CWE-20: Improper Input Validation"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf",
"refsource": "MISC",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:simatic_cp_343-1_firmware:-:*:*:*:advanced:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:simatic_cp_343-1:-:*:*:*:advanced:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:simatic_cp_343-1_firmware:-:*:*:*:standard:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:simatic_cp_343-1:-:*:*:*:standard:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:simatic_cp_443-1_firmware:-:*:*:*:advanced:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:simatic_cp_443-1:-:*:*:*:advanced:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:simatic_cp_443-1_firmware:-:*:*:*:standard:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:simatic_cp_443-1:-:*:*:*:standard:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:simatic_s7-1500_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "1.7.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:simatic_s7-1500:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:simatic_s7-300_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:simatic_s7-300:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:simatic_s7-400_h_v6_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:simatic_s7-400_h_v6:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:simatic_s7-400_pn\\/dp_v6_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "6.0.7",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:simatic_s7-400_pn\\/dp_v6:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:simatic_s7-400_pn\\/dp_v7_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:simatic_s7-400_pn\\/dp_v7:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:simatic_s7-410_firmware:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "8.1",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:simatic_s7-410:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:simatic_winac_rtx_2010_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:simatic_winac_rtx_2010:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:sinumerik_828d_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:sinumerik_828d:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:siemens:softnet_pn-io_linux_firmware:-:*:*:*:*:windows:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:siemens:softnet_pn-io_linux:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "productcert@siemens.com",
"ID": "CVE-2018-4843"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC CP 343-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 (All versions \u003c V3.3), SIMATIC CP 443-1 (All versions \u003c V3.3), SIMATIC CP 443-1 Advanced (All versions \u003c V3.3), SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200pro IM154-8FX PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200S IM151-8 PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200S IM151-8F PN/DP CPU (All versions \u003c V3.2.16), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions \u003c V1.7.0), SIMATIC S7-1500 Software Controller (All versions \u003c V1.7.0), SIMATIC S7-300 CPU 314C-2 PN/DP (All versions \u003c V3.3.16), SIMATIC S7-300 CPU 315-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 315F-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 315T-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317F-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317T-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317TF-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 319-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 319F-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-400 CPU 412-2 PN V7 (All versions \u003c V7.0.3), SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) (All versions \u003c V6.0.9), SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants) (All versions \u003c V6.0.7), SIMATIC S7-410 CPU family (incl. SIPLUS variants) (All versions \u003c V8.1), SIMATIC WinAC RTX 2010 (All versions \u003c V2010 SP3), SIMATIC WinAC RTX F 2010 (All versions \u003c V2010 SP3), SINUMERIK 828D (All versions \u003c V4.7 SP6 HF1), SIPLUS ET 200S IM151-8 PN/DP CPU (All versions \u003c V3.2.16), SIPLUS ET 200S IM151-8F PN/DP CPU (All versions \u003c V3.2.16), SIPLUS NET CP 443-1 (All versions \u003c V3.3), SIPLUS NET CP 443-1 Advanced (All versions \u003c V3.3), SIPLUS S7-300 CPU 314C-2 PN/DP (All versions \u003c V3.3.16), SIPLUS S7-300 CPU 315-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 315F-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 317-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 317F-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-400 CPU 414-3 PN/DP V7 (All versions \u003c V7.0.3), SIPLUS S7-400 CPU 416-3 PN/DP V7 (All versions \u003c V7.0.3), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a denial of service condition of the requesting system.\r\n\r\nThe security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. A manual restart is required to recover the system."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 6.1,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 6.5,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
},
"lastModifiedDate": "2023-05-09T13:15Z",
"publishedDate": "2018-03-20T14:29Z"
}
}
}
ICSA-18-079-02
Vulnerability from csaf_cisa - Published: 2018-03-20 00:00 - Updated: 2023-05-09 00:00Summary
Siemens SIMATIC, SINUMERIK, and PROFINET IO (Update D)
Notes
Summary: Several industrial controllers are affected by a security vulnerability that could allow an attacker to cause a denial of service condition via PROFINET DCP network packets under certain circumstances. Precondition for this scenario is a direct OSI Layer 2 access to the affected products. PROFIBUS interfaces are not affected.
Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.
General Recommendations: As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download:
https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources: For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use: Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter "License Terms"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter "Terms of Use"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.
Legal Notice: All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Advisory Conversion Disclaimer: This CISA CSAF advisory was converted from Siemens ProductCERT's CSAF advisory.
Critical infrastructure sectors: Multiple
Countries/areas deployed: Worldwide
Company headquarters location: Germany
Recommended Practices: CISA recommends users take defensive measures to minimize the exploitation risk of these vulnerabilities.
Recommended Practices: Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.
Recommended Practices: Locate control system networks and remote devices behind firewalls and isolate them from business networks.
Recommended Practices: When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.
Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices: CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices: CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Recommended Practices: Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
CWE-20
- Improper Input Validation
Affected products
Known affected
45 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMATIC S7-400 CPU 414-3 PN/DP V7 (6ES7414-3EM07-0AB0)
Siemens / SIMATIC S7-400 CPU 414-3 PN/DP V7 (6ES7414-3EM07-0AB0)
|
6ES7414-3EM07-0AB0
|
vers:all/<V7.0.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-400 CPU 414F-3 PN/DP V7 (6ES7414-3FM07-0AB0)
Siemens / SIMATIC S7-400 CPU 414F-3 PN/DP V7 (6ES7414-3FM07-0AB0)
|
6ES7414-3FM07-0AB0
|
vers:all/<V7.0.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-400 CPU 416-3 PN/DP V7 (6ES7416-3ES07-0AB0)
Siemens / SIMATIC S7-400 CPU 416-3 PN/DP V7 (6ES7416-3ES07-0AB0)
|
6ES7416-3ES07-0AB0
|
vers:all/<V7.0.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-400 CPU 416F-3 PN/DP V7 (6ES7416-3FS07-0AB0)
Siemens / SIMATIC S7-400 CPU 416F-3 PN/DP V7 (6ES7416-3FS07-0AB0)
|
6ES7416-3FS07-0AB0
|
vers:all/<V7.0.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC CP 343-1 (incl. SIPLUS variants)
Siemens / SIMATIC CP 343-1 (incl. SIPLUS variants)
|
vers:all/* |
Mitigation
No Fix Planned
|
|
|
SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)
Siemens / SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)
|
vers:all/* |
Mitigation
No Fix Planned
|
|
|
SIMATIC CP 443-1 (6GK7443-1EX30-0XE0)
Siemens / SIMATIC CP 443-1 (6GK7443-1EX30-0XE0)
|
6GK7443-1EX30-0XE0
|
vers:all/<V3.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC CP 443-1 (6GK7443-1EX30-0XE1)
Siemens / SIMATIC CP 443-1 (6GK7443-1EX30-0XE1)
|
6GK7443-1EX30-0XE1
|
vers:all/<V3.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC CP 443-1 Advanced (6GK7443-1GX30-0XE0)
Siemens / SIMATIC CP 443-1 Advanced (6GK7443-1GX30-0XE0)
|
6GK7443-1GX30-0XE0
|
vers:all/<V3.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200pro IM154-8 PN/DP CPU (6ES7154-8AB01-0AB0)
Siemens / SIMATIC ET 200pro IM154-8 PN/DP CPU (6ES7154-8AB01-0AB0)
|
6ES7154-8AB01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200pro IM154-8F PN/DP CPU (6ES7154-8FB01-0AB0)
Siemens / SIMATIC ET 200pro IM154-8F PN/DP CPU (6ES7154-8FB01-0AB0)
|
6ES7154-8FB01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200pro IM154-8FX PN/DP CPU (6ES7154-8FX00-0AB0)
Siemens / SIMATIC ET 200pro IM154-8FX PN/DP CPU (6ES7154-8FX00-0AB0)
|
6ES7154-8FX00-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200S IM151-8 PN/DP CPU (6ES7151-8AB01-0AB0)
Siemens / SIMATIC ET 200S IM151-8 PN/DP CPU (6ES7151-8AB01-0AB0)
|
6ES7151-8AB01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200S IM151-8F PN/DP CPU (6ES7151-8FB01-0AB0)
Siemens / SIMATIC ET 200S IM151-8F PN/DP CPU (6ES7151-8FB01-0AB0)
|
6ES7151-8FB01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)
Siemens / SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)
|
vers:all/<V1.7.0 |
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC S7-1500 Software Controller
Siemens / SIMATIC S7-1500 Software Controller
|
vers:all/<V1.7.0 |
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0)
Siemens / SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0)
|
6ES7314-6EH04-0AB0
|
vers:all/<V3.3.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0)
Siemens / SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0)
|
6ES7315-2EH14-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0)
Siemens / SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0)
|
6ES7315-2FJ14-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0)
Siemens / SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0)
|
6ES7315-7TJ10-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0)
Siemens / SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0)
|
6ES7317-2EK14-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0)
Siemens / SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0)
|
6ES7317-2FK14-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0)
Siemens / SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0)
|
6ES7317-7TK10-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0)
Siemens / SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0)
|
6ES7317-7UL10-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0)
Siemens / SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0)
|
6ES7318-3EL01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0)
Siemens / SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0)
|
6ES7318-3FL01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-400 CPU 412-2 PN V7 (6ES7412-2EK07-0AB0)
Siemens / SIMATIC S7-400 CPU 412-2 PN V7 (6ES7412-2EK07-0AB0)
|
6ES7412-2EK07-0AB0
|
vers:all/<V7.0.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)
Siemens / SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)
|
vers:all/<V6.0.9 |
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants)
Siemens / SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants)
|
vers:all/<V6.0.7 |
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC S7-410 CPU family (incl. SIPLUS variants)
Siemens / SIMATIC S7-410 CPU family (incl. SIPLUS variants)
|
vers:all/<V8.1 |
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0)
Siemens / SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0)
|
6ES7671-0RC08-0YA0
|
<V2010_SP3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0)
Siemens / SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0)
|
6ES7671-1RC08-0YA0
|
<V2010_SP3 |
Mitigation
Vendor Fix
fix
|
|
SINUMERIK 828D
Siemens / SINUMERIK 828D
|
<V4.7_SP6_HF1 |
Mitigation
Vendor Fix
|
|
|
SIPLUS ET 200S IM151-8 PN/DP CPU (6AG1151-8AB01-7AB0)
Siemens / SIPLUS ET 200S IM151-8 PN/DP CPU (6AG1151-8AB01-7AB0)
|
6AG1151-8AB01-7AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS ET 200S IM151-8F PN/DP CPU (6AG1151-8FB01-2AB0)
Siemens / SIPLUS ET 200S IM151-8F PN/DP CPU (6AG1151-8FB01-2AB0)
|
6AG1151-8FB01-2AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS NET CP 443-1 (6AG1443-1EX30-4XE0)
Siemens / SIPLUS NET CP 443-1 (6AG1443-1EX30-4XE0)
|
6AG1443-1EX30-4XE0
|
vers:all/<V3.3 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS NET CP 443-1 Advanced (6AG1443-1GX30-4XE0)
Siemens / SIPLUS NET CP 443-1 Advanced (6AG1443-1GX30-4XE0)
|
6AG1443-1GX30-4XE0
|
vers:all/<V3.3 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0)
Siemens / SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0)
|
6AG1314-6EH04-7AB0
|
vers:all/<V3.3.16 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0)
Siemens / SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0)
|
6AG1315-2EH14-7AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0)
Siemens / SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0)
|
6AG1315-2FJ14-2AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0)
Siemens / SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0)
|
6AG1317-2EK14-7AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0)
Siemens / SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0)
|
6AG1317-2FK14-2AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-400 CPU 414-3 PN/DP V7 (6AG1414-3EM07-7AB0)
Siemens / SIPLUS S7-400 CPU 414-3 PN/DP V7 (6AG1414-3EM07-7AB0)
|
6AG1414-3EM07-7AB0
|
vers:all/<V7.0.3 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-400 CPU 416-3 PN/DP V7 (6AG1416-3ES07-7AB0)
Siemens / SIPLUS S7-400 CPU 416-3 PN/DP V7 (6AG1416-3ES07-7AB0)
|
6AG1416-3ES07-7AB0
|
vers:all/<V7.0.3 |
Mitigation
Vendor Fix
fix
|
|
Softnet PROFINET IO for PC-based Windows systems
Siemens / Softnet PROFINET IO for PC-based Windows systems
|
vers:all/* |
Mitigation
No Fix Planned
|
References
12 references
Acknowledgments
Siemens ProductCERT
{
"document": {
"acknowledgments": [
{
"organization": "Siemens ProductCERT",
"summary": "reporting this vulnerability to CISA."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Several industrial controllers are affected by a security vulnerability that could allow an attacker to cause a denial of service condition via PROFINET DCP network packets under certain circumstances. Precondition for this scenario is a direct OSI Layer 2 access to the affected products. PROFIBUS interfaces are not affected. \n\nSiemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.",
"title": "Terms of Use"
},
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "other",
"text": "This CISA CSAF advisory was converted from Siemens ProductCERT\u0027s CSAF advisory.",
"title": "Advisory Conversion Disclaimer"
},
{
"category": "other",
"text": "Multiple",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "Germany",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the exploitation risk of these vulnerabilities.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "other",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "SSA-592007: Denial of Service Vulnerability in Industrial Products - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-592007.json"
},
{
"category": "self",
"summary": "SSA-592007: Denial of Service Vulnerability in Industrial Products - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-592007.html"
},
{
"category": "self",
"summary": "SSA-592007: Denial of Service Vulnerability in Industrial Products - PDF Version",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf"
},
{
"category": "self",
"summary": "SSA-592007: Denial of Service Vulnerability in Industrial Products - TXT Version",
"url": "https://cert-portal.siemens.com/productcert/txt/ssa-592007.txt"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-18-079-02 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2018/icsa-18-079-02.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-18-079-02 - Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-18-079-02"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
}
],
"title": "Siemens SIMATIC, SINUMERIK, and PROFINET IO (Update D)",
"tracking": {
"current_release_date": "2023-05-09T00:00:00.000000Z",
"generator": {
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-18-079-02",
"initial_release_date": "2018-03-20T00:00:00.000000Z",
"revision_history": [
{
"date": "2018-03-20T00:00:00.000000Z",
"legacy_version": "1.0",
"number": "1",
"summary": "Publication Date"
},
{
"date": "2018-03-27T00:00:00.000000Z",
"legacy_version": "1.1",
"number": "2",
"summary": "Removed SINUMERIK 840D sl from affected products"
},
{
"date": "2018-10-09T00:00:00.000000Z",
"legacy_version": "1.2",
"number": "3",
"summary": "Added update for SINUMERIK 828D"
},
{
"date": "2019-01-08T00:00:00.000000Z",
"legacy_version": "1.3",
"number": "4",
"summary": "Added update for SIMATIC S7-300 incl. F and T"
},
{
"date": "2019-05-14T00:00:00.000000Z",
"legacy_version": "1.4",
"number": "5",
"summary": "Added update for S7-400 H V6"
},
{
"date": "2019-10-08T00:00:00.000000Z",
"legacy_version": "1.5",
"number": "6",
"summary": "Renamed SIMATIC WinAC RTX 2010 incl. F to SIMATIC WinAC RTX (F) 2010 and added update information for SIMATIC WinAC RTX (F) 2010"
},
{
"date": "2020-02-10T00:00:00.000000Z",
"legacy_version": "1.6",
"number": "7",
"summary": "SIPLUS devices now explicitly mentioned in the list of affected products"
},
{
"date": "2022-06-14T00:00:00.000000Z",
"legacy_version": "1.7",
"number": "8",
"summary": "No fix planned for SIMATIC CP 343-1 and SIMATIC CP 443-1 Advanced"
},
{
"date": "2022-08-09T00:00:00.000000Z",
"legacy_version": "1.8",
"number": "9",
"summary": "Clarify no fix planned for SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)"
},
{
"date": "2023-01-10T00:00:00.000000Z",
"legacy_version": "1.9",
"number": "10",
"summary": "SIMATIC S7-300 CPU family expanded with product specific designations, patch links and MLFBs; No fix planned for SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)"
},
{
"date": "2023-04-11T00:00:00.000000Z",
"legacy_version": "2.0",
"number": "11",
"summary": "Added fix for SIMATIC CP 443-1 and CP 443-1 Advanced"
},
{
"date": "2023-05-09T00:00:00.000000Z",
"legacy_version": "2.1",
"number": "12",
"summary": "Added fix for SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants); expanded SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants) to individual products and MLFBs; reviewed CVSS score and description of CVE-2018-4843"
}
],
"status": "final",
"version": "12"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV7.0.3",
"product": {
"name": " SIMATIC S7-400 CPU 414-3 PN/DP V7 (6ES7414-3EM07-0AB0)",
"product_id": "CSAFPID-0001",
"product_identification_helper": {
"model_numbers": [
"6ES7414-3EM07-0AB0"
]
}
}
}
],
"category": "product_name",
"name": " SIMATIC S7-400 CPU 414-3 PN/DP V7 (6ES7414-3EM07-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV7.0.3",
"product": {
"name": " SIMATIC S7-400 CPU 414F-3 PN/DP V7 (6ES7414-3FM07-0AB0)",
"product_id": "CSAFPID-0002",
"product_identification_helper": {
"model_numbers": [
"6ES7414-3FM07-0AB0"
]
}
}
}
],
"category": "product_name",
"name": " SIMATIC S7-400 CPU 414F-3 PN/DP V7 (6ES7414-3FM07-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV7.0.3",
"product": {
"name": " SIMATIC S7-400 CPU 416-3 PN/DP V7 (6ES7416-3ES07-0AB0)",
"product_id": "CSAFPID-0003",
"product_identification_helper": {
"model_numbers": [
"6ES7416-3ES07-0AB0"
]
}
}
}
],
"category": "product_name",
"name": " SIMATIC S7-400 CPU 416-3 PN/DP V7 (6ES7416-3ES07-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV7.0.3",
"product": {
"name": " SIMATIC S7-400 CPU 416F-3 PN/DP V7 (6ES7416-3FS07-0AB0)",
"product_id": "CSAFPID-0004",
"product_identification_helper": {
"model_numbers": [
"6ES7416-3FS07-0AB0"
]
}
}
}
],
"category": "product_name",
"name": " SIMATIC S7-400 CPU 416F-3 PN/DP V7 (6ES7416-3FS07-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC CP 343-1 (incl. SIPLUS variants)",
"product_id": "CSAFPID-0005"
}
}
],
"category": "product_name",
"name": "SIMATIC CP 343-1 (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)",
"product_id": "CSAFPID-0006"
}
}
],
"category": "product_name",
"name": "SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIMATIC CP 443-1 (6GK7443-1EX30-0XE0)",
"product_id": "CSAFPID-0007",
"product_identification_helper": {
"model_numbers": [
"6GK7443-1EX30-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 443-1 (6GK7443-1EX30-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIMATIC CP 443-1 (6GK7443-1EX30-0XE1)",
"product_id": "CSAFPID-0008",
"product_identification_helper": {
"model_numbers": [
"6GK7443-1EX30-0XE1"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 443-1 (6GK7443-1EX30-0XE1)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIMATIC CP 443-1 Advanced (6GK7443-1GX30-0XE0)",
"product_id": "CSAFPID-0009",
"product_identification_helper": {
"model_numbers": [
"6GK7443-1GX30-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 443-1 Advanced (6GK7443-1GX30-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200pro IM154-8 PN/DP CPU (6ES7154-8AB01-0AB0)",
"product_id": "CSAFPID-0010",
"product_identification_helper": {
"model_numbers": [
"6ES7154-8AB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200pro IM154-8 PN/DP CPU (6ES7154-8AB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200pro IM154-8F PN/DP CPU (6ES7154-8FB01-0AB0)",
"product_id": "CSAFPID-0011",
"product_identification_helper": {
"model_numbers": [
"6ES7154-8FB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200pro IM154-8F PN/DP CPU (6ES7154-8FB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200pro IM154-8FX PN/DP CPU (6ES7154-8FX00-0AB0)",
"product_id": "CSAFPID-0012",
"product_identification_helper": {
"model_numbers": [
"6ES7154-8FX00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200pro IM154-8FX PN/DP CPU (6ES7154-8FX00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200S IM151-8 PN/DP CPU (6ES7151-8AB01-0AB0)",
"product_id": "CSAFPID-0013",
"product_identification_helper": {
"model_numbers": [
"6ES7151-8AB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200S IM151-8 PN/DP CPU (6ES7151-8AB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200S IM151-8F PN/DP CPU (6ES7151-8FB01-0AB0)",
"product_id": "CSAFPID-0014",
"product_identification_helper": {
"model_numbers": [
"6ES7151-8FB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200S IM151-8F PN/DP CPU (6ES7151-8FB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV1.7.0",
"product": {
"name": "SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)",
"product_id": "CSAFPID-0015"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV1.7.0",
"product": {
"name": "SIMATIC S7-1500 Software Controller",
"product_id": "CSAFPID-0016"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3.16",
"product": {
"name": "SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0)",
"product_id": "CSAFPID-0017",
"product_identification_helper": {
"model_numbers": [
"6ES7314-6EH04-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0)",
"product_id": "CSAFPID-0018",
"product_identification_helper": {
"model_numbers": [
"6ES7315-2EH14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0)",
"product_id": "CSAFPID-0019",
"product_identification_helper": {
"model_numbers": [
"6ES7315-2FJ14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0)",
"product_id": "CSAFPID-0020",
"product_identification_helper": {
"model_numbers": [
"6ES7315-7TJ10-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0)",
"product_id": "CSAFPID-0021",
"product_identification_helper": {
"model_numbers": [
"6ES7317-2EK14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0)",
"product_id": "CSAFPID-0022",
"product_identification_helper": {
"model_numbers": [
"6ES7317-2FK14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0)",
"product_id": "CSAFPID-0023",
"product_identification_helper": {
"model_numbers": [
"6ES7317-7TK10-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0)",
"product_id": "CSAFPID-0024",
"product_identification_helper": {
"model_numbers": [
"6ES7317-7UL10-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0)",
"product_id": "CSAFPID-0025",
"product_identification_helper": {
"model_numbers": [
"6ES7318-3EL01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0)",
"product_id": "CSAFPID-0026",
"product_identification_helper": {
"model_numbers": [
"6ES7318-3FL01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV7.0.3",
"product": {
"name": "SIMATIC S7-400 CPU 412-2 PN V7 (6ES7412-2EK07-0AB0)",
"product_id": "CSAFPID-0027",
"product_identification_helper": {
"model_numbers": [
"6ES7412-2EK07-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-400 CPU 412-2 PN V7 (6ES7412-2EK07-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV6.0.9",
"product": {
"name": "SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)",
"product_id": "CSAFPID-0028"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV6.0.7",
"product": {
"name": "SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants)",
"product_id": "CSAFPID-0029"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV8.1",
"product": {
"name": "SIMATIC S7-410 CPU family (incl. SIPLUS variants)",
"product_id": "CSAFPID-0030"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-410 CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV2010_SP3",
"product": {
"name": "SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0)",
"product_id": "CSAFPID-0031",
"product_identification_helper": {
"model_numbers": [
"6ES7671-0RC08-0YA0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV2010_SP3",
"product": {
"name": "SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0)",
"product_id": "CSAFPID-0032",
"product_identification_helper": {
"model_numbers": [
"6ES7671-1RC08-0YA0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV4.7_SP6_HF1",
"product": {
"name": "SINUMERIK 828D",
"product_id": "CSAFPID-0033"
}
}
],
"category": "product_name",
"name": "SINUMERIK 828D"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS ET 200S IM151-8 PN/DP CPU (6AG1151-8AB01-7AB0)",
"product_id": "CSAFPID-0034",
"product_identification_helper": {
"model_numbers": [
"6AG1151-8AB01-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200S IM151-8 PN/DP CPU (6AG1151-8AB01-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS ET 200S IM151-8F PN/DP CPU (6AG1151-8FB01-2AB0)",
"product_id": "CSAFPID-0035",
"product_identification_helper": {
"model_numbers": [
"6AG1151-8FB01-2AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200S IM151-8F PN/DP CPU (6AG1151-8FB01-2AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIPLUS NET CP 443-1 (6AG1443-1EX30-4XE0)",
"product_id": "CSAFPID-0036",
"product_identification_helper": {
"model_numbers": [
"6AG1443-1EX30-4XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS NET CP 443-1 (6AG1443-1EX30-4XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIPLUS NET CP 443-1 Advanced (6AG1443-1GX30-4XE0)",
"product_id": "CSAFPID-0037",
"product_identification_helper": {
"model_numbers": [
"6AG1443-1GX30-4XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS NET CP 443-1 Advanced (6AG1443-1GX30-4XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3.16",
"product": {
"name": "SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0)",
"product_id": "CSAFPID-0038",
"product_identification_helper": {
"model_numbers": [
"6AG1314-6EH04-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0)",
"product_id": "CSAFPID-0039",
"product_identification_helper": {
"model_numbers": [
"6AG1315-2EH14-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0)",
"product_id": "CSAFPID-0040",
"product_identification_helper": {
"model_numbers": [
"6AG1315-2FJ14-2AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0)",
"product_id": "CSAFPID-0041",
"product_identification_helper": {
"model_numbers": [
"6AG1317-2EK14-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0)",
"product_id": "CSAFPID-0042",
"product_identification_helper": {
"model_numbers": [
"6AG1317-2FK14-2AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV7.0.3",
"product": {
"name": "SIPLUS S7-400 CPU 414-3 PN/DP V7 (6AG1414-3EM07-7AB0)",
"product_id": "CSAFPID-0043",
"product_identification_helper": {
"model_numbers": [
"6AG1414-3EM07-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-400 CPU 414-3 PN/DP V7 (6AG1414-3EM07-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV7.0.3",
"product": {
"name": "SIPLUS S7-400 CPU 416-3 PN/DP V7 (6AG1416-3ES07-7AB0)",
"product_id": "CSAFPID-0044",
"product_identification_helper": {
"model_numbers": [
"6AG1416-3ES07-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-400 CPU 416-3 PN/DP V7 (6AG1416-3ES07-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "Softnet PROFINET IO for PC-based Windows systems",
"product_id": "CSAFPID-0045"
}
}
],
"category": "product_name",
"name": "Softnet PROFINET IO for PC-based Windows systems"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-4843",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a denial of service condition of the requesting system.\r\n\r\nThe security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. A manual restart is required to recover the system.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Use VPN for protecting network communication between cells.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045"
]
},
{
"category": "no_fix_planned",
"details": "Currently no fix is planned",
"product_ids": [
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0045"
]
},
{
"category": "vendor_fix",
"details": "Update to V3.3 or later version",
"product_ids": [
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0036",
"CSAFPID-0037"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109817938/"
},
{
"category": "vendor_fix",
"details": "Update to V7.0.3 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0027",
"CSAFPID-0043",
"CSAFPID-0044"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109752685/"
},
{
"category": "vendor_fix",
"details": "Update to V4.7 SP6 HF1 or later version\nSINUMERIK software can be obtained from your local Siemens account manager",
"product_ids": [
"CSAFPID-0033"
]
},
{
"category": "vendor_fix",
"details": "Update to V6.0.7",
"product_ids": [
"CSAFPID-0029"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109474874"
},
{
"category": "vendor_fix",
"details": "Update to V6.0.9",
"product_ids": [
"CSAFPID-0028"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109474550"
},
{
"category": "vendor_fix",
"details": "Update to V8.1 or later version",
"product_ids": [
"CSAFPID-0030"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109476571"
},
{
"category": "vendor_fix",
"details": "Update to V1.7.0 or later version",
"product_ids": [
"CSAFPID-0015"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109478459/"
},
{
"category": "vendor_fix",
"details": "Update to V1.7.0 or later version",
"product_ids": [
"CSAFPID-0016"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109478528/"
},
{
"category": "vendor_fix",
"details": "Update to V2010 SP3 or later version and apply BIOS and Microsoft Windows updates",
"product_ids": [
"CSAFPID-0031",
"CSAFPID-0032"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109765109/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"CSAFPID-0010"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47354502/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"CSAFPID-0011"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47354578/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"CSAFPID-0012"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/62612377/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"CSAFPID-0013",
"CSAFPID-0034"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47353723/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"CSAFPID-0014",
"CSAFPID-0035"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47354354/"
},
{
"category": "vendor_fix",
"details": "Update to V3.3.16 or later version",
"product_ids": [
"CSAFPID-0017",
"CSAFPID-0038"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/51466769/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"CSAFPID-0018",
"CSAFPID-0039"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40360647/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"CSAFPID-0019",
"CSAFPID-0040"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40944925/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"CSAFPID-0020"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/85049260/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"CSAFPID-0021",
"CSAFPID-0041"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40362228/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"CSAFPID-0022",
"CSAFPID-0042"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40945128/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"CSAFPID-0023"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/85059804/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"CSAFPID-0024"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/85063017/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"CSAFPID-0025"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/44442927/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"CSAFPID-0026"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/44443101/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045"
]
}
],
"title": "CVE-2018-4843"
}
]
}
SSA-592007
Vulnerability from csaf_siemens - Published: 2018-03-20 00:00 - Updated: 2023-05-09 00:00Summary
SSA-592007: Denial of Service Vulnerability in Industrial Products
Notes
Summary: Several industrial controllers are affected by a security vulnerability that could allow an attacker to cause a denial of service condition via PROFINET DCP network packets under certain circumstances. Precondition for this scenario is a direct OSI Layer 2 access to the affected products. PROFIBUS interfaces are not affected.
Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.
General Recommendations: As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download:
https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources: For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use: Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter "License Terms"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter "Terms of Use"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.
CWE-20
- Improper Input Validation
Affected products
Known affected
45 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMATIC S7-400 CPU 414-3 PN/DP V7 (6ES7414-3EM07-0AB0)
Siemens / SIMATIC S7-400 CPU 414-3 PN/DP V7 (6ES7414-3EM07-0AB0)
|
6ES7414-3EM07-0AB0
|
vers:all/<V7.0.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-400 CPU 414F-3 PN/DP V7 (6ES7414-3FM07-0AB0)
Siemens / SIMATIC S7-400 CPU 414F-3 PN/DP V7 (6ES7414-3FM07-0AB0)
|
6ES7414-3FM07-0AB0
|
vers:all/<V7.0.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-400 CPU 416-3 PN/DP V7 (6ES7416-3ES07-0AB0)
Siemens / SIMATIC S7-400 CPU 416-3 PN/DP V7 (6ES7416-3ES07-0AB0)
|
6ES7416-3ES07-0AB0
|
vers:all/<V7.0.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-400 CPU 416F-3 PN/DP V7 (6ES7416-3FS07-0AB0)
Siemens / SIMATIC S7-400 CPU 416F-3 PN/DP V7 (6ES7416-3FS07-0AB0)
|
6ES7416-3FS07-0AB0
|
vers:all/<V7.0.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC CP 343-1 (incl. SIPLUS variants)
Siemens / SIMATIC CP 343-1 (incl. SIPLUS variants)
|
vers:all/* |
Mitigation
No Fix Planned
|
|
|
SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)
Siemens / SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)
|
vers:all/* |
Mitigation
No Fix Planned
|
|
|
SIMATIC CP 443-1 (6GK7443-1EX30-0XE0)
Siemens / SIMATIC CP 443-1 (6GK7443-1EX30-0XE0)
|
6GK7443-1EX30-0XE0
|
vers:all/<V3.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC CP 443-1 (6GK7443-1EX30-0XE1)
Siemens / SIMATIC CP 443-1 (6GK7443-1EX30-0XE1)
|
6GK7443-1EX30-0XE1
|
vers:all/<V3.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC CP 443-1 Advanced (6GK7443-1GX30-0XE0)
Siemens / SIMATIC CP 443-1 Advanced (6GK7443-1GX30-0XE0)
|
6GK7443-1GX30-0XE0
|
vers:all/<V3.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200pro IM154-8 PN/DP CPU (6ES7154-8AB01-0AB0)
Siemens / SIMATIC ET 200pro IM154-8 PN/DP CPU (6ES7154-8AB01-0AB0)
|
6ES7154-8AB01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200pro IM154-8F PN/DP CPU (6ES7154-8FB01-0AB0)
Siemens / SIMATIC ET 200pro IM154-8F PN/DP CPU (6ES7154-8FB01-0AB0)
|
6ES7154-8FB01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200pro IM154-8FX PN/DP CPU (6ES7154-8FX00-0AB0)
Siemens / SIMATIC ET 200pro IM154-8FX PN/DP CPU (6ES7154-8FX00-0AB0)
|
6ES7154-8FX00-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200S IM151-8 PN/DP CPU (6ES7151-8AB01-0AB0)
Siemens / SIMATIC ET 200S IM151-8 PN/DP CPU (6ES7151-8AB01-0AB0)
|
6ES7151-8AB01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200S IM151-8F PN/DP CPU (6ES7151-8FB01-0AB0)
Siemens / SIMATIC ET 200S IM151-8F PN/DP CPU (6ES7151-8FB01-0AB0)
|
6ES7151-8FB01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)
Siemens / SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)
|
vers:all/<V1.7.0 |
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC S7-1500 Software Controller
Siemens / SIMATIC S7-1500 Software Controller
|
vers:all/<V1.7.0 |
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0)
Siemens / SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0)
|
6ES7314-6EH04-0AB0
|
vers:all/<V3.3.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0)
Siemens / SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0)
|
6ES7315-2EH14-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0)
Siemens / SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0)
|
6ES7315-2FJ14-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0)
Siemens / SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0)
|
6ES7315-7TJ10-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0)
Siemens / SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0)
|
6ES7317-2EK14-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0)
Siemens / SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0)
|
6ES7317-2FK14-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0)
Siemens / SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0)
|
6ES7317-7TK10-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0)
Siemens / SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0)
|
6ES7317-7UL10-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0)
Siemens / SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0)
|
6ES7318-3EL01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0)
Siemens / SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0)
|
6ES7318-3FL01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-400 CPU 412-2 PN V7 (6ES7412-2EK07-0AB0)
Siemens / SIMATIC S7-400 CPU 412-2 PN V7 (6ES7412-2EK07-0AB0)
|
6ES7412-2EK07-0AB0
|
vers:all/<V7.0.3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)
Siemens / SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)
|
vers:all/<V6.0.9 |
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants)
Siemens / SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants)
|
vers:all/<V6.0.7 |
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC S7-410 CPU family (incl. SIPLUS variants)
Siemens / SIMATIC S7-410 CPU family (incl. SIPLUS variants)
|
vers:all/<V8.1 |
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0)
Siemens / SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0)
|
6ES7671-0RC08-0YA0
|
All versions < V2010 SP3 |
Mitigation
Vendor Fix
fix
|
|
SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0)
Siemens / SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0)
|
6ES7671-1RC08-0YA0
|
All versions < V2010 SP3 |
Mitigation
Vendor Fix
fix
|
|
SINUMERIK 828D
Siemens / SINUMERIK 828D
|
All versions < V4.7 SP6 HF1 |
Mitigation
Vendor Fix
|
|
|
SIPLUS ET 200S IM151-8 PN/DP CPU (6AG1151-8AB01-7AB0)
Siemens / SIPLUS ET 200S IM151-8 PN/DP CPU (6AG1151-8AB01-7AB0)
|
6AG1151-8AB01-7AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS ET 200S IM151-8F PN/DP CPU (6AG1151-8FB01-2AB0)
Siemens / SIPLUS ET 200S IM151-8F PN/DP CPU (6AG1151-8FB01-2AB0)
|
6AG1151-8FB01-2AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS NET CP 443-1 (6AG1443-1EX30-4XE0)
Siemens / SIPLUS NET CP 443-1 (6AG1443-1EX30-4XE0)
|
6AG1443-1EX30-4XE0
|
vers:all/<V3.3 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS NET CP 443-1 Advanced (6AG1443-1GX30-4XE0)
Siemens / SIPLUS NET CP 443-1 Advanced (6AG1443-1GX30-4XE0)
|
6AG1443-1GX30-4XE0
|
vers:all/<V3.3 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0)
Siemens / SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0)
|
6AG1314-6EH04-7AB0
|
vers:all/<V3.3.16 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0)
Siemens / SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0)
|
6AG1315-2EH14-7AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0)
Siemens / SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0)
|
6AG1315-2FJ14-2AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0)
Siemens / SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0)
|
6AG1317-2EK14-7AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0)
Siemens / SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0)
|
6AG1317-2FK14-2AB0
|
vers:all/<V3.2.16 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-400 CPU 414-3 PN/DP V7 (6AG1414-3EM07-7AB0)
Siemens / SIPLUS S7-400 CPU 414-3 PN/DP V7 (6AG1414-3EM07-7AB0)
|
6AG1414-3EM07-7AB0
|
vers:all/<V7.0.3 |
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-400 CPU 416-3 PN/DP V7 (6AG1416-3ES07-7AB0)
Siemens / SIPLUS S7-400 CPU 416-3 PN/DP V7 (6AG1416-3ES07-7AB0)
|
6AG1416-3ES07-7AB0
|
vers:all/<V7.0.3 |
Mitigation
Vendor Fix
fix
|
|
Softnet PROFINET IO for PC-based Windows systems
Siemens / Softnet PROFINET IO for PC-based Windows systems
|
vers:all/* |
Mitigation
No Fix Planned
|
References
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)",
"tlp": {
"label": "WHITE"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Several industrial controllers are affected by a security vulnerability that could allow an attacker to cause a denial of service condition via PROFINET DCP network packets under certain circumstances. Precondition for this scenario is a direct OSI Layer 2 access to the affected products. PROFIBUS interfaces are not affected. \n\nSiemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "productcert@siemens.com",
"name": "Siemens ProductCERT",
"namespace": "https://www.siemens.com"
},
"references": [
{
"category": "self",
"summary": "SSA-592007: Denial of Service Vulnerability in Industrial Products - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-592007.html"
},
{
"category": "self",
"summary": "SSA-592007: Denial of Service Vulnerability in Industrial Products - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-592007.json"
},
{
"category": "self",
"summary": "SSA-592007: Denial of Service Vulnerability in Industrial Products - PDF Version",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf"
},
{
"category": "self",
"summary": "SSA-592007: Denial of Service Vulnerability in Industrial Products - TXT Version",
"url": "https://cert-portal.siemens.com/productcert/txt/ssa-592007.txt"
}
],
"title": "SSA-592007: Denial of Service Vulnerability in Industrial Products",
"tracking": {
"current_release_date": "2023-05-09T00:00:00Z",
"generator": {
"engine": {
"name": "Siemens ProductCERT CSAF Generator",
"version": "1"
}
},
"id": "SSA-592007",
"initial_release_date": "2018-03-20T00:00:00Z",
"revision_history": [
{
"date": "2018-03-20T00:00:00Z",
"legacy_version": "1.0",
"number": "1",
"summary": "Publication Date"
},
{
"date": "2018-03-27T00:00:00Z",
"legacy_version": "1.1",
"number": "2",
"summary": "Removed SINUMERIK 840D sl from affected products"
},
{
"date": "2018-10-09T00:00:00Z",
"legacy_version": "1.2",
"number": "3",
"summary": "Added update for SINUMERIK 828D"
},
{
"date": "2019-01-08T00:00:00Z",
"legacy_version": "1.3",
"number": "4",
"summary": "Added update for SIMATIC S7-300 incl. F and T"
},
{
"date": "2019-05-14T00:00:00Z",
"legacy_version": "1.4",
"number": "5",
"summary": "Added update for S7-400 H V6"
},
{
"date": "2019-10-08T00:00:00Z",
"legacy_version": "1.5",
"number": "6",
"summary": "Renamed SIMATIC WinAC RTX 2010 incl. F to SIMATIC WinAC RTX (F) 2010 and added update information for SIMATIC WinAC RTX (F) 2010"
},
{
"date": "2020-02-10T00:00:00Z",
"legacy_version": "1.6",
"number": "7",
"summary": "SIPLUS devices now explicitly mentioned in the list of affected products"
},
{
"date": "2022-06-14T00:00:00Z",
"legacy_version": "1.7",
"number": "8",
"summary": "No fix planned for SIMATIC CP 343-1 and SIMATIC CP 443-1 Advanced"
},
{
"date": "2022-08-09T00:00:00Z",
"legacy_version": "1.8",
"number": "9",
"summary": "Clarify no fix planned for SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)"
},
{
"date": "2023-01-10T00:00:00Z",
"legacy_version": "1.9",
"number": "10",
"summary": "SIMATIC S7-300 CPU family expanded with product specific designations, patch links and MLFBs; No fix planned for SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)"
},
{
"date": "2023-04-11T00:00:00Z",
"legacy_version": "2.0",
"number": "11",
"summary": "Added fix for SIMATIC CP 443-1 and CP 443-1 Advanced"
},
{
"date": "2023-05-09T00:00:00Z",
"legacy_version": "2.1",
"number": "12",
"summary": "Added fix for SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants); expanded SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants) to individual products and MLFBs; reviewed CVSS score and description of CVE-2018-4843"
}
],
"status": "interim",
"version": "12"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV7.0.3",
"product": {
"name": " SIMATIC S7-400 CPU 414-3 PN/DP V7 (6ES7414-3EM07-0AB0)",
"product_id": "1",
"product_identification_helper": {
"model_numbers": [
"6ES7414-3EM07-0AB0"
]
}
}
}
],
"category": "product_name",
"name": " SIMATIC S7-400 CPU 414-3 PN/DP V7 (6ES7414-3EM07-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV7.0.3",
"product": {
"name": " SIMATIC S7-400 CPU 414F-3 PN/DP V7 (6ES7414-3FM07-0AB0)",
"product_id": "2",
"product_identification_helper": {
"model_numbers": [
"6ES7414-3FM07-0AB0"
]
}
}
}
],
"category": "product_name",
"name": " SIMATIC S7-400 CPU 414F-3 PN/DP V7 (6ES7414-3FM07-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV7.0.3",
"product": {
"name": " SIMATIC S7-400 CPU 416-3 PN/DP V7 (6ES7416-3ES07-0AB0)",
"product_id": "3",
"product_identification_helper": {
"model_numbers": [
"6ES7416-3ES07-0AB0"
]
}
}
}
],
"category": "product_name",
"name": " SIMATIC S7-400 CPU 416-3 PN/DP V7 (6ES7416-3ES07-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV7.0.3",
"product": {
"name": " SIMATIC S7-400 CPU 416F-3 PN/DP V7 (6ES7416-3FS07-0AB0)",
"product_id": "4",
"product_identification_helper": {
"model_numbers": [
"6ES7416-3FS07-0AB0"
]
}
}
}
],
"category": "product_name",
"name": " SIMATIC S7-400 CPU 416F-3 PN/DP V7 (6ES7416-3FS07-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC CP 343-1 (incl. SIPLUS variants)",
"product_id": "5"
}
}
],
"category": "product_name",
"name": "SIMATIC CP 343-1 (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)",
"product_id": "6"
}
}
],
"category": "product_name",
"name": "SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIMATIC CP 443-1 (6GK7443-1EX30-0XE0)",
"product_id": "7",
"product_identification_helper": {
"model_numbers": [
"6GK7443-1EX30-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 443-1 (6GK7443-1EX30-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIMATIC CP 443-1 (6GK7443-1EX30-0XE1)",
"product_id": "8",
"product_identification_helper": {
"model_numbers": [
"6GK7443-1EX30-0XE1"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 443-1 (6GK7443-1EX30-0XE1)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIMATIC CP 443-1 Advanced (6GK7443-1GX30-0XE0)",
"product_id": "9",
"product_identification_helper": {
"model_numbers": [
"6GK7443-1GX30-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 443-1 Advanced (6GK7443-1GX30-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200pro IM154-8 PN/DP CPU (6ES7154-8AB01-0AB0)",
"product_id": "10",
"product_identification_helper": {
"model_numbers": [
"6ES7154-8AB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200pro IM154-8 PN/DP CPU (6ES7154-8AB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200pro IM154-8F PN/DP CPU (6ES7154-8FB01-0AB0)",
"product_id": "11",
"product_identification_helper": {
"model_numbers": [
"6ES7154-8FB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200pro IM154-8F PN/DP CPU (6ES7154-8FB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200pro IM154-8FX PN/DP CPU (6ES7154-8FX00-0AB0)",
"product_id": "12",
"product_identification_helper": {
"model_numbers": [
"6ES7154-8FX00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200pro IM154-8FX PN/DP CPU (6ES7154-8FX00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200S IM151-8 PN/DP CPU (6ES7151-8AB01-0AB0)",
"product_id": "13",
"product_identification_helper": {
"model_numbers": [
"6ES7151-8AB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200S IM151-8 PN/DP CPU (6ES7151-8AB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200S IM151-8F PN/DP CPU (6ES7151-8FB01-0AB0)",
"product_id": "14",
"product_identification_helper": {
"model_numbers": [
"6ES7151-8FB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200S IM151-8F PN/DP CPU (6ES7151-8FB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV1.7.0",
"product": {
"name": "SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)",
"product_id": "15"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV1.7.0",
"product": {
"name": "SIMATIC S7-1500 Software Controller",
"product_id": "16"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3.16",
"product": {
"name": "SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0)",
"product_id": "17",
"product_identification_helper": {
"model_numbers": [
"6ES7314-6EH04-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0)",
"product_id": "18",
"product_identification_helper": {
"model_numbers": [
"6ES7315-2EH14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0)",
"product_id": "19",
"product_identification_helper": {
"model_numbers": [
"6ES7315-2FJ14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0)",
"product_id": "20",
"product_identification_helper": {
"model_numbers": [
"6ES7315-7TJ10-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0)",
"product_id": "21",
"product_identification_helper": {
"model_numbers": [
"6ES7317-2EK14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0)",
"product_id": "22",
"product_identification_helper": {
"model_numbers": [
"6ES7317-2FK14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0)",
"product_id": "23",
"product_identification_helper": {
"model_numbers": [
"6ES7317-7TK10-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0)",
"product_id": "24",
"product_identification_helper": {
"model_numbers": [
"6ES7317-7UL10-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0)",
"product_id": "25",
"product_identification_helper": {
"model_numbers": [
"6ES7318-3EL01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0)",
"product_id": "26",
"product_identification_helper": {
"model_numbers": [
"6ES7318-3FL01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV7.0.3",
"product": {
"name": "SIMATIC S7-400 CPU 412-2 PN V7 (6ES7412-2EK07-0AB0)",
"product_id": "27",
"product_identification_helper": {
"model_numbers": [
"6ES7412-2EK07-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-400 CPU 412-2 PN V7 (6ES7412-2EK07-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV6.0.9",
"product": {
"name": "SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)",
"product_id": "28"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV6.0.7",
"product": {
"name": "SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants)",
"product_id": "29"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV8.1",
"product": {
"name": "SIMATIC S7-410 CPU family (incl. SIPLUS variants)",
"product_id": "30"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-410 CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V2010 SP3",
"product": {
"name": "SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0)",
"product_id": "31",
"product_identification_helper": {
"model_numbers": [
"6ES7671-0RC08-0YA0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V2010 SP3",
"product": {
"name": "SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0)",
"product_id": "32",
"product_identification_helper": {
"model_numbers": [
"6ES7671-1RC08-0YA0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V4.7 SP6 HF1",
"product": {
"name": "SINUMERIK 828D",
"product_id": "33"
}
}
],
"category": "product_name",
"name": "SINUMERIK 828D"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS ET 200S IM151-8 PN/DP CPU (6AG1151-8AB01-7AB0)",
"product_id": "34",
"product_identification_helper": {
"model_numbers": [
"6AG1151-8AB01-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200S IM151-8 PN/DP CPU (6AG1151-8AB01-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS ET 200S IM151-8F PN/DP CPU (6AG1151-8FB01-2AB0)",
"product_id": "35",
"product_identification_helper": {
"model_numbers": [
"6AG1151-8FB01-2AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200S IM151-8F PN/DP CPU (6AG1151-8FB01-2AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIPLUS NET CP 443-1 (6AG1443-1EX30-4XE0)",
"product_id": "36",
"product_identification_helper": {
"model_numbers": [
"6AG1443-1EX30-4XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS NET CP 443-1 (6AG1443-1EX30-4XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIPLUS NET CP 443-1 Advanced (6AG1443-1GX30-4XE0)",
"product_id": "37",
"product_identification_helper": {
"model_numbers": [
"6AG1443-1GX30-4XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS NET CP 443-1 Advanced (6AG1443-1GX30-4XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3.16",
"product": {
"name": "SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0)",
"product_id": "38",
"product_identification_helper": {
"model_numbers": [
"6AG1314-6EH04-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0)",
"product_id": "39",
"product_identification_helper": {
"model_numbers": [
"6AG1315-2EH14-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0)",
"product_id": "40",
"product_identification_helper": {
"model_numbers": [
"6AG1315-2FJ14-2AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0)",
"product_id": "41",
"product_identification_helper": {
"model_numbers": [
"6AG1317-2EK14-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0)",
"product_id": "42",
"product_identification_helper": {
"model_numbers": [
"6AG1317-2FK14-2AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV7.0.3",
"product": {
"name": "SIPLUS S7-400 CPU 414-3 PN/DP V7 (6AG1414-3EM07-7AB0)",
"product_id": "43",
"product_identification_helper": {
"model_numbers": [
"6AG1414-3EM07-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-400 CPU 414-3 PN/DP V7 (6AG1414-3EM07-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV7.0.3",
"product": {
"name": "SIPLUS S7-400 CPU 416-3 PN/DP V7 (6AG1416-3ES07-7AB0)",
"product_id": "44",
"product_identification_helper": {
"model_numbers": [
"6AG1416-3ES07-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-400 CPU 416-3 PN/DP V7 (6AG1416-3ES07-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "Softnet PROFINET IO for PC-based Windows systems",
"product_id": "45"
}
}
],
"category": "product_name",
"name": "Softnet PROFINET IO for PC-based Windows systems"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-4843",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a denial of service condition of the requesting system.\r\n\r\nThe security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. A manual restart is required to recover the system.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"24",
"25",
"26",
"27",
"28",
"29",
"30",
"31",
"32",
"33",
"34",
"35",
"36",
"37",
"38",
"39",
"40",
"41",
"42",
"43",
"44",
"45"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Use VPN for protecting network communication between cells.",
"product_ids": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"24",
"25",
"26",
"27",
"28",
"29",
"30",
"31",
"32",
"33",
"34",
"35",
"36",
"37",
"38",
"39",
"40",
"41",
"42",
"43",
"44",
"45"
]
},
{
"category": "no_fix_planned",
"details": "Currently no fix is planned",
"product_ids": [
"5",
"6",
"45"
]
},
{
"category": "vendor_fix",
"details": "Update to V3.3 or later version",
"product_ids": [
"7",
"8",
"9",
"36",
"37"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109817938/"
},
{
"category": "vendor_fix",
"details": "Update to V7.0.3 or later version",
"product_ids": [
"1",
"2",
"3",
"4",
"27",
"43",
"44"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109752685/"
},
{
"category": "vendor_fix",
"details": "Update to V4.7 SP6 HF1 or later version\nSINUMERIK software can be obtained from your local Siemens account manager",
"product_ids": [
"33"
]
},
{
"category": "vendor_fix",
"details": "Update to V6.0.7",
"product_ids": [
"29"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109474874"
},
{
"category": "vendor_fix",
"details": "Update to V6.0.9",
"product_ids": [
"28"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109474550"
},
{
"category": "vendor_fix",
"details": "Update to V8.1 or later version",
"product_ids": [
"30"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109476571"
},
{
"category": "vendor_fix",
"details": "Update to V1.7.0 or later version",
"product_ids": [
"15"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109478459/"
},
{
"category": "vendor_fix",
"details": "Update to V1.7.0 or later version",
"product_ids": [
"16"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109478528/"
},
{
"category": "vendor_fix",
"details": "Update to V2010 SP3 or later version and apply BIOS and Microsoft Windows updates",
"product_ids": [
"31",
"32"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109765109/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"10"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47354502/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"11"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47354578/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"12"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/62612377/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"13",
"34"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47353723/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"14",
"35"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47354354/"
},
{
"category": "vendor_fix",
"details": "Update to V3.3.16 or later version",
"product_ids": [
"17",
"38"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/51466769/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"18",
"39"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40360647/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"19",
"40"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40944925/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"20"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/85049260/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"21",
"41"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40362228/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"22",
"42"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40945128/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"23"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/85059804/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"24"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/85063017/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"25"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/44442927/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"26"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/44443101/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"24",
"25",
"26",
"27",
"28",
"29",
"30",
"31",
"32",
"33",
"34",
"35",
"36",
"37",
"38",
"39",
"40",
"41",
"42",
"43",
"44",
"45"
]
}
],
"title": "CVE-2018-4843"
}
]
}
VAR-201803-2159
Vulnerability from variot - Updated: 2024-11-23 22:55A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions < V7.0.3), SIMATIC CP 343-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 (All versions < V3.3), SIMATIC CP 443-1 (All versions < V3.3), SIMATIC CP 443-1 Advanced (All versions < V3.3), SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200pro IM154-8FX PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200S IM151-8 PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200S IM151-8F PN/DP CPU (All versions < V3.2.16), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V1.7.0), SIMATIC S7-1500 Software Controller (All versions < V1.7.0), SIMATIC S7-300 CPU 314C-2 PN/DP (All versions < V3.3.16), SIMATIC S7-300 CPU 315-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 315F-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 315T-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317F-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317T-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317TF-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 319-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 319F-3 PN/DP (All versions < V3.2.16), SIMATIC S7-400 CPU 412-2 PN V7 (All versions < V7.0.3), SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) (All versions < V6.0.9), SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants) (All versions < V6.0.7), SIMATIC S7-410 CPU family (incl. SIPLUS variants) (All versions < V8.1), SIMATIC WinAC RTX 2010 (All versions < V2010 SP3), SIMATIC WinAC RTX F 2010 (All versions < V2010 SP3), SINUMERIK 828D (All versions < V4.7 SP6 HF1), SIPLUS ET 200S IM151-8 PN/DP CPU (All versions < V3.2.16), SIPLUS ET 200S IM151-8F PN/DP CPU (All versions < V3.2.16), SIPLUS NET CP 443-1 (All versions < V3.3), SIPLUS NET CP 443-1 Advanced (All versions < V3.3), SIPLUS S7-300 CPU 314C-2 PN/DP (All versions < V3.3.16), SIPLUS S7-300 CPU 315-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 315F-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 317-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 317F-2 PN/DP (All versions < V3.2.16), SIPLUS S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIPLUS S7-400 CPU 416-3 PN/DP V7 (All versions < V7.0.3), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a denial of service condition of the requesting system.
The security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. A manual restart is required to recover the system. plural Siemens The product contains an input validation vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. Siemens SIMATIC CP 343-1 Advanced is an Ethernet communication module for supporting PROFINET, a new generation of automation bus standard based on Industrial Ethernet technology. SIMATIC S7-1500 is a programmable logic controller.
A denial of service vulnerability exists in several Siemens products. Siemens SIMATIC/SINUMERIK/PROFINET IO are prone to a denial-of-service vulnerability. Successful exploitation requires no user interaction or privileges and impacts the availability of core functionality of the affected device. At the time of advisory publication no public exploitation of this security vulnerability is known. Siemens provides mitigations to resolve the security issue. PROFIBUS interfaces are not affected. F; SINUMERIK 828D; SINUMERIK 840D sl; Softnet PROFINET IO for PC-based Windows systems
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201803-2159",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "simatic s7-410",
"scope": "lt",
"trust": 1.6,
"vendor": "siemens",
"version": "8.1"
},
{
"model": "simatic s7-400 pn\\/dp v7",
"scope": "eq",
"trust": 1.6,
"vendor": "siemens",
"version": null
},
{
"model": "simatic winac rtx 2010",
"scope": "eq",
"trust": 1.6,
"vendor": "siemens",
"version": null
},
{
"model": "simatic cp 343-1",
"scope": "eq",
"trust": 1.6,
"vendor": "siemens",
"version": null
},
{
"model": "sinumerik 828d",
"scope": "eq",
"trust": 1.6,
"vendor": "siemens",
"version": null
},
{
"model": "simatic cp 443-1",
"scope": "eq",
"trust": 1.6,
"vendor": "siemens",
"version": null
},
{
"model": "softnet pn-io linux",
"scope": "eq",
"trust": 1.6,
"vendor": "siemens",
"version": null
},
{
"model": "simatic s7-300",
"scope": "eq",
"trust": 1.6,
"vendor": "siemens",
"version": null
},
{
"model": "simatic s7-400 h v6",
"scope": "eq",
"trust": 1.6,
"vendor": "siemens",
"version": null
},
{
"model": "sinumerik 828d",
"scope": null,
"trust": 1.4,
"vendor": "siemens",
"version": null
},
{
"model": "simatic s7-1500",
"scope": "lt",
"trust": 1.0,
"vendor": "siemens",
"version": "1.7.0"
},
{
"model": "simatic s7-400 pn\\/dp v6",
"scope": "lt",
"trust": 1.0,
"vendor": "siemens",
"version": "6.0.7"
},
{
"model": "simatic cp 343-1",
"scope": null,
"trust": 0.8,
"vendor": "siemens",
"version": null
},
{
"model": "simatic cp 443-1",
"scope": null,
"trust": 0.8,
"vendor": "siemens",
"version": null
},
{
"model": "simatic s7-1500",
"scope": null,
"trust": 0.8,
"vendor": "siemens",
"version": null
},
{
"model": "simatic s7-300",
"scope": null,
"trust": 0.8,
"vendor": "siemens",
"version": null
},
{
"model": "simatic s7-400 pn/dp v6",
"scope": null,
"trust": 0.8,
"vendor": "siemens",
"version": null
},
{
"model": "simatic s7-400 pn/dp v7",
"scope": null,
"trust": 0.8,
"vendor": "siemens",
"version": null
},
{
"model": "simatic s7-400h v6",
"scope": null,
"trust": 0.8,
"vendor": "siemens",
"version": null
},
{
"model": "simatic s7-410",
"scope": null,
"trust": 0.8,
"vendor": "siemens",
"version": null
},
{
"model": "simatic winac rtx 2010",
"scope": null,
"trust": 0.8,
"vendor": "siemens",
"version": null
},
{
"model": "softnet profinet io",
"scope": "eq",
"trust": 0.8,
"vendor": "siemens",
"version": "for pc-based windows systems firmware"
},
{
"model": "simatic cp advanced",
"scope": "eq",
"trust": 0.6,
"vendor": "siemens",
"version": "343-1"
},
{
"model": "simatic cp standard",
"scope": "eq",
"trust": 0.6,
"vendor": "siemens",
"version": "343-1"
},
{
"model": "simatic cp standard",
"scope": "eq",
"trust": 0.6,
"vendor": "siemens",
"version": "443-1"
},
{
"model": "simatic s7-1500 software controller incl. f",
"scope": "lt",
"trust": 0.6,
"vendor": "siemens",
"version": "1.7.0"
},
{
"model": "simatic s7-1500 incl. f",
"scope": "lt",
"trust": 0.6,
"vendor": "siemens",
"version": "1.7.0"
},
{
"model": "simatic s7-300 incl. f and t",
"scope": null,
"trust": 0.6,
"vendor": "siemens",
"version": null
},
{
"model": "simatic s7-400 h",
"scope": "eq",
"trust": 0.6,
"vendor": "siemens",
"version": "v6"
},
{
"model": "simatic s7-400 pn/dp incl. f",
"scope": "eq",
"trust": 0.6,
"vendor": "siemens",
"version": "v6\u003c6.0.7"
},
{
"model": "simatic s7-400 pn/dp incl. f",
"scope": "eq",
"trust": 0.6,
"vendor": "siemens",
"version": "v7"
},
{
"model": "simatic winac rtx incl. f",
"scope": "eq",
"trust": 0.6,
"vendor": "siemens",
"version": "2010"
},
{
"model": "sinumerik 840d sl",
"scope": null,
"trust": 0.6,
"vendor": "siemens",
"version": null
},
{
"model": "softnet profinet io for pc-based windows systems",
"scope": null,
"trust": 0.6,
"vendor": "siemens",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.4,
"vendor": "simatic cp 343 1",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.4,
"vendor": "simatic cp 443 1",
"version": null
},
{
"model": "softnet profinet io",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "sinumerik 840d sl",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "sinumerik 840d",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "sinumerik 828d",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "simatic winac rtx",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "20100"
},
{
"model": "simatic s7-410",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "8"
},
{
"model": "simatic s7-400 pn/dp",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "7"
},
{
"model": "simatic s7-400 pn/dp",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "6"
},
{
"model": "simatic s7-400 h",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "v60"
},
{
"model": "simatic s7-300",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "simatic s7-1500 software controller",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "simatic s7-1500",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "0"
},
{
"model": "simatic cp standard",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "443-10"
},
{
"model": "simatic cp advanced",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "443-10"
},
{
"model": "simatic cp standard",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "343-10"
},
{
"model": "simatic cp advanced",
"scope": "eq",
"trust": 0.3,
"vendor": "siemens",
"version": "343-10"
},
{
"model": "simatic s7-410",
"scope": "ne",
"trust": 0.3,
"vendor": "siemens",
"version": "8.1"
},
{
"model": "simatic s7-400 pn/dp",
"scope": "ne",
"trust": 0.3,
"vendor": "siemens",
"version": "6.0.7"
},
{
"model": "simatic s7-1500 software controller",
"scope": "ne",
"trust": 0.3,
"vendor": "siemens",
"version": "1.7"
},
{
"model": "simatic s7-1500",
"scope": "ne",
"trust": 0.3,
"vendor": "siemens",
"version": "1.7"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "simatic s7 410",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "simatic winac rtx 2010",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "sinumerik 828d",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "softnet pn io linux",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "simatic s7 1500",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "simatic s7 300",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "simatic s7 400 h v6",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "simatic s7 400 pn dp v6",
"version": "*"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "simatic s7 400 pn dp v7",
"version": null
}
],
"sources": [
{
"db": "IVD",
"id": "e2e91df0-39ab-11e9-bef8-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-06025"
},
{
"db": "BID",
"id": "103465"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-003479"
},
{
"db": "CNNVD",
"id": "CNNVD-201803-723"
},
{
"db": "NVD",
"id": "CVE-2018-4843"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/o:siemens:simatic_cp_343-1_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:siemens:simatic_cp_443-1_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:siemens:simatic_s7-1500_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:siemens:simatic_s7-300_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:siemens:simatic_s7-400_pn%2Fdp_v6_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:siemens:simatic_s7-400pn%2Fdp_v7_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:siemens:simatic_s7-400h_v6_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:siemens:simatic_s7-410_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:siemens:simatic_winac_rtx_2010_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:siemens:sinumerik_828d_firmware",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:siemens:softnet_profinet_io_firmware",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-003479"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Siemens ProductCERT",
"sources": [
{
"db": "BID",
"id": "103465"
}
],
"trust": 0.3
},
"cve": "CVE-2018-4843",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 6.1,
"confidentialityImpact": "NONE",
"exploitabilityScore": 6.5,
"id": "CVE-2018-4843",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 1.8,
"vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "HIGH",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "COMPLETE",
"baseScore": 4.6,
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.2,
"id": "CNVD-2018-06025",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:A/AC:H/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "HIGH",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "COMPLETE",
"baseScore": 4.6,
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.2,
"id": "e2e91df0-39ab-11e9-bef8-000c29342cb1",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.2,
"vectorString": "AV:A/AC:H/Au:N/C:N/I:N/A:C",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 6.1,
"confidentialityImpact": "NONE",
"exploitabilityScore": 6.5,
"id": "VHN-134874",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:A/AC:L/AU:N/C:N/I:N/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "ADJACENT",
"author": "productcert@siemens.com",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"exploitabilityScore": 2.8,
"id": "CVE-2018-4843",
"impactScore": 3.6,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
{
"attackComplexity": "Low",
"attackVector": "Adjacent Network",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 6.5,
"baseSeverity": "Medium",
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "CVE-2018-4843",
"impactScore": null,
"integrityImpact": "None",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2018-4843",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "productcert@siemens.com",
"id": "CVE-2018-4843",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "NVD",
"id": "CVE-2018-4843",
"trust": 0.8,
"value": "Medium"
},
{
"author": "CNVD",
"id": "CNVD-2018-06025",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201803-723",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "IVD",
"id": "e2e91df0-39ab-11e9-bef8-000c29342cb1",
"trust": 0.2,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-134874",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "e2e91df0-39ab-11e9-bef8-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-06025"
},
{
"db": "VULHUB",
"id": "VHN-134874"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-003479"
},
{
"db": "CNNVD",
"id": "CNNVD-201803-723"
},
{
"db": "NVD",
"id": "CVE-2018-4843"
},
{
"db": "NVD",
"id": "CVE-2018-4843"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions \u003c V7.0.3), SIMATIC CP 343-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 (All versions \u003c V3.3), SIMATIC CP 443-1 (All versions \u003c V3.3), SIMATIC CP 443-1 Advanced (All versions \u003c V3.3), SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200pro IM154-8FX PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200S IM151-8 PN/DP CPU (All versions \u003c V3.2.16), SIMATIC ET 200S IM151-8F PN/DP CPU (All versions \u003c V3.2.16), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions \u003c V1.7.0), SIMATIC S7-1500 Software Controller (All versions \u003c V1.7.0), SIMATIC S7-300 CPU 314C-2 PN/DP (All versions \u003c V3.3.16), SIMATIC S7-300 CPU 315-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 315F-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 315T-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317F-2 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317T-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 317TF-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 319-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-300 CPU 319F-3 PN/DP (All versions \u003c V3.2.16), SIMATIC S7-400 CPU 412-2 PN V7 (All versions \u003c V7.0.3), SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) (All versions \u003c V6.0.9), SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants) (All versions \u003c V6.0.7), SIMATIC S7-410 CPU family (incl. SIPLUS variants) (All versions \u003c V8.1), SIMATIC WinAC RTX 2010 (All versions \u003c V2010 SP3), SIMATIC WinAC RTX F 2010 (All versions \u003c V2010 SP3), SINUMERIK 828D (All versions \u003c V4.7 SP6 HF1), SIPLUS ET 200S IM151-8 PN/DP CPU (All versions \u003c V3.2.16), SIPLUS ET 200S IM151-8F PN/DP CPU (All versions \u003c V3.2.16), SIPLUS NET CP 443-1 (All versions \u003c V3.3), SIPLUS NET CP 443-1 Advanced (All versions \u003c V3.3), SIPLUS S7-300 CPU 314C-2 PN/DP (All versions \u003c V3.3.16), SIPLUS S7-300 CPU 315-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 315F-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 317-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-300 CPU 317F-2 PN/DP (All versions \u003c V3.2.16), SIPLUS S7-400 CPU 414-3 PN/DP V7 (All versions \u003c V7.0.3), SIPLUS S7-400 CPU 416-3 PN/DP V7 (All versions \u003c V7.0.3), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a denial of service condition of the requesting system. \r\n\r\nThe security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. A manual restart is required to recover the system. plural Siemens The product contains an input validation vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. Siemens SIMATIC CP 343-1 Advanced is an Ethernet communication module for supporting PROFINET, a new generation of automation bus standard based on Industrial Ethernet technology. SIMATIC S7-1500 is a programmable logic controller. \n\nA denial of service vulnerability exists in several Siemens products. Siemens SIMATIC/SINUMERIK/PROFINET IO are prone to a denial-of-service vulnerability. Successful exploitation requires no user interaction or privileges and impacts the availability of core functionality of the affected device. At the time of advisory publication no public exploitation of this security vulnerability is known. Siemens provides mitigations to resolve the security issue. PROFIBUS interfaces are not affected. F; SINUMERIK 828D; SINUMERIK 840D sl; Softnet PROFINET IO for PC-based Windows systems",
"sources": [
{
"db": "NVD",
"id": "CVE-2018-4843"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-003479"
},
{
"db": "CNVD",
"id": "CNVD-2018-06025"
},
{
"db": "BID",
"id": "103465"
},
{
"db": "IVD",
"id": "e2e91df0-39ab-11e9-bef8-000c29342cb1"
},
{
"db": "VULHUB",
"id": "VHN-134874"
}
],
"trust": 2.7
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2018-4843",
"trust": 3.6
},
{
"db": "SIEMENS",
"id": "SSA-592007",
"trust": 2.0
},
{
"db": "ICS CERT",
"id": "ICSA-18-079-02",
"trust": 1.7
},
{
"db": "CNVD",
"id": "CNVD-2018-06025",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201803-723",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2018-003479",
"trust": 0.8
},
{
"db": "BID",
"id": "103465",
"trust": 0.4
},
{
"db": "IVD",
"id": "E2E91DF0-39AB-11E9-BEF8-000C29342CB1",
"trust": 0.2
},
{
"db": "SEEBUG",
"id": "SSVID-98995",
"trust": 0.1
},
{
"db": "VULHUB",
"id": "VHN-134874",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "e2e91df0-39ab-11e9-bef8-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-06025"
},
{
"db": "VULHUB",
"id": "VHN-134874"
},
{
"db": "BID",
"id": "103465"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-003479"
},
{
"db": "CNNVD",
"id": "CNNVD-201803-723"
},
{
"db": "NVD",
"id": "CVE-2018-4843"
}
]
},
"id": "VAR-201803-2159",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "e2e91df0-39ab-11e9-bef8-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-06025"
},
{
"db": "VULHUB",
"id": "VHN-134874"
}
],
"trust": 1.6436873514285715
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.8
}
],
"sources": [
{
"db": "IVD",
"id": "e2e91df0-39ab-11e9-bef8-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-06025"
}
]
},
"last_update_date": "2024-11-23T22:55:55.082000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "SSA-592007",
"trust": 0.8,
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf"
},
{
"title": "Patch for Multiple Siemens Product Denial of Service Vulnerabilities (CNVD-2018-06025)",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/122865"
},
{
"title": "Multiple Siemens Product security vulnerabilities",
"trust": 0.6,
"url": "http://123.124.177.30/web/xxk/bdxqById.tag?id=79323"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2018-06025"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-003479"
},
{
"db": "CNNVD",
"id": "CNNVD-201803-723"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-20",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-134874"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-003479"
},
{
"db": "NVD",
"id": "CVE-2018-4843"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.0,
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf"
},
{
"trust": 1.7,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-18-079-02"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-4843"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2018-4843"
},
{
"trust": 0.3,
"url": "http://www.siemens.com/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2018-06025"
},
{
"db": "VULHUB",
"id": "VHN-134874"
},
{
"db": "BID",
"id": "103465"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-003479"
},
{
"db": "CNNVD",
"id": "CNNVD-201803-723"
},
{
"db": "NVD",
"id": "CVE-2018-4843"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "e2e91df0-39ab-11e9-bef8-000c29342cb1"
},
{
"db": "CNVD",
"id": "CNVD-2018-06025"
},
{
"db": "VULHUB",
"id": "VHN-134874"
},
{
"db": "BID",
"id": "103465"
},
{
"db": "JVNDB",
"id": "JVNDB-2018-003479"
},
{
"db": "CNNVD",
"id": "CNNVD-201803-723"
},
{
"db": "NVD",
"id": "CVE-2018-4843"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2018-03-22T00:00:00",
"db": "IVD",
"id": "e2e91df0-39ab-11e9-bef8-000c29342cb1"
},
{
"date": "2018-03-22T00:00:00",
"db": "CNVD",
"id": "CNVD-2018-06025"
},
{
"date": "2018-03-20T00:00:00",
"db": "VULHUB",
"id": "VHN-134874"
},
{
"date": "2018-03-20T00:00:00",
"db": "BID",
"id": "103465"
},
{
"date": "2018-05-24T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-003479"
},
{
"date": "2018-03-21T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201803-723"
},
{
"date": "2018-03-20T14:29:00.413000",
"db": "NVD",
"id": "CVE-2018-4843"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2019-08-22T00:00:00",
"db": "CNVD",
"id": "CNVD-2018-06025"
},
{
"date": "2023-01-10T00:00:00",
"db": "VULHUB",
"id": "VHN-134874"
},
{
"date": "2018-03-20T00:00:00",
"db": "BID",
"id": "103465"
},
{
"date": "2018-07-04T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2018-003479"
},
{
"date": "2023-05-10T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201803-723"
},
{
"date": "2024-11-21T04:07:34.080000",
"db": "NVD",
"id": "CVE-2018-4843"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote or local",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201803-723"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "plural Siemens Vulnerability related to input validation in products",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2018-003479"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Input validation error",
"sources": [
{
"db": "IVD",
"id": "e2e91df0-39ab-11e9-bef8-000c29342cb1"
},
{
"db": "BID",
"id": "103465"
},
{
"db": "CNNVD",
"id": "CNNVD-201803-723"
}
],
"trust": 1.1
}
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…