Denial of Service Vulnerability in Siemens SIMATIC S7-400 PN CPU Devices
CVE-2012-3016

Currently unrated

Key Information:

Vendor: Siemens
Status: Simatic S7-400 Cpu Firmware; Simatic S7-400 Cpu 412-2 Pn; Simatic S7-400 Cpu 414-3 Pn\/dp; Simatic S7-400 Cpu 414f-3 Pn\/dp
Vendor: CVE Published:; 31 July 2012

What is CVE-2012-3016?

Siemens SIMATIC S7-400 PN CPU devices running firmware versions prior to 6.0.3 are susceptible to a denial of service vulnerability. Attackers can exploit this issue by sending specially crafted ICMP packets, leading to service outages and defect-mode transitions in affected systems. This vulnerability can disrupt operational functionality and compromise system availability, making it critical for users to implement necessary security measures and firmware updates.

References

http://www.siemens.com/corporate-technology/pool/de/forsc...

x_refsource_CONFIRM

http://www.us-cert.gov/control_systems/pdf/ICSA-12-212-02...

x_refsource_MISC

https://cert-portal.siemens.com/productcert/pdf/ssa-58927...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 31, 2012
Vulnerability Reserved
May 30, 2012