Denial of Service Vulnerability in Siemens SIMATIC S7-1200 CPU PLC Devices
CVE-2014-2252

Currently unrated

Key Information:

Vendor: Siemens
Status: Simatic S7 Cpu 1200 Firmware; Simatic S7 Cpu-1211c; Simatic S7 Cpu 1212c; Simatic S7 Cpu 1214c
Vendor: CVE Published:; 24 March 2014

What is CVE-2014-2252?

The vulnerability in Siemens SIMATIC S7-1200 CPU PLC devices allows remote attackers to exploit the system by sending specially crafted PROFINET packets. This action can lead to a transition into a defect mode, thereby causing a denial of service. The issue affects firmware versions prior to 4.0, highlighting the importance of regular updates and security awareness among users of these industrial control systems.

References

http://www.siemens.com/innovation/pool/de/forschungsfelde...

x_refsource_CONFIRM

http://ics-cert.us-cert.gov/advisories/ICSA-14-079-02

x_refsource_MISC

https://cert-portal.siemens.com/productcert/pdf/ssa-65438...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 24, 2014
Vulnerability Reserved
Feb 28, 2014