Denial of Service Vulnerability in Siemens SIMATIC S7-1500 PLC Devices
CVE-2014-2253

Currently unrated

Key Information:

Vendor: Siemens
Status: Simatic S7-1500 Cpu Firmware
Vendor: CVE Published:; 16 March 2014

What is CVE-2014-2253?

The vulnerability in Siemens SIMATIC S7-1500 CPU PLC devices allows remote attackers to trigger a denial of service by sending specially crafted Profinet packets. This manipulation can cause the device to transition into a defect mode, disrupting operations and potentially leading to significant downtime. Users of affected firmware versions should consider applying security measures as outlined in Siemens' advisories to mitigate this risk.

References

http://www.siemens.com/innovation/pool/de/forschungsfelde...

x_refsource_CONFIRM

http://ics-cert.us-cert.gov/advisories/ICSA-14-073-01

x_refsource_MISC

https://cert-portal.siemens.com/productcert/pdf/ssa-45642...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 16, 2014
Vulnerability Reserved
Feb 28, 2014