DoS Vulnerability in Siemens SIMATIC S7-1200 CPU PLC Devices
CVE-2014-2254

Currently unrated

Key Information:

Vendor: Siemens
Status: Simatic S7 Cpu 1200 Firmware; Simatic S7 Cpu-1211c; Simatic S7 Cpu 1212c; Simatic S7 Cpu 1214c
Vendor: CVE Published:; 24 March 2014

Summary

The Siemens SIMATIC S7-1200 CPU PLC devices, with firmware versions prior to 4.0, are susceptible to a remote denial of service attack. This vulnerability allows adversaries to transition the device into a defect mode through the submission of specially crafted HTTP packets, thereby interrupting normal operation. This issue highlights the importance of securing PLC devices to safeguard against potential disruptions in industrial control systems.

References

http://www.siemens.com/innovation/pool/de/forschungsfelde...

x_refsource_CONFIRM

http://ics-cert.us-cert.gov/advisories/ICSA-14-079-02

x_refsource_MISC

https://cert-portal.siemens.com/productcert/pdf/ssa-65438...

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 24, 2014
Vulnerability Reserved
Feb 28, 2014