Denial of Service Vulnerability in Siemens SIMATIC S7-1500 CPU PLC Devices
CVE-2014-2259

Currently unrated

Key Information:

Vendor: Siemens
Status: Simatic S7-1500 Cpu Firmware
Vendor: CVE Published:; 16 March 2014

Summary

The Siemens SIMATIC S7-1500 CPU PLC devices with firmware versions earlier than 1.5.0 are susceptible to a denial of service vulnerability. This security flaw allows remote attackers to disrupt the normal functioning of the device by sending specially crafted HTTPS packets, leading to unintended transitions to defect mode. It poses a significant risk to industrial automation environments, making it crucial for organizations to update their firmware to mitigate potential exploits.

References

http://www.siemens.com/innovation/pool/de/forschungsfelde...

x_refsource_CONFIRM

http://ics-cert.us-cert.gov/advisories/ICSA-14-073-01

x_refsource_MISC

https://cert-portal.siemens.com/productcert/pdf/ssa-45642...

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 16, 2014
Vulnerability Reserved
Feb 28, 2014