Denial of Service Risk in Siemens SIMATIC S7-400 CPUs
CVE-2018-16556

7.5HIGH

Key Information:

Vendor: Siemens
Status: Simatic S7-400 Cpu 412-1 Dp V7; Simatic S7-400 Cpu 412-2 Dp V7; Simatic S7-400 Cpu 414-2 Dp V7; Simatic S7-400 Cpu 414-3 Dp V7
Vendor: CVE Published:; 13 December 2018

Summary

The SIMATIC S7-400 CPUs are susceptible to a vulnerability that allows an attacker to send specially crafted packets to port 102/tcp via Ethernet or through PROFIBUS and Multi Point Interfaces (MPI). This can result in the devices entering a defect mode, necessitating a manual reboot to restore functionality. No user interaction or privileges are required, making this a significant risk to system availability.

Affected Version(s)

SIMATIC S7-400 CPU 412-1 DP V7 All versions

SIMATIC S7-400 CPU 412-2 DP V7 All versions

SIMATIC S7-400 CPU 414-2 DP V7 All versions

References

https://cert-portal.siemens.com/productcert/pdf/ssa-11313...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 13, 2018
Vulnerability Reserved
Sep 6, 2018