Denial of Service Vulnerability in Siemens SIMATIC S7-400 Series
CVE-2018-16557

8.2HIGH

Key Information:

Vendor: Siemens
Status: Simatic S7-400 Cpu 412-1 Dp V7; Simatic S7-400 Cpu 412-2 Dp V7; Simatic S7-400 Cpu 414-2 Dp V7; Simatic S7-400 Cpu 414-3 Dp V7
Vendor: CVE Published:; 13 December 2018

Summary

A vulnerability exists in Siemens SIMATIC S7-400 CPUs where an attacker can send specially crafted packets to port 102/tcp via Ethernet, PROFIBUS, or Multi Point Interfaces (MPI). This can result in a denial of service, disrupting the core functionality of the CPU. Recovery may require flashing the CPU with a new firmware image. Successful exploitation does not necessitate user interaction, and if access protections are not configured, it can be exploited without any privileges.

Affected Version(s)

SIMATIC S7-400 CPU 412-1 DP V7 All versions

SIMATIC S7-400 CPU 412-2 DP V7 All versions

SIMATIC S7-400 CPU 414-2 DP V7 All versions

References

https://cert-portal.siemens.com/productcert/pdf/ssa-11313...

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Dec 13, 2018
Vulnerability Reserved
Sep 6, 2018