Predictable IP ID sequence numbers leave SIMATIC S7-200 SMART CPU susceptible to denial of service attacks
CVE-2024-35292

8.2HIGH

Key Information:

Vendor: Siemens
Status: Simatic S7-200 Smart Cpu Cr40; Simatic S7-200 Smart Cpu Cr60; Simatic S7-200 Smart Cpu Sr20; Simatic S7-200 Smart Cpu Sr30
Vendor: CVE Published:; 11 June 2024

Summary

A vulnerability exists in various models of the SIMATIC S7-200 SMART CPU series produced by Siemens, specifically linked to the use of a predictable IP ID sequence number. This issue allows malicious actors to exploit the predictable nature of the IP ID sequences, potentially enabling a range of attacks including denial of service. Systems affected by this vulnerability may experience operational disruptions as attackers leverage the predictability to manipulate network traffic and create conditions that hinder system functionality. It is critical for organizations to assess their configurations and apply necessary safeguards to mitigate the risk associated with this vulnerability.

Affected Version(s)

SIMATIC S7-200 SMART CPU CR40 0

SIMATIC S7-200 SMART CPU CR60 0

SIMATIC S7-200 SMART CPU SR20 0

References

https://cert-portal.siemens.com/productcert/html/ssa-4815...

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 11, 2024
Vulnerability Reserved
May 15, 2024