Denial of Service Vulnerability in Siemens SIMATIC S7-1200 Products
CVE-2025-24811
8.7HIGH
Key Information:
- Vendor
- Siemens
- Status
- Vendor
- CVE Published:
- 11 February 2025
Summary
The identified vulnerability in several models of Siemens SIMATIC S7-1200 CPUs allows unauthenticated attackers to disrupt device operation. Specifically, devices fail to properly handle specially crafted packets sent to port 80/tcp, potentially resulting in denial of service conditions. Such vulnerabilities may affect critical operations within industrial environments and require prompt attention to mitigate risks.
Affected Version(s)
SIMATIC S7-1200 CPU 1211C AC/DC/Rly 0
SIMATIC S7-1200 CPU 1211C DC/DC/DC 0
SIMATIC S7-1200 CPU 1211C DC/DC/Rly 0
References
CVSS V4
Score:
8.7
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None
Timeline
Vulnerability published
Vulnerability Reserved