Denial of Service Vulnerability in Siemens SIMATIC S7-1200 Series
CVE-2025-24812

7.1HIGH

Key Information:

Vendor: Siemens
Status: Simatic S7-1200 Cpu 1211c Ac/dc/rly; Simatic S7-1200 Cpu 1211c Dc/dc/dc; Simatic S7-1200 Cpu 1211c Dc/dc/rly; Simatic S7-1200 Cpu 1212c Ac/dc/rly
Vendor: CVE Published:; 11 February 2025

What is CVE-2025-24812?

A vulnerability exists in several models of the Siemens SIMATIC S7-1200 series that can be exploited via specially crafted packets sent to port 102/tcp. This flaw could enable attackers to trigger a denial of service condition, leading to potential disruptions in device operations.

Affected Version(s)

SIMATIC S7-1200 CPU 1211C AC/DC/Rly 0

SIMATIC S7-1200 CPU 1211C DC/DC/DC 0

SIMATIC S7-1200 CPU 1211C DC/DC/Rly 0

References

https://cert-portal.siemens.com/productcert/html/ssa-2248...

CVSS V4

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 11, 2025
Vulnerability Reserved
Jan 24, 2025