CVE-2016-2201

Published: Feb 8, 2016Modified: May 6, 2026

5.3

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Exploitability: 3.9 / Impact: 1.4

Source: NVD

Description

Siemens SIMATIC S7-1500 CPU devices before 1.8.3 allow remote attackers to bypass a replay protection mechanism via packets on TCP port 102.

Affected (1)

Products: Siemens: Simatic S7 1500 Cpu Firmware

1 product

Simatic S7 1500 Cpu Firmware

Configuration A

1 vulnerable · 14 platform

Vulnerable Software	Affected Versions
Siemens Simatic S7 1500 Cpu Firmware	Version 1.8.2

Running on/with	Platform Versions
Siemens Simatic S7 1511 1 Pn Cpu	All versions
Siemens Simatic S7 1511c 1 Pn Cpu	All versions
Siemens Simatic S7 1511f 1 Pn Cpu	All versions
Siemens Simatic S7 1512c 1 Pn Cpu	All versions
Siemens Simatic S7 1513 1 Pn Cpu	All versions
Siemens Simatic S7 1513f 1 Pn Cpu	All versions
Siemens Simatic S7 1515 2 Pn Cpu	All versions
Siemens Simatic S7 1515f 2 Pn Cpu	All versions
Siemens Simatic S7 1516 3 Pn/dp Cpu	All versions
Siemens Simatic S7 1516f 3 Pn/dp Cpu	All versions
Siemens Simatic S7 1517 3 Pn/dp Cpu	All versions
Siemens Simatic S7 1517f 3 Pn/dp Cpu	All versions
Siemens Simatic S7 1518 4 Pn/dp Cpu	All versions
Siemens Simatic S7 1518f 4 Pn/dp Cpu	All versions

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (10)

http://www.securityfocus.com/bid/83110

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1034954

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-253230.pdf

Source: cve@mitre.org

Vendor Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-253230.pdf

Source: cve@mitre.org

https://ics-cert.us-cert.gov/advisories/ICSA-16-040-02

Source: cve@mitre.org

Third Party AdvisoryUS Government Resource

http://www.securityfocus.com/bid/83110

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1034954

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-253230.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-253230.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

https://ics-cert.us-cert.gov/advisories/ICSA-16-040-02

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

Timeline

No history available yet.