CVE-2019-18336
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD
Description
A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V3.X.17), SIMATIC TDC CP51M1 (All versions < V1.1.8), SIMATIC TDC CPU555 (All versions < V1.1.1), SINUMERIK 840D sl (All versions < V4.8.6), SINUMERIK 840D sl (All versions < V4.94). Specially crafted packets sent to port 102/tcp (Profinet) could cause the affected device to go into defect mode. A restart is required in order to recover the system. Successful exploitation requires an attacker to have network access to port 102/tcp, with no authentication. No user interation is required. At the time of advisory publication no public exploitation of this security vulnerability was known.
Affected (13)
Products: Siemens: Simatic S7 300 Cpu Firmware, Simatic S7 300 Cpu 312 Ifm Firmware, Simatic S7 300 Cpu 313 Firmware, Simatic S7 300 Cpu 314 Firmware, Simatic S7 300 Cpu 314 Ifm Firmware, Simatic S7 300 Cpu 315 Firmware, Simatic S7 300 Cpu 315 2 Dp Firmware, Simatic S7 300 Cpu 316 2 Dp Firmware, Simatic S7 300 Cpu 318 2 Firmware, Sinumerik 840d Sl, Simatic Tdc Cp51m1 Firmware, Simatic Tdc Cpu555 Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.3.17 |
| Running on/with | Platform Versions |
|---|---|
Siemens Simatic S7 300 Cpu | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.3.17 |
| Running on/with | Platform Versions |
|---|---|
Siemens Simatic S7 300 Cpu 312 Ifm | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.3.17 |
| Running on/with | Platform Versions |
|---|---|
Siemens Simatic S7 300 Cpu 313 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.3.17 |
| Running on/with | Platform Versions |
|---|---|
Siemens Simatic S7 300 Cpu 314 | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.3.17 |
| Running on/with | Platform Versions |
|---|---|
Siemens Simatic S7 300 Cpu 314 Ifm | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.3.17 |
| Running on/with | Platform Versions |
|---|---|
Siemens Simatic S7 300 Cpu 315 | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.3.17 |
| Running on/with | Platform Versions |
|---|---|
Siemens Simatic S7 300 Cpu 315 2 Dp | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.3.17 |
| Running on/with | Platform Versions |
|---|---|
Siemens Simatic S7 300 Cpu 316 2 Dp | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| Before 3.3.17 |
| Running on/with | Platform Versions |
|---|---|
Siemens Simatic S7 300 Cpu 318 2 | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| Before 4.8.6 |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| Before 4.94 |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.8 |
| Running on/with | Platform Versions |
|---|---|
Siemens Simatic Tdc Cp51m1 | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| Before 1.1.1 |
| Running on/with | Platform Versions |
|---|---|
Siemens Simatic Tdc Cpu555 | All versions |
References (2)
Source: productcert@siemens.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.