← Back

CVE-2020-15783

nvd nist
Published: Nov 12, 2020Modified: Jun 2, 2026

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions), SIMATIC TDC CPU555 (All versions), SINUMERIK 840D sl (All versions). Sending multiple specially crafted packets to the affected devices could cause a Denial-of-Service on port 102. A cold restart is required to recover the service.

Affected (12)

Siemens
12 products
Sinumerik 840d Sl Firmware
Simatic S7 300 Cpu 312 Firmware
Simatic S7 300 Cpu 314 Firmware
Simatic S7 300 Cpu 315 2 Dp Firmware
Simatic S7 300 Cpu 315 2 Pn Firmware
Simatic S7 300 Cpu 317 2 Pn Firmware
Simatic S7 300 Cpu 317 2 Dp Firmware
Simatic S7 300 Cpu 315f 2 Dp Firmware
Simatic S7 300 Cpu 315f 2 Pn Firmware
Simatic S7 300 Cpu 317f 2 Pn Firmware
Simatic S7 300 Cpu 317f 2 Dp Firmware
Simatic Tdc Cpu555 Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Sinumerik 840d Sl Firmware
All versions
Running on/withPlatform Versions
Siemens
Sinumerik 840d Sl
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 312 Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 312
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 314 Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 314
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 315 2 Dp Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 315 2 Dp
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 315 2 Pn Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 315 2 Pn
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 317 2 Pn Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 317 2 Pn
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 317 2 Dp Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 317 2 Dp
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 315f 2 Dp Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 315f 2 Dp
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 315f 2 Pn Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 315f 2 Pn
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 317f 2 Pn Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 317f 2 Pn
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic S7 300 Cpu 317f 2 Dp Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic S7 300 Cpu 317f 2 Dp
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Simatic Tdc Cpu555 Firmware
All versions
Running on/withPlatform Versions
Siemens
Simatic Tdc Cpu555
All versions

Related CWEs

CWE-400
Uncontrolled Resource Consumption
The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

References (2)

Source: productcert@siemens.com
MitigationVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
MitigationVendor Advisory

Timeline

No history available yet.