2022-04-12
|
CVE-2022-25622
|
The PROFINET (PNIO) stack, when integrated with the Interniche IP stack, improperly handles internal resources for TCP segments where the minimum TCP-Header length is less than defined.
This could allow an attacker to create a denial of service condition for TCP services on affected devices by sending specially crafted TCP segments.
|
Simatic_cfu_diq_firmware, Simatic_cfu_pa_firmware, Simatic_s7\-1500_cpu_firmware, Simatic_s7\-300_cpu_firmware, Simatic_s7\-400_pn\/dp_v7_firmware, Simatic_s7\-400h_v6_firmware, Simatic_s7\-410_v10_firmware, Simatic_s7\-410_v8_firmware, Simatic_tdc_cp51m1_firmware, Simatic_tdc_cpu555_firmware, Simatic_winac_rtx_firmware, Simit_simulation_platform
|
7.5
|
|
|
2019-10-10
|
CVE-2019-10923
|
An attacker with network access to an affected product may cause a denial of service condition by breaking the real-time synchronization (IRT) of the affected installation.
|
Cp1604_firmware, Cp1616_firmware, Dk_standard_ethernet_controller_firmware, Ek\-Ertec_200_firmware, Ek\-Ertec_200p_firmware, Scalance_x\-200irt_firmware, Simatic_et_200ecopn_firmware, Simatic_et_200m_firmware, Simatic_et_200s_firmware, Simatic_pn\/pn_coupler_6es7158\-3ad01\-0xa0_firmware, Simatic_s7\-300_cpu_312_ifm_firmware, Simatic_s7\-300_cpu_313_firmware, Simatic_s7\-300_cpu_314_firmware, Simatic_s7\-300_cpu_314_ifm_firmware, Simatic_s7\-300_cpu_315\-2_dp_firmware, Simatic_s7\-300_cpu_315_firmware, Simatic_s7\-300_cpu_316\-2_dp_firmware, Simatic_s7\-300_cpu_318\-2_firmware, Simatic_s7\-300_cpu_firmware, Simatic_s7\-400_dp_v7_firmware, Simatic_s7\-400_pn_v7_firmware, Simatic_s7\-400_v6_firmware, Simatic_winac_rtx_\(F\)_firmware, Simotion_firmware, Sinamics_dcm_firmware, Sinamics_dcp_firmware, Sinamics_g110m_firmware, Sinamics_g120_firmware, Sinamics_g130_firmware, Sinamics_g150_firmware, Sinamics_gh150_firmware, Sinamics_gl150_firmware, Sinamics_gm150_firmware, Sinamics_s110_firmware, Sinamics_s120_firmware, Sinamics_s150_firmware, Sinamics_sl150_firmware, Sinamics_sm120_firmware, Sinumerik_828d, Sinumerik_840d_sl
|
7.5
|
|
|
2019-10-10
|
CVE-2019-10936
|
Affected devices improperly handle large amounts of specially crafted UDP packets.
This could allow an unauthenticated remote attacker to trigger a denial of service condition.
|
Dk_standard_ethernet_controller_firmware, Ek\-Ertec_200_firmware, Ek\-Ertec_200p_firmware, Simatic_cfu_pa_firmware, Simatic_et_200al_firmware, Simatic_et_200ecopn_firmware, Simatic_et_200m_firmware, Simatic_et_200mp_im_155\-5_pn_ba_firmware, Simatic_et_200mp_im_155\-5_pn_hf_firmware, Simatic_et_200mp_im_155\-5_pn_st_firmware, Simatic_et_200pro_firmware, Simatic_et_200s_firmware, Simatic_et_200sp_im_155\-6_pn\/2_hf_firmware, Simatic_et_200sp_im_155\-6_pn\/3_hf_firmware, Simatic_et_200sp_im_155\-6_pn_ba_firmware, Simatic_et_200sp_im_155\-6_pn_ha_firmware, Simatic_et_200sp_im_155\-6_pn_hf_firmware, Simatic_et_200sp_im_155\-6_pn_hs_firmware, Simatic_et_200sp_im_155\-6_pn_st_firmware, Simatic_hmi_comfort_outdoor_panels_15\"_firmware, Simatic_hmi_comfort_outdoor_panels_7\"_firmware, Simatic_hmi_comfort_panels_22\"_firmware, Simatic_hmi_comfort_panels_4\"_firmware, Simatic_hmi_ktp_mobile_panels_firmware, Simatic_pn\/pn_coupler_firmware, Simatic_profinet_driver_firmware, Simatic_s7\-1200_cpu_1211c_firmware, Simatic_s7\-1200_cpu_1212c_firmware, Simatic_s7\-1200_cpu_1214c_firmware, Simatic_s7\-1200_cpu_firmware, Simatic_s7\-1500_cpu_1511c_firmware, Simatic_s7\-1500_cpu_1512c_firmware, Simatic_s7\-1500_cpu_1518_firmware, Simatic_s7\-1500_cpu_firmware, Simatic_s7\-1500s_cpu_firmware, Simatic_s7\-1500t_cpu_firmware, Simatic_s7\-300_cpu_312_ifm_firmware, Simatic_s7\-300_cpu_313_firmware, Simatic_s7\-300_cpu_314_firmware, Simatic_s7\-300_cpu_314_ifm_firmware, Simatic_s7\-300_cpu_315\-2_dp_firmware, Simatic_s7\-300_cpu_315_firmware, Simatic_s7\-300_cpu_316\-2_dp_firmware, Simatic_s7\-300_cpu_318\-2_firmware, Simatic_s7\-300_cpu_firmware, Simatic_s7\-400_dp_v7_firmware, Simatic_s7\-400_pn_v7_firmware, Simatic_s7\-400_v6_firmware, Simatic_s7\-400h_v6_firmware, Simatic_s7\-410_v8_firmware, Simatic_winac_rtx_\(F\)_firmware, Sinamics_dcm_firmware, Sinamics_dcp_firmware, Sinamics_g110m_firmware, Sinamics_g120_firmware, Sinamics_g130_firmware, Sinamics_g150_firmware, Sinamics_gl150_firmware, Sinamics_gm150_firmware, Sinamics_s110_firmware, Sinamics_s120_firmware, Sinamics_s150_firmware, Sinamics_sl150_firmware, Sinamics_sm120_firmware, Sinumerik_828d, Sinumerik_840d_sl
|
7.5
|
|
|
2020-04-14
|
CVE-2019-19300
|
A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P, KTK ATE530S, SIDOOR ATD430W, SIDOOR ATE530S COATED, SIDOOR ATE531S, SIMATIC ET 200AL IM 157-1 PN (6ES7157-1AB00-0AB0), SIMATIC ET 200MP IM 155-5 PN HF (6ES7155-5AA00-0AC0), SIMATIC ET 200pro IM 154-8 PN/DP CPU (6ES7154-8AB01-0AB0), SIMATIC ET 200pro IM 154-8F PN/DP CPU (6ES7154-8FB01-0AB0), SIMATIC ET 200pro IM 154-8FX PN/DP CPU...
|
Ktk_ate530s_firmware, Sidoor_atd430w_firmware, Sidoor_ate530s_coated_firmware, Sidoor_ate531s_firmware, Simatic_et200mp_im155\-5_pn_hf_firmware, Simatic_et200sp_im155\-6_mf_hf_firmware, Simatic_et200sp_im155\-6_pn\/2_hf_firmware, Simatic_et200sp_im155\-6_pn_ha_firmware, Simatic_et200sp_im155\-6_pn_hf_firmware, Simatic_et_200sp_open_controller_cpu_1515sp_pc2_firmware, Simatic_et_200sp_open_controller_cpu_1515sp_pc_firmware, Simatic_micro\-Drive_pdc_firmware, Simatic_pn\/pn_coupler_firmware, Simatic_s7\-1500, Simatic_s7\-1500_cpu_1511\-1_pn_firmware, Simatic_s7\-1500_cpu_1511f\-1_pn_firmware, Simatic_s7\-1500_cpu_1513\-1_pn_firmware, Simatic_s7\-1500_cpu_1513f\-1_pn_firmware, Simatic_s7\-1500_cpu_1515\-2_pn_firmware, Simatic_s7\-1500_cpu_1515f\-2_pn_firmware, Simatic_s7\-1500_cpu_1516\-3_pn\/dp_firmware, Simatic_s7\-1500_cpu_1516f\-3_pn\/dp_firmware, Simatic_s7\-1500_cpu_1517\-3_pn\/dp_firmware, Simatic_s7\-1500_cpu_1517f\-3_pn\/dp_firmware, Simatic_s7\-1500_cpu_1518\-4_pn\/dp_firmware, Simatic_s7\-1500_cpu_1518f\-4_pn\/dp_firmware, Simatic_s7\-300_cpu_firmware, Simatic_s7\-400_pn\/dp_firmware, Simatic_s7\-410_cpu_firmware, Simatic_tdc_cp51m1_firmware, Simatic_tdc_cpu555_firmware, Simatic_winac_rtx_\(F\)_2010_firmware, Sinamics_s\/g_control_unit_firmware
|
7.5
|
|
|
2020-03-10
|
CVE-2019-18336
|
A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V3.X.17), SIMATIC TDC CP51M1 (All versions < V1.1.8), SIMATIC TDC CPU555 (All versions < V1.1.1), SINUMERIK 840D sl (All versions < V4.8.6), SINUMERIK 840D sl (All versions < V4.94). Specially crafted packets sent to port 102/tcp (Profinet) could cause the affected device to go into defect mode. A restart is required in order to recover the system. Successful...
|
Simatic_s7\-300_cpu_312_ifm_firmware, Simatic_s7\-300_cpu_313_firmware, Simatic_s7\-300_cpu_314_firmware, Simatic_s7\-300_cpu_314_ifm_firmware, Simatic_s7\-300_cpu_315\-2_dp_firmware, Simatic_s7\-300_cpu_315_firmware, Simatic_s7\-300_cpu_316\-2_dp_firmware, Simatic_s7\-300_cpu_318\-2_firmware, Simatic_s7\-300_cpu_firmware, Sinumerik_840d_sl
|
N/A
|
|
|
2016-12-17
|
CVE-2016-9159
|
A vulnerability has been identified in SIMATIC S7-300 CPU family (All versions), SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions), SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants) (All versions), SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants) (All versions), SIMATIC S7-400 V6 and earlier CPU family (All versions), SIMATIC S7-400 V7 CPU family (All versions), SIMATIC S7-410 V8 CPU family (All versions), SIMATIC S7-410 V8...
|
Simatic_s7\-300_cpu_firmware, Simatic_s7\-400_cpu_firmware
|
5.9
|
|
|
2016-12-17
|
CVE-2016-9158
|
A vulnerability has been identified in SIMATIC S7-300 CPU family (All versions), SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions), SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants) (All versions), SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants) (All versions), SIMATIC S7-400 V6 and earlier CPU family (All versions), SIMATIC S7-400 V7 CPU family (All versions). Specially crafted packets sent to port 80/tcp could cause the...
|
Simatic_s7\-300_cpu_firmware, Simatic_s7\-400_cpu_firmware
|
7.5
|
|
|
2015-03-07
|
CVE-2015-2177
|
Siemens SIMATIC S7-300 CPU devices allow remote attackers to cause a denial of service (defect-mode transition) via crafted packets on (1) TCP port 102 or (2) Profibus.
|
Simatic_s7\-300_cpu, Simatic_s7\-300_cpu_firmware
|
N/A
|
|
|