Lucene search

MitreCVE-2016-2200

HistoryFeb 08, 2016 - 4:59 p.m.

CVE-2016-2200

2016-02-0816:59:03

CWE-20

mitre

web.nvd.nist.gov

siemens

simatic

s7-1500

cpu

vulnerability

remote

denial of service

cve-2016-2200

nvd

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.4

Confidence

High

EPSS

0.008

Percentile

81.5%

JSON

Siemens SIMATIC S7-1500 CPU devices before 1.8.3 allow remote attackers to cause a denial of service (STOP mode transition) via crafted packets on TCP port 102.

Affected configurations

Nvd

Node

siemenssimatic_s7-1511-1_pn_cpu

siemenssimatic_s7-1511c-1_pn_cpu

siemenssimatic_s7-1511f-1_pn_cpu

siemenssimatic_s7-1512c-1_pn_cpu

siemenssimatic_s7-1513-1_pn_cpu

siemenssimatic_s7-1513f-1_pn_cpu

siemenssimatic_s7-1515-2_pn_cpu

siemenssimatic_s7-1515f-2_pn_cpu

siemenssimatic_s7-1516-3_pn\/dp_cpu

siemenssimatic_s7-1516f-3_pn\/dp_cpu

siemenssimatic_s7-1517-3_pn\/dp_cpu

siemenssimatic_s7-1517f-3_pn\/dp_cpu

siemenssimatic_s7-1518-4_pn\/dp_cpu

siemenssimatic_s7-1518f-4_pn\/dp_cpu

AND

siemenssimatic_s7-1500_cpu_firmwareRange≤1.8.2

VendorProductVersionCPE
siemenssimatic_s7-1511-1_pn_cpu*cpe:2.3:h:siemens:simatic_s7-1511-1_pn_cpu:*:*:*:*:*:*:*:*
siemenssimatic_s7-1511c-1_pn_cpu*cpe:2.3:h:siemens:simatic_s7-1511c-1_pn_cpu:*:*:*:*:*:*:*:*
siemenssimatic_s7-1511f-1_pn_cpu*cpe:2.3:h:siemens:simatic_s7-1511f-1_pn_cpu:*:*:*:*:*:*:*:*
siemenssimatic_s7-1512c-1_pn_cpu*cpe:2.3:h:siemens:simatic_s7-1512c-1_pn_cpu:*:*:*:*:*:*:*:*
siemenssimatic_s7-1513-1_pn_cpu*cpe:2.3:h:siemens:simatic_s7-1513-1_pn_cpu:*:*:*:*:*:*:*:*
siemenssimatic_s7-1513f-1_pn_cpu*cpe:2.3:h:siemens:simatic_s7-1513f-1_pn_cpu:*:*:*:*:*:*:*:*
siemenssimatic_s7-1515-2_pn_cpu*cpe:2.3:h:siemens:simatic_s7-1515-2_pn_cpu:*:*:*:*:*:*:*:*
siemenssimatic_s7-1515f-2_pn_cpu*cpe:2.3:h:siemens:simatic_s7-1515f-2_pn_cpu:*:*:*:*:*:*:*:*
siemenssimatic_s7-1516-3_pn\/dp_cpu*cpe:2.3:h:siemens:simatic_s7-1516-3_pn\/dp_cpu:*:*:*:*:*:*:*:*
siemenssimatic_s7-1516f-3_pn\/dp_cpu*cpe:2.3:h:siemens:simatic_s7-1516f-3_pn\/dp_cpu:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
siemens	simatic_s7-1511-1_pn_cpu	*	cpe:2.3:h:siemens:simatic_s7-1511-1_pn_cpu::::::::
siemens	simatic_s7-1511c-1_pn_cpu	*	cpe:2.3:h:siemens:simatic_s7-1511c-1_pn_cpu::::::::
siemens	simatic_s7-1511f-1_pn_cpu	*	cpe:2.3:h:siemens:simatic_s7-1511f-1_pn_cpu::::::::
siemens	simatic_s7-1512c-1_pn_cpu	*	cpe:2.3:h:siemens:simatic_s7-1512c-1_pn_cpu::::::::
siemens	simatic_s7-1513-1_pn_cpu	*	cpe:2.3:h:siemens:simatic_s7-1513-1_pn_cpu::::::::
siemens	simatic_s7-1513f-1_pn_cpu	*	cpe:2.3:h:siemens:simatic_s7-1513f-1_pn_cpu::::::::
siemens	simatic_s7-1515-2_pn_cpu	*	cpe:2.3:h:siemens:simatic_s7-1515-2_pn_cpu::::::::
siemens	simatic_s7-1515f-2_pn_cpu	*	cpe:2.3:h:siemens:simatic_s7-1515f-2_pn_cpu::::::::
siemens	simatic_s7-1516-3_pn\/dp_cpu	*	cpe:2.3:h:siemens:simatic_s7-1516-3_pn\/dp_cpu::::::::
siemens	simatic_s7-1516f-3_pn\/dp_cpu	*	cpe:2.3:h:siemens:simatic_s7-1516f-3_pn\/dp_cpu::::::::

Rows per page:

1-10 of 151

References

www.securityfocus.com/bid/83106

www.securitytracker.com/id/1034954

www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-253230.pdf

cert-portal.siemens.com/productcert/pdf/ssa-253230.pdf

ics-cert.us-cert.gov/advisories/ICSA-16-040-02

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.4

Confidence

High

EPSS

0.008

Percentile

81.5%

JSON

Related for CVE-2016-2200