CVE-2016-9159

2016-12-16T22:59:00
ID CVE-2016-9159
Type cve
Reporter NVD
Modified 2018-01-24T21:29:00

Description

A vulnerability has been identified in SIMATIC S7-300 CPU family, SIMATIC S7-400 V6 and earlier CPU family, SIMATIC S7-400 V7 CPU family. An attacker with network access to port 102/tcp (ISO-TSAP) or via Profibus could obtain credentials from the PLC if protection-level 2 is configured on the affected devices. This vulnerability affects all listed affected products.