Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2018-16557
HistoryDec 13, 2018 - 4:29 p.m.

CVE-2018-16557

2018-12-1316:29:00
CWE-347
[email protected]
web.nvd.nist.gov
40
cve
2018
16557
denial of service
simatic
s7-400
cpu
ethernet
profibus
mpi

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

8.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.6%

JSON

A vulnerability has been identified in SIMATIC S7-400 CPU 412-1 DP V7 (All versions), SIMATIC S7-400 CPU 412-2 DP V7 (All versions), SIMATIC S7-400 CPU 414-2 DP V7 (All versions), SIMATIC S7-400 CPU 414-3 DP V7 (All versions), SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 416-2 DP V7 (All versions), SIMATIC S7-400 CPU 416-3 DP V7 (All versions), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 416F-2 DP V7 (All versions), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 417-4 DP V7 (All versions), SIMATIC S7-400 CPU 412-2 PN V7 (All versions < V7.0.3), SIMATIC S7-400 H V4.5 and below CPU family (incl. SIPLUS variants) (All versions), SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) (All versions < V6.0.9), SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants) (All versions), SIMATIC S7-410 CPU family (incl. SIPLUS variants) (All versions < V8.2.1), SIPLUS S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIPLUS S7-400 CPU 416-3 PN/DP V7 (All versions < V7.0.3), SIPLUS S7-400 CPU 416-3 V7 (All versions), SIPLUS S7-400 CPU 417-4 V7 (All versions). Sending of specially crafted packets to port 102/tcp via Ethernet interface
via PROFIBUS or Multi Point Interfaces (MPI) could cause a denial of service
condition on affected devices. Flashing with a firmware image may be required
to recover the CPU.

Successful exploitation requires an attacker to have network access to port
102/tcp via Ethernet interface or to be able to send messages via PROFIBUS or
Multi Point Interfaces (MPI) to the device. No user interaction is required.
If no access protection is configured, no privileges are required to exploit
the security vulnerability. The vulnerability could allow causing a
denial of service condition of the core functionality of the CPU,
compromising the availability of the system.

Affected configurations

NVD
Node
siemenssimatic_s7-400_firmwareRangev6.0
AND
siemenssimatic_s7-400Match-
Node
siemenssimatic_s7-400_pn\/dp_v7_firmware
AND
siemenssimatic_s7-400_pn\/dp_v7Match-
Node
siemenssimatic_s7-400h_firmwareRangev4.5
AND
siemenssimatic_s7-400hMatch-
Node
siemenssimatic_s7-410_firmwareRange<8.2.1
AND
siemenssimatic_s7-410Match-
Node
siemenssimatic_s7-400h_firmwareRange6.0.06.0.9
AND
siemenssimatic_s7-400hMatch-

CNA Affected

[
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 412-1 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 412-2 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 414-2 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 414-3 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 414-3 PN/DP V7",
    "versions": [
      {
        "version": "All versions < V7.0.3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 414F-3 PN/DP V7",
    "versions": [
      {
        "version": "All versions < V7.0.3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 416-2 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 416-3 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 416-3 PN/DP V7",
    "versions": [
      {
        "version": "All versions < V7.0.3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 416F-2 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 416F-3 PN/DP V7",
    "versions": [
      {
        "version": "All versions < V7.0.3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 417-4 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC S7-400 CPU 412-2 PN V7",
    "versions": [
      {
        "version": "All versions < V7.0.3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC S7-400 H V4.5 and below CPU family (incl. SIPLUS variants)",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)",
    "versions": [
      {
        "version": "All versions < V6.0.9",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants)",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC S7-410 CPU family (incl. SIPLUS variants)",
    "versions": [
      {
        "version": "All versions < V8.2.1",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIPLUS S7-400 CPU 414-3 PN/DP V7",
    "versions": [
      {
        "version": "All versions < V7.0.3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIPLUS S7-400 CPU 416-3 PN/DP V7",
    "versions": [
      {
        "version": "All versions < V7.0.3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIPLUS S7-400 CPU 416-3 V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIPLUS S7-400 CPU 417-4 V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Related

nvd 1
nessus 3
prion 1
cvelist 1
ics 1
nvd
nvd
CVE-2018-16557
2018-12-13 16:29:00
nessus
nessus
Siemens S7-400 CPUs Improper Verification of Cryptographic Signature (CVE-2018-16557)
2022-02-07 00:00:00
Siemens Simatic Improper Input Validation
2019-11-08 00:00:00
Siemens S7-400 CPUs Improper Input Validation (CVE-2018-16556)
2022-02-07 00:00:00
prion
prion
Design/Logic Flaw
2018-12-13 16:29:00
cvelist
cvelist
CVE-2018-16557
2018-12-13 16:00:00
ics
ics
Siemens S7-400 CPUs (Update B)
2023-01-13 12:00:00

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

8.2 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

42.6%

JSON
Related for CVE-2018-16557
nvd1nessus3prion1cvelist1ics1