Lucene search

CVE-2018-16557

🗓️ 13 Dec 2018 16:00:29Reported by siemensType

CVE-2018-16557: Denial of Service vulnerability in SIMATIC S7-400 CPUs via Ethernet, PROFIBUS, and MP

Reporter	Title	Published	Views	Family All 7
Tenable Nessus	Siemens Simatic Improper Input Validation	8 Nov 201900:00	–	nessus
Tenable Nessus	Siemens S7-400 CPUs Improper Verification of Cryptographic Signature (CVE-2018-16557)	7 Feb 202200:00	–	nessus
Tenable Nessus	Siemens S7-400 CPUs Improper Input Validation (CVE-2018-16556)	7 Feb 202200:00	–	nessus
Prion	Design/Logic Flaw	13 Dec 201816:29	–	prion
NVD	CVE-2018-16557	13 Dec 201816:29	–	nvd
Cvelist	CVE-2018-16557	13 Dec 201816:00	–	cvelist
ICS	Siemens S7-400 CPUs (Update B)	13 Nov 201800:00	–	ics

Nvd

Node

siemens simatic_s7-400_firmwareRange≤v6.0

AND

siemens simatic_s7-400Match-

Node

siemens simatic_s7-400_pn\/dp_v7_firmware

AND

siemens simatic_s7-400_pn\/dp_v7Match-

Node

siemens simatic_s7-400h_firmwareRange≤v4.5

AND

siemens simatic_s7-400hMatch-

Node

siemens simatic_s7-410_firmwareRange<8.2.1

AND

siemens simatic_s7-410Match-

Node

siemens simatic_s7-400h_firmwareRange6.0.0–6.0.9

AND

siemens simatic_s7-400hMatch-

[
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 412-1 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 412-2 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 414-2 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 414-3 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 414-3 PN/DP V7",
    "versions": [
      {
        "version": "All versions < V7.0.3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 414F-3 PN/DP V7",
    "versions": [
      {
        "version": "All versions < V7.0.3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 416-2 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 416-3 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 416-3 PN/DP V7",
    "versions": [
      {
        "version": "All versions < V7.0.3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 416F-2 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 416F-3 PN/DP V7",
    "versions": [
      {
        "version": "All versions < V7.0.3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": " SIMATIC S7-400 CPU 417-4 DP V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC S7-400 CPU 412-2 PN V7",
    "versions": [
      {
        "version": "All versions < V7.0.3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC S7-400 H V4.5 and below CPU family (incl. SIPLUS variants)",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)",
    "versions": [
      {
        "version": "All versions < V6.0.9",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants)",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC S7-410 CPU family (incl. SIPLUS variants)",
    "versions": [
      {
        "version": "All versions < V8.2.1",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIPLUS S7-400 CPU 414-3 PN/DP V7",
    "versions": [
      {
        "version": "All versions < V7.0.3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIPLUS S7-400 CPU 416-3 PN/DP V7",
    "versions": [
      {
        "version": "All versions < V7.0.3",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIPLUS S7-400 CPU 416-3 V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIPLUS S7-400 CPU 417-4 V7",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-113131.pdf

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Dec 2018 16:29Current

7.7High risk

Vulners AI Score7.7

CVSS27.8

CVSS38.2

EPSS0.00108

CWE-347