A vulnerability has been identified in SIMATIC S7-400 (incl. F) CPU hardware version 4.0 and below (All versions), SIMATIC S7-400 (incl. F) CPU hardware version 5.0 (All firmware versions < V5.2), SIMATIC S7-400H CPU hardware version 4.5 and below (All versions). The affected CPUs improperly validate S7 communication packets which could cause a Denial-of-Service condition of the CPU. The CPU will remain in DEFECT mode until manual restart.
[
{
"product": "SIMATIC S7-400 (incl. F) CPU hardware version 4.0 and below, SIMATIC S7-400 (incl. F) CPU hardware version 5.0, SIMATIC S7-400H CPU hardware version 4.5 and below",
"vendor": "Siemens AG",
"versions": [
{
"status": "affected",
"version": "SIMATIC S7-400 (incl. F) CPU hardware version 4.0 and below : All versions"
},
{
"status": "affected",
"version": "SIMATIC S7-400 (incl. F) CPU hardware version 5.0 : All firmware versions < V5.2"
},
{
"status": "affected",
"version": "SIMATIC S7-400H CPU hardware version 4.5 and below : All versions"
}
]
}
]