Lucene search
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OT_500306.NASLHistoryNov 08, 2019 - 12:00 a.m.
Siemens Simatic Exposure of Sensitive Information to an Unauthorized Actor
2019-11-0800:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
EPSS
0.002
Percentile
57.7%
A vulnerability has been identified in SIMATIC S7-300 CPU family (All versions), SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions), SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants) (All versions), SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants) (All versions), SIMATIC S7-400 V6 and earlier CPU family (All versions), SIMATIC S7-400 V7 CPU family (All versions), SIMATIC S7-410 V8 CPU family (All versions), SIMATIC S7-410 V8 CPU family (incl. SIPLUS variants) (All versions). An attacker with network access to port 102/tcp (ISO-TSAP) or via Profibus could obtain credentials from the PLC if protection-level 2 is configured on the affected devices.
File data ot_500306.naslRelated
prion
prion
Design/Logic Flaw
2016-12-17 03:59:00
nvd
nvd
CVE-2016-9159
2016-12-17 03:59:00
cvelist
cvelist
CVE-2016-9159
2016-12-17 03:34:00
cve
cve
CVE-2016-9159
2016-12-17 03:59:00
nessus
nessus
Siemens S7-300/400 PLC (CVE-2016-9159)
2022-02-07 00:00:00
Siemens S7-300/400 PLC (CVE-2016-9158)
2022-02-07 00:00:00
openvas
openvas
Siemens SIMATIC S7-300/400 PLC Multiple Vulnerabilities (SSA-731239)
2016-12-15 00:00:00
ics
ics
Siemens S7-300/400 PLC Vulnerabilities (Update E)
2020-03-10 12:00:00