Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2017-2680
HistoryMay 11, 2017 - 1:29 a.m.

CVE-2017-2680

2017-05-1101:29:05
CWE-400
[email protected]
web.nvd.nist.gov
1

6.1 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:N/I:N/A:C

6.5 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.003 Low

EPSS

Percentile

66.3%

JSON

Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment (Layer 2). Human interaction is required to recover the systems. PROFIBUS interfaces are not affected.

Affected configurations

NVD
Node
siemenssimatic_cp_343-1_stdMatch-
AND
siemenssimatic_cp_343-1_std_firmwareRange<3.1.3
Node
siemenssimatic_cp_343-1_leanMatch-
AND
siemenssimatic_cp_343-1_lean_firmwareRange<3.1.3
Node
siemenssimatic_cp_343-1_advMatch-
AND
siemenssimatic_cp_343-1_adv_firmware
Node
siemenssimatic_cp_443-1_stdMatch-
AND
siemenssimatic_cp_443-1_std_firmwareRange<3.2.17
Node
siemenssimatic_cp_443-1_advMatch-
AND
siemenssimatic_cp_443-1_adv_firmwareRange<3.2.17
Node
siemenssimatic_cp_443-1_opc-uaMatch-
AND
siemenssimatic_cp_443-1_opc-ua_firmware
Node
siemenssimatic_cp_1243-1Match-
AND
siemenssimatic_cp_1243-1_firmwareRange<2.1.82
Node
siemenssimatic_cm_1542-1_firmwareRange<2.0
AND
siemenssimatic_cm_1542-1Match-
Node
siemenssimatic_cp_1542sp-1_firmwareRange<1.0.15
AND
siemenssimatic_cp_1542sp-1Match-
Node
siemenssimatic_cp_1542sp-1_irc_firmwareRange<1.0.15
AND
siemenssimatic_cp_1542sp-1_ircMatch-
Node
siemenssimatic_cp_1543sp-1_firmwareRange<1.0.15
AND
siemenssimatic_cp_1543sp-1Match-
Node
siemenssimatic_cp_1543-1_firmwareRange<2.1
AND
siemenssimatic_cp_1543-1Match-
Node
siemenssimatic_rf650r_firmwareRange<3.0
AND
siemenssimatic_rf650rMatch-
Node
siemenssimatic_rf680r_firmwareRange<3.0
AND
siemenssimatic_rf680rMatch-
Node
siemenssimatic_rf685r_firmwareRange<3.0
AND
siemenssimatic_rf685rMatch-
Node
siemenssimatic_cp_1616_firmwareRange<2.7
AND
siemenssimatic_cp_1616Match-
Node
siemenssimatic_cp_1604_firmwareRange<2.7
AND
siemenssimatic_cp_1604Match-
Node
siemenssimatic_dk-1616_pn_io_firmwareRange<2.7
AND
siemenssimatic_dk-1616_pn_ioMatch-
Node
siemensscalance_x200_firmwareRange<5.2.2
AND
siemensscalance_x200Match-
Node
siemensscalance_x200_irt_firmwareRange<5.4.0
AND
siemensscalance_x200_irtMatch-
Node
siemensscalance_x300_firmwareRange<4.1.0
AND
siemensscalance_x300Match-
Node
siemensscalance_x408_firmwareRange<4.1.0
AND
siemensscalance_x408Match-
Node
siemensscalance_x414_firmwareRange<3.10.2
AND
siemensscalance_x414Match-
Node
siemensscalance_xm400_firmwareRange<6.1
AND
siemensscalance_xm400Match-
Node
siemensscalance_xr500_firmwareRange<6.1
AND
siemensscalance_xr500Match-
Node
siemensscalance_w700_firmwareRange<6.1
AND
siemensscalance_w700Match-
Node
siemensscalance_m-800_firmwareRange<4.03
AND
siemensscalance_m-800Match-
Node
siemensscalance_s615_firmwareRange<4.03
AND
siemensscalance_s615Match-
Node
siemenssoftnet_profinet_io_firmwareRange<14
OR
siemenssoftnet_profinet_io_firmwareMatch14-
AND
siemenssoftnet_profinet_ioMatch-
Node
siemensie\/pb-link_firmwareRange<3.0
AND
siemensie\/pb-linkMatch-
Node
siemensie\/as-i_link_pn_io_firmware
AND
siemensie\/as-i_link_pn_ioMatch-
Node
siemenssimatic_teleservice_adapter_ie_standard_firmware
AND
siemenssimatic_teleservice_adapter_ie_standardMatch-
Node
siemenssimatic_teleservice_adapter_ie_basic_firmware
AND
siemenssimatic_teleservice_adapter_ie_basicMatch-
Node
siemenssimatic_teleservice_adapter_ie_advanced_firmware
AND
siemenssimatic_teleservice_adapter_ie_advanced_modemMatch-
Node
siemenssitop_psu8600_firmwareRange<1.2.0
AND
siemenssitop_psu8600Match-
Node
siemensups1600_profinet_firmwareRange<2.2.0
AND
siemensups1600_profinetMatch-
Node
siemenssimatic_et_200al_firmwareRange<1.0.2
AND
siemenssimatic_et_200alMatch-
Node
siemenssimatic_et_200ecopn_firmware
AND
siemenssimatic_et_200ecopnMatch-
Node
siemenssimatic_et_200m_firmware
AND
siemenssimatic_et_200mMatch-
Node
siemenssimatic_et_200mp_firmwareRange<4.0.1
AND
siemenssimatic_et_200mpMatch-
Node
siemenssimatic_et_200pro_firmware
AND
siemenssimatic_et_200proMatch-
Node
siemenssimatic_et_200s_firmware
AND
siemenssimatic_et_200sMatch-
Node
siemenssimatic_et_200sp_firmwareRange<4.1.0
AND
siemenssimatic_et_200spMatch-
Node
siemenspn\/pn_coupler_firmwareRange<4.0
AND
siemenspn\/pn_couplerMatch-
Node
siemensdk_standard_ethernet_controller_firmwareRange<4.1.1
OR
siemensdk_standard_ethernet_controller_firmwareMatch4.1.1-
AND
siemensdk_standard_ethernet_controllerMatch-
Node
siemensek-ertec_200p_pn_io_firmwareRange<4.4.0
OR
siemensek-ertec_200p_pn_io_firmwareMatch4.4.0-
AND
siemensek-ertec_200p_pn_ioMatch-
Node
siemensek-ertec_200_pn_io_firmwareRange<4.2.1
OR
siemensek-ertec_200_pn_io_firmwareMatch4.2.1-
AND
siemensek-ertec_200_pn_ioMatch-
Node
siemenssimatic_s7-200_smart_firmwareRange<2.3
AND
siemenssimatic_s7-200_smartMatch-
Node
siemenssimatic_s7-300_firmwareMatch-
AND
siemenssimatic_s7-300Match-
Node
siemenssimatic_s7-400_firmwareRange<6.0.6
AND
siemenssimatic_s7-400Match-
Node
siemenssimatic_s7-1200_firmwareRange<4.2.1
AND
siemenssimatic_s7-1200Match-
Node
siemenssimatic_s7-1500_firmwareRange<2.1
AND
siemenssimatic_s7-1500Match-
Node
siemenssimatic_s7-1500_software_controller_firmwareRange<2.1
AND
siemenssimatic_s7-1500_software_controllerMatch-
Node
siemenssimatic_winac_rtx_firmwareRange<2010
OR
siemenssimatic_winac_rtx_firmwareMatch2010-
AND
siemenssimatic_winac_rtxMatch-
Node
siemenssirius_act_3su1_firmwareRange<1.1.0
AND
siemenssirius_act_3su1Match-
Node
siemenssirius_soft_starter_3rw44_pn_firmware
AND
siemenssirius_soft_starter_3rw44_pnMatch-
Node
siemenssirius_motor_starter_m200d_profinet_firmware
AND
siemenssirius_motor_starter_m200d_profinetMatch-
Node
siemenssimocode_pro_v_profinet_firmwareRange<2.0.0
AND
siemenssimocode_pro_v_profinetMatch-
Node
siemenssinamics_dcm_firmwareRange<1.4
OR
siemenssinamics_dcm_firmwareMatch1.4-
OR
siemenssinamics_dcm_firmwareMatch1.4sp1
AND
siemenssinamics_dcmMatch-
Node
siemenssinamics_dcp_firmwareRange<1.2
OR
siemenssinamics_dcp_firmwareMatch1.2-
AND
siemenssinamics_dcpMatch-
Node
siemenssinamics_g110m_firmwareRange<4.7
OR
siemenssinamics_g110m_firmwareMatch4.7-
AND
siemenssinamics_g110mMatch-
Node
siemenssinamics_g120\(c\/p\/d\)_w._pn_firmwareRange<4.7
OR
siemenssinamics_g120\(c\/p\/d\)_w._pn_firmwareMatch4.7-
AND
siemenssinamics_g120\(c\/p\/d\)_w._pnMatch-
Node
siemenssinamics_g130_firmwareRange<4.7
OR
siemenssinamics_g130_firmwareMatch4.7-
AND
siemenssinamics_g130Match-
Node
siemenssinamics_g150_firmwareRange<4.7
OR
siemenssinamics_g150_firmwareMatch4.7-
AND
siemenssinamics_g150Match-
Node
siemenssinamics__s110_pn_firmwareRange<4.4
OR
siemenssinamics__s110_pn_firmwareMatch4.4-
AND
siemens_s110_pnMatch-
Node
siemenssinamics_s120_firmwareRange<4.7
OR
siemenssinamics_s120_firmwareMatch4.7-
AND
siemenssinamics_s120Match-
Node
siemenssinamics_s150_firmwareRange<4.7
OR
siemenssinamics_s150_firmwareMatch4.7-
AND
siemenssinamics_s150Match-
Node
siemenssinamics_v90_pn_firmwareRange<1.01
AND
siemenssinamics_v90_pnMatch-
Node
siemenssimotion_firmwareRange<4.5
OR
siemenssimotion_firmwareMatch4.5-
AND
siemenssimotionMatch-
Node
siemenssinumerik_828d_firmwareRange<4.5
OR
siemenssinumerik_828d_firmwareMatch4.5-
AND
siemenssinumerik_828dMatch-
Node
siemenssinumerik_840d_sl_firmwareRange<4.5
OR
siemenssinumerik_840d_sl_firmwareMatch4.5-
AND
siemenssinumerik_840d_slMatch-
Node
siemenssimatic_hmi_comfort_panelsRange<15.1
AND
siemenssimatic_hmi_comfort_panelsMatch-
Node
siemenssimatic_hmi_multi_panelsRange<15.1
AND
siemenssimatic_hmi_multi_panelsMatch-
Node
siemenssimatic_hmi_mobile_panelsMatch-
AND
siemenssimatic_hmi_mobile_panelsRange<15.1
Node
siemenssimatic_cp_1243-1_irc_firmwareRange<2.1.82
AND
siemenssimatic_cp_1243-1_ircMatch-
Node
siemenssimatic_cp_1243-1_iec_firmware
AND
siemenssimatic_cp_1243-1_iecMatch-
Node
siemenssimatic_cp_1243-1_dnp3_firmware
AND
siemenssimatic_cp_1243-1_dnp3Match-
Node
siemenssimatic_dk-1604_pn_io_firmwareRange<2.7
AND
siemenssimatic_dk-1604_pn_ioMatch-
Node
siemenssimatic_tdc_cpu555_firmwareRange<1.1.1
AND
siemenssimatic_tdc_cpu555Match-
Node
siemenssimatic_tdc_cp51m1_firmwareRange<1.1.8
AND
siemenssimatic_tdc_cp51m1Match-
Node
siemenssinamics_gh150_firmwareRange<4.7
OR
siemenssinamics_gh150_firmwareMatch4.7-
AND
siemenssinamics_gh150Match-
Node
siemenssinamics_gl150_firmwareRange<4.8
OR
siemenssinamics_gl150_firmwareMatch4.8-
AND
siemenssinamics_gl150Match-
Node
siemenssinamics_gm150_firmwareRange<4.7
OR
siemenssinamics_gm150_firmwareMatch4.7-
AND
siemenssinamics_gm150Match-
Node
siemenssinamics_sl150_firmwareRange<4.8
OR
siemenssinamics_sl150_firmwareMatch4.8-
AND
siemenssinamics_sl150Match-
Node
siemenssinamics_sm120_firmwareRange<4.8
OR
siemenssinamics_sm120_firmwareMatch4.8-
AND
siemenssinamics_sm120Match-
Node
siemensextension_unit_12_profinet_firmwareRange<01.01.01
AND
siemensextension_unit_12_profinetMatch-
Node
siemensextension_unit_15_profinet_firmwareRange<01.01.01
AND
siemensextension_unit_15_profinetMatch-
Node
siemensextension_unit_19_profinet_firmwareRange<01.01.01
AND
siemensextension_unit_19_profinetMatch-
Node
siemensextension_unit_22_profinet_firmwareRange<01.01.01
AND
siemensextension_unit_22_profinetMatch-
Node
siemenssimatic_cp_1242-7_gprs_firmwareRange<2.1.82
AND
siemenssimatic_cp_1242-7_gprsMatch-
Node
siemenssimatic_cp_1243-7_lte\/us_firmwareRange<2.1.82
AND
siemenssimatic_cp_1243-7_lte\/usMatch-
Node
siemenssimatic_cp_1243-8_firmwareRange<2.1.82
AND
siemenssimatic_cp_1243-8Match-
Node
siemenssimatic_cp_1626_firmwareRange<1.1
AND
siemenssimatic_cp_1626Match-

Related

cve 1
nessus 2
cvelist 1
ics 14
prion 1
openvas 1
cve
cve
CVE-2017-2680
2017-05-11 01:29:05
nessus
nessus
Siemens PROFINET DCP Uncontrolled Resource Consumption (CVE-2017-2680)
2022-02-07 00:00:00
Siemens Simatic Improper Input Validation
2019-11-08 00:00:00
cvelist
cvelist
CVE-2017-2680
2017-05-11 01:00:00
ics
ics
Siemens Industrial Products (Update A)
2019-02-12 12:00:00
Siemens devices using the PROFINET Discovery and Configuration Protocol (Update J)
2017-05-09 00:00:00
Siemens devices using the PROFINET Discovery and Configuration Protocol (Update A)
2017-05-09 00:00:00
prion
prion
Design/Logic Flaw
2017-05-11 01:29:00
openvas
openvas
Siemens SIMATIC S7 PLC Multiple Vulnerabilities (SSA-293562)
2017-08-18 00:00:00

6.1 Medium

CVSS2

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:N/I:N/A:C

6.5 Medium

CVSS3

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.003 Low

EPSS

Percentile

66.3%

JSON
Related for NVD:CVE-2017-2680
cve1nessus2cvelist1ics14prion1openvas1