Siemens SIMATIC S7-1500 Improper Input Validation (CVE-2014-2257)

Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service defect-mode transition via crafted ISO-TSAP packets. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

Siemens SIMATIC S7-1200 CPU Family Denial of Service (CVE-2013-0700)

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service defect-mode transition and control outage via crafted packets to TCP port 102 aka the ISO-TSAP port. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for mo...

CVE-2020-15791

A vulnerability has been identified in SIMATIC S7-300 CPU family incl. related ET200 CPUs and SIPLUS variants All versions, SIMATIC S7-400 CPU family incl. SIPLUS variants All versions, SIMATIC WinAC RTX F 2010 All versions, SINUMERIK 840D sl All versions. The authentication protocol between a...

CVE-2020-15791

A vulnerability has been identified in SIMATIC S7-300 CPU family incl. related ET200 CPUs and SIPLUS variants All versions, SIMATIC S7-400 CPU family incl. SIPLUS variants All versions, SIMATIC WinAC RTX F 2010 All versions, SINUMERIK 840D sl All versions. The authentication protocol between a...

Siemens Simatic Exposure of Sensitive Information to an Unauthorized Actor

A vulnerability has been identified in SIMATIC S7-300 CPU family All versions, SIMATIC S7-300 CPU family incl. related ET200 CPUs and SIPLUS variants All versions, SIMATIC S7-400 PN/DP V6 and below CPU family incl. SIPLUS variants All versions, SIMATIC S7-400 PN/DP V7 CPU family incl. SIPLUS...

CVE-2018-11466

A vulnerability has been identified in SINUMERIK 808D V4.7 All versions, SINUMERIK 808D V4.8 All versions, SINUMERIK 828D V4.7 All versions V4.7 SP6 HF1, SINUMERIK 840D sl V4.7 All versions V4.7 SP6 HF5, SINUMERIK 840D sl V4.8 All versions V4.8 SP3. Specially crafted network packets sent to port...

Siemens SIMATIC PLCs Reported Issues Summary (Update A)

Overview ICS-CERT has been coordinating multiple reports of issues affecting various models within the Siemens SIMATIC Step 7 S7 programmable logic controller PLC product line. ICS-CERT has coordinated the issues with both Siemens and the researcher and continues to work with both entities. A...

CVE-2016-9159

A vulnerability has been identified in SIMATIC S7-300 CPU family All versions, SIMATIC S7-300 CPU family incl. related ET200 CPUs and SIPLUS variants All versions, SIMATIC S7-400 PN/DP V6 and below CPU family incl. SIPLUS variants All versions, SIMATIC S7-400 PN/DP V7 CPU family incl. SIPLUS...

CVE-2016-9159

The vulnerability CVE-2016-9159 affects Siemens SIMATIC S7-300/400 PLC families (including related ET200/SIPLUS variants) where an attacker with network access to port 102/TCP (ISO-TSAP) or via Profibus can obtain credentials if protection-level 2 is configured. The ICS-CISA advisory SSA-731239 d...

CVE-2016-3949

Siemens SIMATIC S7-300 Profinet-enabled CPU devices with firmware before 3.2.12 and SIMATIC S7-300 Profinet-disabled CPU devices with firmware before 3.3.12 allow remote attackers to cause a denial of service defect-mode transition via crafted 1 ISO-TSAP or 2 Profibus packets...

CVE-2016-3949

Siemens SIMATIC S7-300 Profinet-enabled CPU devices with firmware before 3.2.12 and SIMATIC S7-300 Profinet-disabled CPU devices with firmware before 3.3.12 allow remote attackers to cause a denial of service defect-mode transition via crafted 1 ISO-TSAP or 2 Profibus packets...

Siemens Simatic S7 1200 - CPU Command Module (Metasploit)

Exploit Title: Simatic S7 1200 CPU command module Date: 15-12-2015 Exploit Author: Nguyen Manh Hung Vendor Homepage: http://www.siemens.com/ Tested on: Siemens Simatic S7-1214C CVE : None require 'msf/core' class Metasploit3 'Simatic S7-1200 CPU START/STOP Module', 'Description' = %q Update 2015...

Siemens Simatic S7 1200 CPU Command Module (MSF) Exploit

Exploit for hardware platform in category remote exploits Exploit Title: Simatic S7 1200 CPU command module Date: 15-12-2015 Exploit Author: Nguyen Manh Hung Vendor Homepage: http://www.siemens.com/ Tested on: Siemens Simatic S7-1214C CVE : None require 'msf/core' class Metasploit3 'Simatic S7-12...

Siemens Simatic S7 1200 - CPU Command Module (Metasploit)

Siemens Simatic S7 1200 - CPU Command Module Metasploit Exploit Title: Simatic S7 1200 CPU command module Date: 15-12-2015 Exploit Author: Nguyen Manh Hung Vendor Homepage: http://www.siemens.com/ Tested on: Siemens Simatic S7-1214C CVE : None require 'msf/core' class Metasploit3 'Simatic S7-1200...

Design/Logic Flaw

Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service defect-mode transition via crafted ISO-TSAP packets, a different vulnerability than CVE-2014-2257...

CVE-2014-2256

CVE-2014-2256 affects Siemens SIMATIC S7-1200 CPU PLCs with firmware before 4.0. The vulnerability is due to improper input validation in the device’s handling of packets, enabling a remote attacker to trigger a defect-mode transition and cause a denial of service via crafted ISO-TSAP packets. De...

CVE-2014-2257

Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service defect-mode transition via crafted ISO-TSAP packets...

CVE-2014-2257

Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service defect-mode transition via crafted ISO-TSAP packets...

CVE-2014-2257

Affected product: Siemens SIMATIC S7-1500 CPU PLCs with firmware

CVE-2013-0700

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service defect-mode transition and control outage via crafted packets to TCP port 102 aka the ISO-TSAP port...