Sinamics S120 Firmware Security Vulnerabilities and Issues — Sinamics S120 Firmware CVE List

cve

CVE-2017-12741

Specially crafted packets sent to port 161/udp could cause a denial of service condition. The affected devices must be restarted manually.

7.5CVSS

6.6AI Score

0.005EPSS

2017-12-26 04:29 AM

68

cve

CVE-2017-2680

Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment (Layer 2). Human interaction is required to recover the systems. PROFIBUS interfaces are not affected.

6.5CVSS

6AI Score

0.003EPSS

2017-05-11 01:29 AM

83

cve

CVE-2017-2681

Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected.

6.5CVSS

6.1AI Score

0.002EPSS

2017-05-11 10:29 AM

67

2

cve

CVE-2019-10923

An attacker with network access to an affected product may cause a denial of service condition by breaking the real-time synchronization (IRT) of the affected installation.

7.5CVSS

7.3AI Score

0.001EPSS

2019-10-10 02:15 PM

82

cve

CVE-2019-10936

Affected devices improperly handle large amounts of specially crafted UDP packets. This could allow an unauthenticated remote attacker to trigger a denial of service condition.

7.5CVSS

7.5AI Score

0.002EPSS

2019-10-10 02:15 PM

94

cve

CVE-2019-6568

The webserver of the affected devices contains a vulnerability that may lead toa denial of service condition. An attacker may cause a denial of servicesituation which leads to a restart of the webserver of the affected device. The security vulnerability could be exploited by an attacker with networ...

7.5CVSS

7.3AI Score

0.001EPSS

2019-04-17 02:29 PM

79

cve

CVE-2022-47374

A vulnerability has been identified in SIMATIC PC-Station Plus (All versions), SIMATIC S7-400 CPU 412-2 PN V7 (All versions), SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions), SIMATIC S7-400 CPU 416...

7.5CVSS

7.3AI Score

0.0005EPSS

2023-12-12 12:15 PM

15

cve

CVE-2022-47375

A vulnerability has been identified in SIMATIC PC-Station Plus (All versions), SIMATIC S7-400 CPU 412-2 PN V7 (All versions), SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions), SIMATIC S7-400 CPU 416...

7.5CVSS

7.5AI Score

0.0005EPSS

2023-12-12 12:15 PM

23