Simatic S7-1200 Firmware Security Vulnerabilities and Issues — Simatic S7-1200 Firmware CVE List

Lucene search

SiemensSimatic S7-1200 Firmware

10 matches found

CVE•added 2017/05/11 1:29 a.m.•129 views

CVE-2017-2680

Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment (Layer 2). Human interaction is required to recover the systems. PROFIBUS interfaces are not affected.

7.1CVSS6AI score0.02335EPSS

CVE•added 2021/07/13 11:15 a.m.•120 views

CVE-2020-28400

Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a denial of service condition. The vulnerability can be triggered if a large amount of DCP reset packets are sent to the device.

8.7CVSS7.5AI score0.00903EPSS

CVE•added 2017/12/26 4:29 a.m.•83 views

CVE-2017-12741

Specially crafted packets sent to port 161/udp could cause a denial of service condition. The affected devices must be restarted manually.

8.7CVSS6.6AI score0.03944EPSS

CVE•added 2017/05/11 10:29 a.m.•83 views

CVE-2017-2681

Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected.

7.1CVSS6.1AI score0.00442EPSS

CVE•added 2012/10/10 6:55 p.m.•70 views

CVE-2012-3040

Cross-site scripting (XSS) vulnerability in the web server on Siemens SIMATIC S7-1200 PLCs 2.x through 3.0.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URI.

4.3CVSS5.7AI score0.01214EPSS

CVE•added 2018/12/13 4:29 p.m.•57 views

CVE-2018-13815

A vulnerability has been identified in SIMATIC S7-1200 (All versions), SIMATIC S7-1500 (All Versions

7.5CVSS7.2AI score0.00451EPSS

CVE•added 2012/09/25 11:7 a.m.•53 views

CVE-2012-3037

The Siemens SIMATIC S7-1200 2.x PLC does not properly protect the private key of the SIMATIC CONTROLLER Certification Authority certificate, which allows remote attackers to spoof the S7-1200 web server by using this key to create a forged certificate.

4.3CVSS6.6AI score0.00642EPSS

CVE•added 2013/04/22 3:27 a.m.•49 views

CVE-2013-0700

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage) via crafted packets to TCP port 102 (aka the ISO-TSAP port).

7.8CVSS6.7AI score0.00342EPSS

CVE•added 2013/04/22 3:27 a.m.•48 views

CVE-2013-2780

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage) via crafted packets to UDP port 161 (aka the SNMP port).

7.8CVSS6.7AI score0.00342EPSS

CVE•added 2019/12/12 2:15 p.m.•42 views

CVE-2019-13945

A vulnerability has been identified in SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions), SIMATIC S7-1200 CPU family < V4.x (incl. SIPLUS variants) (All versions), SIMATIC S7-1200 CPU family V4.x (incl. SIPLUS variants) (All versions with Function State (FS) < 11), SIMATIC S7-...

6.8CVSS6.3AI score0.00145EPSS