Details of VAR-201611-0393

ID

VAR-201611-0393

TITLE

Siemens SIMATIC S7-300/1200/1500 CPU Denial of service vulnerability

Trust: 0.8

sources: IVD: 19a29ce8-7b67-49d6-8194-3aae6818ef7c // CNVD: CNVD-2016-11519

DESCRIPTION

Siemens SIMATIC S7-300, 1200, 1500 CPU is a modular universal controller for the manufacturing industry of Siemens, Germany. It is widely used in important industrial control sites such as tobacco, petrochemical and water. A denial of service vulnerability exists in the Siemens SIMATIC S7-300/1200/1500 CPU. Since the Siemens S7-300, 1200, and 1500 CPUs refuse service when communicating with the ProfinetIO Layer 2 network packet of a specific configuration, the CPU enters the failure mode and needs to be manually restarted for recovery. The attacker exploits the vulnerability to directly obtain the target information through the secondary MAC broadcast to initiate a denial of service attack

Trust: 0.72

sources: CNVD: CNVD-2016-11519 // IVD: 19a29ce8-7b67-49d6-8194-3aae6818ef7c

IOT TAXONOMY

category:	['ICS', 'Network device']	sub_category:	-	Trust: 0.6
category:	['ICS']	sub_category:	-	Trust: 0.2

sources: IVD: 19a29ce8-7b67-49d6-8194-3aae6818ef7c // CNVD: CNVD-2016-11519

AFFECTED PRODUCTS

vendor:	siemens	model:	simatic s7-1200 cpu	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	simatic s7-300 cpu	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	simatic s7-1500 cpu	scope:	-	version:	-	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu siemens simatic s7-300 cpu siemens simatic s7-1500 cpu	scope:	eq	version:	*	Trust: 0.2

sources: IVD: 19a29ce8-7b67-49d6-8194-3aae6818ef7c // CNVD: CNVD-2016-11519

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2016-11519
value:	HIGH
Trust: 0.6
IVD:	19a29ce8-7b67-49d6-8194-3aae6818ef7c
value:	HIGH
Trust: 0.2

CNVD:	CNVD-2016-11519
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	19a29ce8-7b67-49d6-8194-3aae6818ef7c
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2

sources: IVD: 19a29ce8-7b67-49d6-8194-3aae6818ef7c // CNVD: CNVD-2016-11519

TYPE

Input validation

Trust: 0.2

sources: IVD: 19a29ce8-7b67-49d6-8194-3aae6818ef7c

PATCH

title:

To be determined

url:

https://www.cnvd.org.cn/patchinfo/show/84250

Trust: 0.6

sources: CNVD: CNVD-2016-11519

EXTERNAL IDS

db:	CNVD	id:	CNVD-2016-11519	Trust: 0.8
db:	IVD	id:	19A29CE8-7B67-49D6-8194-3AAE6818EF7C	Trust: 0.2

sources: IVD: 19a29ce8-7b67-49d6-8194-3aae6818ef7c // CNVD: CNVD-2016-11519

SOURCES

db:	IVD	id:	19a29ce8-7b67-49d6-8194-3aae6818ef7c
db:	CNVD	id:	CNVD-2016-11519

LAST UPDATE DATE

2022-05-17T01:55:51.974000+00:00

SOURCES UPDATE DATE

db:

CNVD

id:

CNVD-2016-11519

date:

2019-08-22T00:00:00

SOURCES RELEASE DATE

db:	IVD	id:	19a29ce8-7b67-49d6-8194-3aae6818ef7c	date:	2016-11-25T00:00:00
db:	CNVD	id:	CNVD-2016-11519	date:	2017-02-17T00:00:00