Details of VAR-201705-3221

ID

VAR-201705-3221

CVE

CVE-2017-2681

TITLE

Siemens SIMATIC HMI Denial of service vulnerability

Trust: 0.8

sources: IVD: 33467505-7492-4ae1-b978-12f61201709a // CNVD: CNVD-2017-06153

DESCRIPTION

Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected. SIMATIC HMI is an industrial device from Siemens AG, Germany. The SIMATIC HMI panels are used for operator control and monitoring of machines and equipment. Multiple Siemens Products is prone to multiple denial-of-service vulnerabilities. Attackers can exploit these issues to cause a denial-of-service condition. Manual restart of the server is required to resume normal operation. A vulnerability has been identified in SIMATIC CP 343-1 Std (All versions), SIMATIC CP 343-1 Lean (All versions), SIMATIC CP 343-1 Adv (All versions), SIMATIC CP 443-1 Std (All versions < V3.2.17), SIMATIC CP 443-1 Adv (All versions < V3.2.17), SIMATIC CP 443-1 OPC-UA (All versions), SIMATIC CP 1243-1 (All versions < V2.1.82), SIMATIC CP 1243-1 IRC (All versions < V2.1.82), SIMATIC CP 1243-1 IEC (All versions), SIMATIC CP 1243-1 DNP3 (All versions), SIMATIC CM 1542-1 (All versions < V2.0), SIMATIC CM 1542SP-1 (All versions < V1.0.15), SIMATIC CP 1542SP-1 IRC (All versions < V1.0.15), SIMATIC CP 1543SP-1 (All versions < V1.0.15), SIMATIC CP 1543-1 (All versions < V2.1), SIMATIC RF650R (All versions < V3.0), SIMATIC RF680R (All versions < V3.0), SIMATIC RF685R (All versions < V3.0), SIMATIC CP 1616 (All versions < V2.7), SIMATIC CP 1604 (All versions < V2.7), SIMATIC DK-16xx PN IO (All versions < V2.7), SCALANCE X-200 (All versions < V5.2.2), SCALANCE X-200 IRT (All versions), SCALANCE X-300/X408 (All versions < V4.1.0), SCALANCE X414 (All versions < V3.10.2), SCALANCE XM400 (All versions < V6.1), SCALANCE XR500 (All versions < V6.1), SCALANCE W700 (All versions < V6.1), SCALANCE M-800, S615 (All versions < V4.03), Softnet PROFINET IO for PC-based Windows systems (All versions < V14 SP1), IE/PB-Link (All versions < V3.0), IE/AS-i Link PN IO (All versions), SIMATIC Teleservice Adapter Standard Modem, IE Basic, IE Advanced (All versions), SITOP PSU8600 PROFINET (All versions < V1.2.0), SITOP UPS1600 PROFINET (All versions < V2.2.0), SIMATIC ET 200AL (All versions < V1.0.2), SIMATIC ET 200ecoPN (All versions), SIMATIC ET 200M (All versions), SIMATIC ET 200MP IM155-5 PN BA (All versions < V4.0.1), SIMATIC ET 200MP IM155-5 PN ST (All versions < V4.1), SIMATIC ET 200MP (except IM155-5 PN BA and IM155-5 PN ST) (All versions), SIMATIC ET 200pro (All versions), SIMATIC ET 200S (All versions), SIMATIC ET 200SP IM155-6 PN ST (All versions < V4.1.0), SIMATIC ET 200SP (except IM155-6 PN ST) (All versions), SIMATIC PN/PN Coupler (All versions < V4.0), Development/Evaluation Kit DK Standard Ethernet Controller (All versions < V4.1.1 Patch04), Development/Evaluation Kit EK-ERTEC 200P (All versions < V4.4.0 Patch01), Development/Evaluation Kit EK-ERTEC 200 (All versions < V4.2.1 Patch03), SIMATIC S7-200 SMART (All versions < V2.3), SIMATIC S7-300 incl. F and T (All versions < V3.X.14), SIMATIC S7-400 PN/DP V6 Incl. F (All versions < V6.0.6), SIMATIC S7-400-H V6 (All versions < V6.0.7), SIMATIC S7-400 PN/DP V7 Incl. F (All versions < V7.0.2), SIMATIC S7-410 (All versions < V8.2), SIMATIC S7-1200 incl. F (All versions < V4.2.1), SIMATIC S7-1500 incl. F, T, and TF (All versions < V2.1), SIMATIC S7-1500 Software Controller incl. F (All versions < V2.1), SIMATIC WinAC RTX 2010 incl. F (All versions), SIRIUS ACT 3SU1 interface module PROFINET (All versions), SIRIUS Soft Starter 3RW44 PN (All versions), SIRIUS Motor Starter M200D PROFINET (All versions), SIMOCODE pro V PROFINET (All versions < V2.0.0), SINAMICS DCM w. PN (All versions < V1.4 SP1 HF5), SINAMICS DCP w. PN (All versions < V1.2 HF 1), SINAMICS G110M w. PN (All versions < V4.7 SP6 HF3), SINAMICS G120(C/P/D) w. PN (All versions < V4.7 SP6 HF3), SINAMICS G130 V4.7 w. PN (All versions < V4.7 HF27), SINAMICS G150 V4.7 w. PN (V4.7: All versions < V4.7 HF27), SINAMICS G130 V4.8 w. PN (All versions < V4.8 HF4), SINAMICS G150 V4.8 w. PN (All versions < V4.8 HF4), SINAMICS S110 w. PN (All versions < V4.4 SP3 HF5), SINAMICS S120 V4.7 w. PN (All versions < V4.7 HF27), and others. This vulnerability affects only SIMATIC HMI Multi Panels and HMI Mobile Panels, and S7-300/S7-400 devices. Siemens SIMATIC S7-300 F, etc. Siemens SIMATIC S7-300 F is a process controller. SIMATIC HMI Comfort Panels are touch screens

Trust: 2.7

sources: NVD: CVE-2017-2681 // JVNDB: JVNDB-2017-004135 // CNVD: CNVD-2017-06153 // BID: 98369 // IVD: 33467505-7492-4ae1-b978-12f61201709a // VULHUB: VHN-110884

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.8

sources: IVD: 33467505-7492-4ae1-b978-12f61201709a // CNVD: CNVD-2017-06153

AFFECTED PRODUCTS

vendor:	siemens	model:	sinumerik 840d sl	scope:	eq	version:	4.7	Trust: 1.6
vendor:	siemens	model:	sinumerik 840d sl	scope:	eq	version:	4.5	Trust: 1.6
vendor:	siemens	model:	sinumerik 828d	scope:	eq	version:	4.7	Trust: 1.6
vendor:	siemens	model:	sinumerik 828d	scope:	eq	version:	4.5	Trust: 1.6
vendor:	siemens	model:	simatic hmi comfort panels	scope:	-	version:	-	Trust: 1.4
vendor:	siemens	model:	simatic hmi mobile panels	scope:	-	version:	-	Trust: 1.4
vendor:	siemens	model:	sinamics dcp	scope:	eq	version:	1.2	Trust: 1.0
vendor:	siemens	model:	simatic cp 343-1 lean	scope:	lt	version:	3.1.3	Trust: 1.0
vendor:	siemens	model:	sinamics g150	scope:	eq	version:	4.7	Trust: 1.0
vendor:	siemens	model:	sinamics g130	scope:	eq	version:	4.7	Trust: 1.0
vendor:	siemens	model:	scalance s615	scope:	lt	version:	4.03	Trust: 1.0
vendor:	siemens	model:	simatic rf685r	scope:	lt	version:	3.0	Trust: 1.0
vendor:	siemens	model:	simotion	scope:	eq	version:	4.5	Trust: 1.0
vendor:	siemens	model:	simatic et 200mp	scope:	lt	version:	4.0.1	Trust: 1.0
vendor:	siemens	model:	simatic cp 1543sp-1	scope:	lt	version:	1.0.15	Trust: 1.0
vendor:	siemens	model:	sitop psu8600	scope:	lt	version:	1.2.0	Trust: 1.0
vendor:	siemens	model:	softnet profinet io	scope:	eq	version:	14	Trust: 1.0
vendor:	siemens	model:	simatic et 200m	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic hmi comfort panels	scope:	lt	version:	15.1	Trust: 1.0
vendor:	siemens	model:	ek-ertec 200 pn io	scope:	lt	version:	4.2.1	Trust: 1.0
vendor:	siemens	model:	simatic cm 1542sp-1	scope:	lt	version:	1.0.15	Trust: 1.0
vendor:	siemens	model:	sinamics g120\ pn	scope:	lt	version:	4.7	Trust: 1.0
vendor:	siemens	model:	simatic cp 1616	scope:	lt	version:	2.7	Trust: 1.0
vendor:	siemens	model:	simatic cp 443-1 std	scope:	lt	version:	3.2.17	Trust: 1.0
vendor:	siemens	model:	ie\/as-i link pn io	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	sinamics dcm	scope:	eq	version:	1.4	Trust: 1.0
vendor:	siemens	model:	simatic s7-300	scope:	lt	version:	3.3.17	Trust: 1.0
vendor:	siemens	model:	simatic s7-200 smart	scope:	lt	version:	2.3	Trust: 1.0
vendor:	siemens	model:	ups1600 profinet	scope:	lt	version:	2.2.0	Trust: 1.0
vendor:	siemens	model:	sinamics dcp	scope:	lt	version:	1.2	Trust: 1.0
vendor:	siemens	model:	pn\/pn coupler	scope:	lt	version:	4.0	Trust: 1.0
vendor:	siemens	model:	simatic winac rtx	scope:	lt	version:	2010	Trust: 1.0
vendor:	siemens	model:	simatic cp 1543sp-1	scope:	lt	version:	2.1	Trust: 1.0
vendor:	siemens	model:	sinumerik 840d sl	scope:	lt	version:	4.7	Trust: 1.0
vendor:	siemens	model:	simatic cp 443-1 adv	scope:	lt	version:	3.2.17	Trust: 1.0
vendor:	siemens	model:	dk standard ethernet controller	scope:	lt	version:	4.1.1	Trust: 1.0
vendor:	siemens	model:	simatic cp 343-1 std	scope:	lt	version:	3.1.3	Trust: 1.0
vendor:	siemens	model:	scalance x408	scope:	lt	version:	4.1.0	Trust: 1.0
vendor:	siemens	model:	sinamics g150	scope:	lt	version:	4.7	Trust: 1.0
vendor:	siemens	model:	ek-ertec 200p pn io	scope:	eq	version:	4.4.0	Trust: 1.0
vendor:	siemens	model:	simatic cp 1243-1 iec	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic cp 343-1 adv	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	softnet profinet io	scope:	lt	version:	14	Trust: 1.0
vendor:	siemens	model:	sinumerik 840d sl	scope:	lt	version:	4.5	Trust: 1.0
vendor:	siemens	model:	simatic hmi multi panels	scope:	lt	version:	15.1	Trust: 1.0
vendor:	siemens	model:	simatic cm 1542-1	scope:	lt	version:	2.0	Trust: 1.0
vendor:	siemens	model:	sinamics s120	scope:	eq	version:	4.7	Trust: 1.0
vendor:	siemens	model:	simatic teleservice adapter ie basic modem	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	sinamics v90 pn	scope:	lt	version:	1.01	Trust: 1.0
vendor:	siemens	model:	simatic cp 443-1 opc-ua	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	scalance xm400	scope:	lt	version:	6.1	Trust: 1.0
vendor:	siemens	model:	simatic winac rtx	scope:	eq	version:	2010	Trust: 1.0
vendor:	siemens	model:	simatic s7-1500 software controller	scope:	lt	version:	2.1	Trust: 1.0
vendor:	siemens	model:	simatic teleservice adapter standard modem	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic teleservice adapter ie advanced modem	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic hmi mobile panels	scope:	lt	version:	15.1	Trust: 1.0
vendor:	siemens	model:	sinamics g110m	scope:	eq	version:	4.7	Trust: 1.0
vendor:	siemens	model:	simatic et 200pro	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic s7-1200	scope:	lt	version:	4.2.1	Trust: 1.0
vendor:	siemens	model:	simatic tdc cpu555	scope:	lt	version:	1.1.1	Trust: 1.0
vendor:	siemens	model:	scalance xr500	scope:	lt	version:	6.1	Trust: 1.0
vendor:	siemens	model:	simatic cp 1604	scope:	lt	version:	2.7	Trust: 1.0
vendor:	siemens	model:	sinamics s110 pn	scope:	lt	version:	4.4	Trust: 1.0
vendor:	siemens	model:	dk standard ethernet controller	scope:	eq	version:	4.1.1	Trust: 1.0
vendor:	siemens	model:	simatic cp 1243-1 irc	scope:	lt	version:	2.1.82	Trust: 1.0
vendor:	siemens	model:	simatic cp 1542sp-1 irc	scope:	lt	version:	1.0.15	Trust: 1.0
vendor:	siemens	model:	simatic s7-400	scope:	lt	version:	6.0.6	Trust: 1.0
vendor:	siemens	model:	sirius act 3su1	scope:	lt	version:	1.1.0	Trust: 1.0
vendor:	siemens	model:	sinamics s150	scope:	eq	version:	4.7	Trust: 1.0
vendor:	siemens	model:	scalance x200	scope:	lt	version:	5.2.2	Trust: 1.0
vendor:	siemens	model:	sinamics dcm	scope:	lt	version:	1.4	Trust: 1.0
vendor:	siemens	model:	simatic et 200al	scope:	lt	version:	1.0.2	Trust: 1.0
vendor:	siemens	model:	simatic rf650r	scope:	lt	version:	3.0	Trust: 1.0
vendor:	siemens	model:	ek-ertec 200p pn io	scope:	lt	version:	4.4.0	Trust: 1.0
vendor:	siemens	model:	simatic dk-16xx pn io	scope:	lt	version:	2.7	Trust: 1.0
vendor:	siemens	model:	sinamics s120	scope:	lt	version:	4.7	Trust: 1.0
vendor:	siemens	model:	sinumerik 828d	scope:	lt	version:	4.7	Trust: 1.0
vendor:	siemens	model:	scalance x300	scope:	lt	version:	4.1.0	Trust: 1.0
vendor:	siemens	model:	ie\/pb-link	scope:	lt	version:	3.0	Trust: 1.0
vendor:	siemens	model:	sinamics s110 pn	scope:	eq	version:	4.4	Trust: 1.0
vendor:	siemens	model:	scalance m-800	scope:	lt	version:	4.03	Trust: 1.0
vendor:	siemens	model:	simatic et 200sp	scope:	lt	version:	4.2.0	Trust: 1.0
vendor:	siemens	model:	sinumerik 828d	scope:	lt	version:	4.5	Trust: 1.0
vendor:	siemens	model:	scalance x200 irt	scope:	lt	version:	5.4.0	Trust: 1.0
vendor:	siemens	model:	sirius motor starter m200d profinet	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simatic et 200ecopn	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	sinamics g130	scope:	lt	version:	4.7	Trust: 1.0
vendor:	siemens	model:	scalance x414	scope:	lt	version:	3.10.2	Trust: 1.0
vendor:	siemens	model:	simatic tdc cp51m1	scope:	lt	version:	1.1.8	Trust: 1.0
vendor:	siemens	model:	sinamics g110m	scope:	lt	version:	4.7	Trust: 1.0
vendor:	siemens	model:	simatic s7-1500	scope:	lt	version:	2.1	Trust: 1.0
vendor:	siemens	model:	ek-ertec 200 pn io	scope:	eq	version:	4.2.1	Trust: 1.0
vendor:	siemens	model:	simatic rf680r	scope:	lt	version:	3.0	Trust: 1.0
vendor:	siemens	model:	simotion	scope:	lt	version:	4.5	Trust: 1.0
vendor:	siemens	model:	sirius soft starter 3rw44 pn	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	sinamics s150	scope:	lt	version:	4.7	Trust: 1.0
vendor:	siemens	model:	simatic cp 1243-1	scope:	lt	version:	2.1.82	Trust: 1.0
vendor:	siemens	model:	simatic cp 1243-1 dnp3	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	scalance w700	scope:	lt	version:	6.1	Trust: 1.0
vendor:	siemens	model:	simatic cp 1543-1	scope:	lt	version:	1.0.15	Trust: 1.0
vendor:	siemens	model:	simatic et 200s	scope:	eq	version:	*	Trust: 1.0
vendor:	siemens	model:	simocode pro v profinet	scope:	lt	version:	2.0.0	Trust: 1.0
vendor:	siemens	model:	dk standard ethernet controller	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	ek-ertec 200 pn io	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	ek-ertec 200p pn io	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	ie/as-i link pn io	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	ie/pb-link	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	pn/pn coupler	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	scalance m-800	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	scalance s615	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	scalance w700	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	scalance x200 irt	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	scalance x200	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	scalance x300	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	scalance x408	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	scalance x414	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	scalance xm400	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	scalance xr500	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cm 1542-1	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cp 1243-1	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cp 1542sp-1 irc	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cp 1542sp-1	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cp 1543-1	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cp 1543sp-1	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cp 1604	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cp 1616	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cp 343-1 adv	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cp 343-1 lean	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cp 343-1 std	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cp 443-1 adv	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cp 443-1 opc-ua	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic cp 443-1 std	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic dk-16xx pn io	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic et 200al	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic et 200ecopn	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic et 200m	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic et 200mp	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic et 200pro	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic et 200s	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic et 200sp	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic hmi multi panels	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic rf650r	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic rf680r	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic rf685r	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic s7-1200	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic s7-1500 software controller	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic s7-1500	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic s7-200 smart	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic s7-300	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic s7-400	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic teleservice adapter ie advanced	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic teleservice adapter ie basic	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic teleservice adapter standard modem	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simatic winac rtx 2010	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simocode pro v profinet	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	simotion	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sinamics dcm	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sinamics dcp	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sinamics g110m	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sinamics g120 w. pn	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sinamics g130	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sinamics g150	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sinamics s110 w. pn	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sinamics s120	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sinamics s150	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sinamics v90 w. pn	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sinumerik 828d	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sinumerik 840d sl	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sirius act 3su1 interface module profinet	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sirius motor starter m200d profinet	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sirius soft starter 3rw44 pn	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sitop psu8600	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	sitop ups1600 profinet	scope:	-	version:	-	Trust: 0.8
vendor:	siemens	model:	softnet profinet io	scope:	eq	version:	for pc-based windows systems firmware	Trust: 0.8
vendor:	siemens	model:	simatic hmi multi panels	scope:	eq	version:	-	Trust: 0.6
vendor:	siemens	model:	sinamics g150	scope:	eq	version:	4.8	Trust: 0.6
vendor:	siemens	model:	simatic hmi mobile panels	scope:	eq	version:	-	Trust: 0.6
vendor:	siemens	model:	sinamics s120	scope:	eq	version:	4.8	Trust: 0.6
vendor:	siemens	model:	simatic hmi comfort panels	scope:	eq	version:	-	Trust: 0.6
vendor:	siemens	model:	sinamics s110 w. pn	scope:	eq	version:	-	Trust: 0.6
vendor:	sinumerik 828d	model:	-	scope:	eq	version:	*	Trust: 0.4
vendor:	sinumerik 840d sl	model:	-	scope:	eq	version:	*	Trust: 0.4
vendor:	siemens	model:	ups1600 profinet	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	softnet profinet io	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	sitop psu8600	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	sirius soft starter 3rw44 pn	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	sirius act 3su1	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	sinumerik 840d	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	sinumerik 828d	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	sinamics sm150	scope:	eq	version:	4.7	Trust: 0.3
vendor:	siemens	model:	sinamics sm120	scope:	eq	version:	4.7	Trust: 0.3
vendor:	siemens	model:	sinamics sl150	scope:	eq	version:	4.7.5	Trust: 0.3
vendor:	siemens	model:	sinamics sl150	scope:	eq	version:	4.7.4	Trust: 0.3
vendor:	siemens	model:	sinamics sl150	scope:	eq	version:	4.7	Trust: 0.3
vendor:	siemens	model:	sinamics gm150	scope:	eq	version:	4.7	Trust: 0.3
vendor:	siemens	model:	sinamics gl150	scope:	eq	version:	4.7	Trust: 0.3
vendor:	siemens	model:	sinamics gh150	scope:	eq	version:	4.7	Trust: 0.3
vendor:	siemens	model:	sinamics	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	simotion	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	simatic winac rtx	scope:	eq	version:	20100	Trust: 0.3
vendor:	siemens	model:	simatic teleservice adapter standard modem	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	simatic s7-400	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	simatic s7-300	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	simatic s7-200 smart	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	simatic s7-1500	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	simatic rf685r	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	simatic rf680r	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	simatic rf650r	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	simatic et	scope:	eq	version:	2000	Trust: 0.3
vendor:	siemens	model:	simatic cp	scope:	eq	version:	443-10	Trust: 0.3
vendor:	siemens	model:	simatic cp	scope:	eq	version:	343-10	Trust: 0.3
vendor:	siemens	model:	simatic cp	scope:	eq	version:	16260	Trust: 0.3
vendor:	siemens	model:	simatic cp	scope:	eq	version:	16160	Trust: 0.3
vendor:	siemens	model:	simatic cp	scope:	eq	version:	16040	Trust: 0.3
vendor:	siemens	model:	simatic cp	scope:	eq	version:	1543-12.0.28	Trust: 0.3
vendor:	siemens	model:	simatic cp	scope:	eq	version:	1543-10	Trust: 0.3
vendor:	siemens	model:	simatic cp 1542sp-1	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	simatic cp irc	scope:	eq	version:	1243-80	Trust: 0.3
vendor:	siemens	model:	simatic cp lte eu/us	scope:	eq	version:	1243-70	Trust: 0.3
vendor:	siemens	model:	simatic cp	scope:	eq	version:	1243-10	Trust: 0.3
vendor:	siemens	model:	simatic cp gprs	scope:	eq	version:	1242-7v20	Trust: 0.3
vendor:	siemens	model:	scalance xr500	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	scalance xm400	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	scalance	scope:	eq	version:	x4140	Trust: 0.3
vendor:	siemens	model:	scalance	scope:	eq	version:	x4084.0	Trust: 0.3
vendor:	siemens	model:	scalance	scope:	eq	version:	x4083.0	Trust: 0.3
vendor:	siemens	model:	scalance	scope:	eq	version:	x3000	Trust: 0.3
vendor:	siemens	model:	scalance irt	scope:	eq	version:	x2000	Trust: 0.3
vendor:	siemens	model:	scalance	scope:	eq	version:	x2000	Trust: 0.3
vendor:	siemens	model:	scalance w700 series	scope:	eq	version:	4.4	Trust: 0.3
vendor:	siemens	model:	scalance w700 series	scope:	eq	version:	4.5.4	Trust: 0.3
vendor:	siemens	model:	scalance s615	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	scalance m-800	scope:	eq	version:	4.02	Trust: 0.3
vendor:	siemens	model:	scalance m-800	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	ie/as-i link pn io	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	extension unit profinet	scope:	eq	version:	22?0	Trust: 0.3
vendor:	siemens	model:	extension unit profinet	scope:	eq	version:	19?0	Trust: 0.3
vendor:	siemens	model:	extension unit profinet	scope:	eq	version:	15?0	Trust: 0.3
vendor:	siemens	model:	extension unit profinet	scope:	eq	version:	12?0	Trust: 0.3
vendor:	siemens	model:	e/pb-link	scope:	eq	version:	0	Trust: 0.3
vendor:	siemens	model:	sinumerik 840d sl	scope:	ne	version:	4.7	Trust: 0.3
vendor:	siemens	model:	sinumerik 828d	scope:	ne	version:	4.7	Trust: 0.3
vendor:	siemens	model:	sinamics sm120 sp2	scope:	ne	version:	4.8	Trust: 0.3
vendor:	siemens	model:	sinamics sl150 sp2	scope:	ne	version:	4.8	Trust: 0.3
vendor:	siemens	model:	sinamics gm150 sp2	scope:	ne	version:	4.8	Trust: 0.3
vendor:	siemens	model:	sinamics gl150 sp2	scope:	ne	version:	4.8	Trust: 0.3
vendor:	siemens	model:	sinamics gh150 sp2	scope:	ne	version:	4.8	Trust: 0.3
vendor:	siemens	model:	simatic rf685r	scope:	ne	version:	3.0	Trust: 0.3
vendor:	siemens	model:	simatic rf680r	scope:	ne	version:	3.0	Trust: 0.3
vendor:	siemens	model:	simatic cp	scope:	ne	version:	16162.7	Trust: 0.3
vendor:	siemens	model:	simatic cp 1604d	scope:	ne	version:	2.7	Trust: 0.3
vendor:	siemens	model:	simatic cp irc	scope:	ne	version:	1243-82.1.82	Trust: 0.3
vendor:	siemens	model:	simatic cp lte eu/us	scope:	ne	version:	1243-72.1.82	Trust: 0.3
vendor:	siemens	model:	simatic cp gprs	scope:	ne	version:	1242-7v22.1.82	Trust: 0.3
vendor:	siemens	model:	simatic rf650r	scope:	ne	version:	3.0	Trust: 0.3
vendor:	siemens	model:	simatic cp	scope:	ne	version:	443-13.2.17	Trust: 0.3
vendor:	siemens	model:	simatic cp	scope:	ne	version:	15431.2.1	Trust: 0.3
vendor:	siemens	model:	simatic cm1542	scope:	ne	version:	1.2	Trust: 0.3
vendor:	siemens	model:	scalance w700	scope:	ne	version:	6.1	Trust: 0.3
vendor:	siemens	model:	extension unit profinet	scope:	ne	version:	22?1.1.1	Trust: 0.3
vendor:	siemens	model:	extension unit profinet	scope:	ne	version:	19?1.1.1	Trust: 0.3
vendor:	siemens	model:	extension unit profinet	scope:	ne	version:	15?1.1.1	Trust: 0.3
vendor:	siemens	model:	extension unit profinet	scope:	ne	version:	12?1.1.1	Trust: 0.3
vendor:	simatic cp 343 1 std	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic cp 1542sp 1 irc	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic cp 1543sp 1	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic cp 1543 1	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic rf650r	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic rf680r	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic rf685r	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic cp 1616	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic cp 1604	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic dk 16xx pn io	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	scalance x200	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic cp 343 1 lean	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	scalance x200 irt	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	scalance x300	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	scalance x408	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	scalance x414	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	scalance xm400	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	scalance xr500	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	scalance w700	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	scalance m 800	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	scalance s615	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	softnet profinet io	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic cp 343 1 adv	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ie pb link	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ie as i link pn io	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic teleservice adapter standard modem	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic teleservice adapter ie basic modem	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic teleservice adapter ie advanced modem	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	sitop psu8600	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ups1600 profinet	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic et 200al	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic et 200ecopn	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic et 200m	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic cp 443 1 std	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic et 200mp	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic et 200pro	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic et 200s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic et 200sp	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	pn pn coupler	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	dk standard ethernet controller	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	ek ertec 200p pn io	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	ek ertec 200 pn io	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic s7 200 smart	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic s7 300	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic cp 443 1 adv	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic s7 400	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic s7 1200	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic s7 1500	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic s7 1500 controller	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic winac rtx 2010	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	sirius act 3su1	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	sirius soft starter 3rw44 pn	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	sirius motor starter m200d profinet	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simocode pro v profinet	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	sinamics dcm	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic cp 443 1 opc ua	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	sinamics dcp	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	sinamics g110m	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	sinamics g120 c p d w pn	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	sinamics g130	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	sinamics g150	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	sinamics s110 w pn	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	sinamics s120	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	sinamics s150	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	sinamics v90 w pn	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simotion	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic cp 1243 1	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic hmi comfort panels	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic hmi multi panels	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic hmi mobile panels	model:	-	scope:	eq	version:	*	Trust: 0.2
vendor:	simatic cm 1542 1	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	simatic cp 1542sp 1	model:	-	scope:	eq	version:	-	Trust: 0.2

sources: IVD: 33467505-7492-4ae1-b978-12f61201709a // CNVD: CNVD-2017-06153 // BID: 98369 // JVNDB: JVNDB-2017-004135 // CNNVD: CNNVD-201705-639 // NVD: CVE-2017-2681

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-2681
value:	MEDIUM
Trust: 1.0
productcert@siemens.com:	CVE-2017-2681
value:	HIGH
Trust: 1.0
NVD:	CVE-2017-2681
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2017-06153
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201705-639
value:	MEDIUM
Trust: 0.6
IVD:	33467505-7492-4ae1-b978-12f61201709a
value:	MEDIUM
Trust: 0.2
VULHUB:	VHN-110884
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2017-2681
severity:	MEDIUM
baseScore:	6.1
vectorString:	AV:A/AC:L/AU:N/C:N/I:N/A:C
accessVector:	ADJACENT_NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.5
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2017-06153
severity:	MEDIUM
baseScore:	6.1
vectorString:	AV:A/AC:L/AU:N/C:N/I:N/A:C
accessVector:	ADJACENT_NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.5
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	33467505-7492-4ae1-b978-12f61201709a
severity:	MEDIUM
baseScore:	6.1
vectorString:	AV:A/AC:L/AU:N/C:N/I:N/A:C
accessVector:	ADJACENT_NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.5
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2
VULHUB:	VHN-110884
severity:	MEDIUM
baseScore:	6.1
vectorString:	AV:A/AC:L/AU:N/C:N/I:N/A:C
accessVector:	ADJACENT_NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.5
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-2681
baseSeverity:	MEDIUM
baseScore:	6.5
vectorString:	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	ADJACENT
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	3.6
version:	3.1
Trust: 2.0
NVD:	CVE-2017-2681
baseSeverity:	MEDIUM
baseScore:	6.5
vectorString:	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	ADJACENT NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: IVD: 33467505-7492-4ae1-b978-12f61201709a // CNVD: CNVD-2017-06153 // VULHUB: VHN-110884 // JVNDB: JVNDB-2017-004135 // CNNVD: CNNVD-201705-639 // NVD: CVE-2017-2681 // NVD: CVE-2017-2681

PROBLEMTYPE DATA

problemtype:	CWE-400	Trust: 1.0
problemtype:	CWE-20	Trust: 0.9

sources: VULHUB: VHN-110884 // JVNDB: JVNDB-2017-004135 // NVD: CVE-2017-2681

THREAT TYPE

remote or local

Trust: 0.6

sources: CNNVD: CNNVD-201705-639

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-201705-639

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-004135

PATCH

title:	SSA-293562	url:	https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-293562.pdf	Trust: 0.8
title:	Patch for Siemens SIMATIC HMI Denial of Service Vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/93365	Trust: 0.6
title:	Multiple Siemens Product security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=70109	Trust: 0.6

sources: CNVD: CNVD-2017-06153 // JVNDB: JVNDB-2017-004135 // CNNVD: CNNVD-201705-639

EXTERNAL IDS

db:	NVD	id:	CVE-2017-2681	Trust: 3.6
db:	SIEMENS	id:	SSA-293562	Trust: 2.6
db:	BID	id:	98369	Trust: 2.0
db:	SECTRACK	id:	1038463	Trust: 1.7
db:	ICS CERT	id:	ICSA-17-129-02	Trust: 1.7
db:	CNVD	id:	CNVD-2017-06153	Trust: 0.8
db:	CNNVD	id:	CNNVD-201705-639	Trust: 0.8
db:	JVNDB	id:	JVNDB-2017-004135	Trust: 0.8
db:	ICS CERT	id:	ICSA-18-023-02	Trust: 0.3
db:	SIEMENS	id:	SSA-284673	Trust: 0.3
db:	IVD	id:	33467505-7492-4AE1-B978-12F61201709A	Trust: 0.2
db:	VULHUB	id:	VHN-110884	Trust: 0.1

sources: IVD: 33467505-7492-4ae1-b978-12f61201709a // CNVD: CNVD-2017-06153 // VULHUB: VHN-110884 // BID: 98369 // JVNDB: JVNDB-2017-004135 // CNNVD: CNNVD-201705-639 // NVD: CVE-2017-2681

REFERENCES

url:	https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-293562.pdf	Trust: 2.6
url:	http://www.securityfocus.com/bid/98369	Trust: 1.7
url:	https://cert-portal.siemens.com/productcert/pdf/ssa-293562.pdf	Trust: 1.7
url:	http://www.securitytracker.com/id/1038463	Trust: 1.7
url:	https://ics-cert.us-cert.gov/advisories/icsa-17-129-02	Trust: 1.1
url:	https://cert-portal.siemens.com/productcert/html/ssa-293562.html	Trust: 1.0
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2681	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-2681	Trust: 0.8
url:	https://us-cert.cisa.gov/ics/advisories/icsa-17-129-02	Trust: 0.6
url:	http://subscriber.communications.siemens.com/	Trust: 0.3
url:	https://ics-cert.us-cert.gov/advisories/icsa-18-023-02	Trust: 0.3
url:	https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-284673.pdf	Trust: 0.3

sources: CNVD: CNVD-2017-06153 // VULHUB: VHN-110884 // BID: 98369 // JVNDB: JVNDB-2017-004135 // CNNVD: CNNVD-201705-639 // NVD: CVE-2017-2681

CREDITS

Duan JinTong, Ma ShaoShuai, and Cheng Lei from NSFOCUS Security Team.

Trust: 0.3

sources: BID: 98369

SOURCES

db:	IVD	id:	33467505-7492-4ae1-b978-12f61201709a
db:	CNVD	id:	CNVD-2017-06153
db:	VULHUB	id:	VHN-110884
db:	BID	id:	98369
db:	JVNDB	id:	JVNDB-2017-004135
db:	CNNVD	id:	CNNVD-201705-639
db:	NVD	id:	CVE-2017-2681

LAST UPDATE DATE

2024-09-10T22:44:00.340000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-06153	date:	2017-05-09T00:00:00
db:	VULHUB	id:	VHN-110884	date:	2020-09-29T00:00:00
db:	BID	id:	98369	date:	2018-05-09T14:00:00
db:	JVNDB	id:	JVNDB-2017-004135	date:	2017-09-11T00:00:00
db:	CNNVD	id:	CNNVD-201705-639	date:	2022-03-10T00:00:00
db:	NVD	id:	CVE-2017-2681	date:	2024-09-10T10:15:03.063

SOURCES RELEASE DATE

db:	IVD	id:	33467505-7492-4ae1-b978-12f61201709a	date:	2017-05-09T00:00:00
db:	CNVD	id:	CNVD-2017-06153	date:	2017-05-09T00:00:00
db:	VULHUB	id:	VHN-110884	date:	2017-05-11T00:00:00
db:	BID	id:	98369	date:	2017-05-08T00:00:00
db:	JVNDB	id:	JVNDB-2017-004135	date:	2017-06-16T00:00:00
db:	CNNVD	id:	CNNVD-201705-639	date:	2017-05-12T00:00:00
db:	NVD	id:	CVE-2017-2681	date:	2017-05-11T10:29:00.180