Details of VAR-202501-1333

ID

VAR-202501-1333

CVE

CVE-2024-47100

TITLE

Siemens SIMATIC S7-1200 CPU Cross-Site Request Forgery Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2025-01698

DESCRIPTION

A vulnerability has been identified in SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0), SIMATIC S7-1200 CPU 1211C DC/DC/DC (6ES7211-1AE40-0XB0), SIMATIC S7-1200 CPU 1211C DC/DC/Rly (6ES7211-1HE40-0XB0), SIMATIC S7-1200 CPU 1212C AC/DC/Rly (6ES7212-1BE40-0XB0), SIMATIC S7-1200 CPU 1212C DC/DC/DC (6ES7212-1AE40-0XB0), SIMATIC S7-1200 CPU 1212C DC/DC/Rly (6ES7212-1HE40-0XB0), SIMATIC S7-1200 CPU 1212FC DC/DC/DC (6ES7212-1AF40-0XB0), SIMATIC S7-1200 CPU 1212FC DC/DC/Rly (6ES7212-1HF40-0XB0), SIMATIC S7-1200 CPU 1214C AC/DC/Rly (6ES7214-1BG40-0XB0), SIMATIC S7-1200 CPU 1214C DC/DC/DC (6ES7214-1AG40-0XB0), SIMATIC S7-1200 CPU 1214C DC/DC/Rly (6ES7214-1HG40-0XB0), SIMATIC S7-1200 CPU 1214FC DC/DC/DC (6ES7214-1AF40-0XB0), SIMATIC S7-1200 CPU 1214FC DC/DC/Rly (6ES7214-1HF40-0XB0), SIMATIC S7-1200 CPU 1215C AC/DC/Rly (6ES7215-1BG40-0XB0), SIMATIC S7-1200 CPU 1215C DC/DC/DC (6ES7215-1AG40-0XB0), SIMATIC S7-1200 CPU 1215C DC/DC/Rly (6ES7215-1HG40-0XB0), SIMATIC S7-1200 CPU 1215FC DC/DC/DC (6ES7215-1AF40-0XB0), SIMATIC S7-1200 CPU 1215FC DC/DC/Rly (6ES7215-1HF40-0XB0), SIMATIC S7-1200 CPU 1217C DC/DC/DC (6ES7217-1AG40-0XB0), SIPLUS S7-1200 CPU 1212 AC/DC/RLY (6AG1212-1BE40-2XB0), SIPLUS S7-1200 CPU 1212 AC/DC/RLY (6AG1212-1BE40-4XB0), SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-2XB0), SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-4XB0), SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-2XB0), SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-4XB0), SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL (6AG2212-1AE40-1XB0), SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-2XB0), SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-4XB0), SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-5XB0), SIPLUS S7-1200 CPU 1214 DC/DC/DC (6AG1214-1AG40-2XB0), SIPLUS S7-1200 CPU 1214 DC/DC/DC (6AG1214-1AG40-4XB0), SIPLUS S7-1200 CPU 1214 DC/DC/DC (6AG1214-1AG40-5XB0), SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-2XB0), SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-4XB0), SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-5XB0), SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL (6AG2214-1AG40-1XB0), SIPLUS S7-1200 CPU 1214FC DC/DC/DC (6AG1214-1AF40-5XB0), SIPLUS S7-1200 CPU 1214FC DC/DC/RLY (6AG1214-1HF40-5XB0), SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-2XB0), SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-4XB0), SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-5XB0), SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-2XB0), SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-4XB0), SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-2XB0), SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-4XB0), SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-5XB0), SIPLUS S7-1200 CPU 1215C DC/DC/DC (6AG1215-1AG40-5XB0), SIPLUS S7-1200 CPU 1215FC DC/DC/DC (6AG1215-1AF40-5XB0). The web interface of the affected devices is vulnerable to Cross-Site Request Forgery (CSRF) attacks. This could allow an unauthenticated attacker to change the CPU mode by tricking a legitimate and authenticated user with sufficient permissions on the target CPU to click on a malicious link. SIMATIC S7-1200 CPU products are designed for discrete and continuous control in industrial environments such as global manufacturing, food and beverage, and chemical industries. SIPLUS extreme products are designed for reliable operation under extreme conditions and are based on SIMATIC, LOGO!, SITOP, SINAMICS, SIMOTION, SCALANCE or other devices. SIPLUS devices use the same firmware as the products they are based on

Trust: 1.44

sources: NVD: CVE-2024-47100 // CNVD: CNVD-2025-01698

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2025-01698

AFFECTED PRODUCTS

vendor:	siemens	model:	siplus s7-1200 cpu ac/dc/rly	scope:	eq	version:	1214<v4.7	Trust: 1.8
vendor:	siemens	model:	siplus s7-1200 cpu dc/dc/dc	scope:	eq	version:	1214<v4.7	Trust: 1.8
vendor:	siemens	model:	siplus s7-1200 cpu dc/dc/rly	scope:	eq	version:	1214<v4.7	Trust: 1.8
vendor:	siemens	model:	siplus s7-1200 cpu ac/dc/rly	scope:	eq	version:	1215<v4.7	Trust: 1.8
vendor:	siemens	model:	siplus s7-1200 cpu dc/dc/rly	scope:	eq	version:	1215<v4.7	Trust: 1.8
vendor:	siemens	model:	siplus s7-1200 cpu ac/dc/rly	scope:	eq	version:	1212<v4.7	Trust: 1.2
vendor:	siemens	model:	siplus s7-1200 cpu dc/dc/rly	scope:	eq	version:	1212<v4.7	Trust: 1.2
vendor:	siemens	model:	siplus s7-1200 cpu 1212c dc/dc/dc	scope:	lt	version:	v4.7	Trust: 1.2
vendor:	siemens	model:	siplus s7-1200 cpu dc/dc/dc	scope:	eq	version:	1215<v4.7	Trust: 1.2
vendor:	siemens	model:	simatic s7-1200 cpu 1211c ac/dc/rly	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1211c dc/dc/dc	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1211c dc/dc/rly	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1212c ac/dc/rly	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1212c dc/dc/dc	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1212c dc/dc/rly	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1212fc dc/dc/dc	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1212fc dc/dc/rly	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1214c ac/dc/rly	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1214c dc/dc/dc	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1214c dc/dc/rly	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1214fc dc/dc/dc	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1214fc dc/dc/rly	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1215c ac/dc/rly	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1215c dc/dc/dc	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1215c dc/dc/rly	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1215fc dc/dc/dc	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1215fc dc/dc/rly	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	simatic s7-1200 cpu 1217c dc/dc/dc	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	siplus s7-1200 cpu 1212c dc/dc/dc rail	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	siplus s7-1200 cpu 1214c dc/dc/dc rail	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	siplus s7-1200 cpu 1214fc dc/dc/dc	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	siplus s7-1200 cpu 1214fc dc/dc/rly	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	siplus s7-1200 cpu 1215c dc/dc/dc	scope:	lt	version:	v4.7	Trust: 0.6
vendor:	siemens	model:	siplus s7-1200 cpu 1215fc dc/dc/dc	scope:	lt	version:	v4.7	Trust: 0.6

sources: CNVD: CNVD-2025-01698

CVSS

SEVERITY

CVSSV2

CVSSV3

productcert@siemens.com:	CVE-2024-47100
value:	HIGH
Trust: 1.0
CNVD:	CNVD-2025-01698
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2025-01698
severity:	HIGH
baseScore:	8.5
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	7.8
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

productcert@siemens.com:	CVE-2024-47100
baseSeverity:	HIGH
baseScore:	7.1
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	LOW
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	4.2
version:	3.1
Trust: 1.0

sources: CNVD: CNVD-2025-01698 // NVD: CVE-2024-47100

PROBLEMTYPE DATA

problemtype:

CWE-352

Trust: 1.0

sources: NVD: CVE-2024-47100

PATCH

title:

Patch for Siemens SIMATIC S7-1200 CPU Cross-Site Request Forgery Vulnerability

url:

https://www.cnvd.org.cn/patchInfo/show/651916

Trust: 0.6

sources: CNVD: CNVD-2025-01698

EXTERNAL IDS

db:	SIEMENS	id:	SSA-717113	Trust: 1.6
db:	NVD	id:	CVE-2024-47100	Trust: 1.6
db:	CNVD	id:	CNVD-2025-01698	Trust: 0.6

sources: CNVD: CNVD-2025-01698 // NVD: CVE-2024-47100

REFERENCES

url:

https://cert-portal.siemens.com/productcert/html/ssa-717113.html

Trust: 1.6

sources: CNVD: CNVD-2025-01698 // NVD: CVE-2024-47100

SOURCES

db:	CNVD	id:	CNVD-2025-01698
db:	NVD	id:	CVE-2024-47100

LAST UPDATE DATE

2025-01-20T23:16:43.541000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2025-01698	date:	2025-01-17T00:00:00
db:	NVD	id:	CVE-2024-47100	date:	2025-01-14T11:15:16.573

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2025-01698	date:	2025-01-17T00:00:00
db:	NVD	id:	CVE-2024-47100	date:	2025-01-14T11:15:16.573