Siemens Industrial Products Web Server Denial of Service Vulnerability

SIMATIC CP 1242 and CP 1243 correlation processors connect SIMATIC S7-1200 controllers to a wide area network (WAN). They provide integrated security features such as firewalls, virtual private networks (VPNs), and support for other data encryption protocols.SIMATIC CP 1543-1 communication processors connect SIMATIC S7-1500 controllers to Ethernet. They provide integrated security features such as firewalls, virtual private networks (VPNs), and support for other data encryption protocols. A denial of service vulnerability exists in the Siemens Industrial Products Web server due to the Web server implementation of the affected products failing to properly free allocated memory after use. An attacker could exploit the vulnerability to cause a denial of service.