CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
77.0%
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V21.9), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions < V4.5.0), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V2.9.2), SIMATIC S7-1500 Software Controller (All versions < V21.9), SIMATIC S7-PLCSIM Advanced (All versions < V4.0), SINAMICS PERFECT HARMONY GH180 Drives (Drives manufactured before 2021-08-13), SINUMERIK MC (All versions < V6.15), SINUMERIK ONE (All versions < V6.15). Affected devices are vulnerable to a memory protection bypass through a specific operation. A remote unauthenticated attacker with network access to port 102/tcp could potentially write arbitrary data and code to protected memory areas or read sensitive data to launch further attacks.
Vendor | Product | Version | CPE |
---|---|---|---|
siemens | cpu_1504d_tf | - | cpe:2.3:h:siemens:cpu_1504d_tf:-:*:*:*:*:*:*:* |
siemens | cpu_1507d_tf | - | cpe:2.3:h:siemens:cpu_1507d_tf:-:*:*:*:*:*:*:* |
siemens | simatic_driver_controller_firmware | * | cpe:2.3:o:siemens:simatic_driver_controller_firmware:*:*:*:*:*:*:*:* |
siemens | cpu_1211c | - | cpe:2.3:h:siemens:cpu_1211c:-:*:*:*:*:*:*:* |
siemens | cpu_1212c | - | cpe:2.3:h:siemens:cpu_1212c:-:*:*:*:*:*:*:* |
siemens | cpu_1212fc | - | cpe:2.3:h:siemens:cpu_1212fc:-:*:*:*:*:*:*:* |
siemens | cpu_1214c | - | cpe:2.3:h:siemens:cpu_1214c:-:*:*:*:*:*:*:* |
siemens | cpu_1214fc | - | cpe:2.3:h:siemens:cpu_1214fc:-:*:*:*:*:*:*:* |
siemens | cpu_1215c | - | cpe:2.3:h:siemens:cpu_1215c:-:*:*:*:*:*:*:* |
siemens | cpu_1215fc | - | cpe:2.3:h:siemens:cpu_1215fc:-:*:*:*:*:*:*:* |
[
{
"product": "SIMATIC Drive Controller family",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions < V2.9.2"
}
]
},
{
"product": "SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"product": "SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions < V21.9"
}
]
},
{
"product": "SIMATIC S7-1200 CPU family (incl. SIPLUS variants)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions < V4.5.0"
}
]
},
{
"product": "SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions < V2.9.2"
}
]
},
{
"product": "SIMATIC S7-1500 Software Controller",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions < V21.9"
}
]
},
{
"product": "SIMATIC S7-PLCSIM Advanced",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions < V4.0"
}
]
},
{
"product": "SINAMICS PERFECT HARMONY GH180 Drives",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "Drives manufactured before 2021-08-13"
}
]
},
{
"product": "SINUMERIK MC",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions < V6.15"
}
]
},
{
"product": "SINUMERIK ONE",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions < V6.15"
}
]
}
]
More
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
77.0%