Lucene search
This script is Copyright (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.TENABLE_OT_SIEMENS_CVE-2014-2259.NASLHistoryFeb 07, 2022 - 12:00 a.m.
Siemens SIMATIC S7-1500 Improper Input Validation (CVE-2014-2259)
2022-02-0700:00:00
This script is Copyright (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7
siemens simatic s7-1500
firmware
improper input validation
denial of service
remote attackers
crafted https packets
vulnerability
cpu plc devices
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.7
Confidence
Low
EPSS
0.004
Percentile
73.4%
Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTPS packets.
This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(500037);
script_version("1.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/09/04");
script_cve_id("CVE-2014-2259");
script_xref(name:"ICSA", value:"14-073-01");
script_name(english:"Siemens SIMATIC S7-1500 Improper Input Validation (CVE-2014-2259)");
script_set_attribute(attribute:"synopsis", value:
"The remote OT asset is affected by a vulnerability.");
script_set_attribute(attribute:"description", value:
"Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service
(defect-mode transition) via crafted HTTPS packets.
This plugin only works with Tenable.ot. Please visit
https://www.tenable.com/products/tenable-ot for more information.");
# http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-456423.pdf
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?a691e748");
script_set_attribute(attribute:"see_also", value:"http://ics-cert.us-cert.gov/advisories/ICSA-14-073-01");
script_set_attribute(attribute:"see_also", value:"https://cert-portal.siemens.com/productcert/pdf/ssa-456423.pdf");
script_set_attribute(attribute:"solution", value:
"Refer to the vendor advisory.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2014-2259");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2014/03/16");
script_set_attribute(attribute:"patch_publication_date", value:"2014/03/16");
script_set_attribute(attribute:"plugin_publication_date", value:"2022/02/07");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:simatic_s7-1500_cpu_firmware");
script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:simatic_s7-1500_cpu_firmware:1.1.0");
script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:simatic_s7-1500_cpu_firmware:1.1.1");
script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:simatic_s7-1500_cpu_firmware:1.0.1");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Tenable.ot");
script_copyright(english:"This script is Copyright (C) 2022-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("tenable_ot_api_integration.nasl");
script_require_keys("Tenable.ot/Siemens");
exit(0);
}
include('tenable_ot_cve_funcs.inc');
get_kb_item_or_exit('Tenable.ot/Siemens');
var asset = tenable_ot::assets::get(vendor:'Siemens');
var vuln_cpes = {
"cpe:/o:siemens:simatic_s7-1500_cpu_firmware" :
{"versionEndIncluding" : "1.1.2", "family" : "S71500"},
"cpe:/o:siemens:simatic_s7-1500_cpu_firmware:1.1.0" :
{"versionEndIncluding" : "1.1.0", "versionStartIncluding" : "1.1.0", "family" : "S71500"},
"cpe:/o:siemens:simatic_s7-1500_cpu_firmware:1.1.1" :
{"versionEndIncluding" : "1.1.1", "versionStartIncluding" : "1.1.1", "family" : "S71500"},
"cpe:/o:siemens:simatic_s7-1500_cpu_firmware:1.0.1" :
{"versionEndIncluding" : "1.0.1", "versionStartIncluding" : "1.0.1", "family" : "S71500"}
};
tenable_ot::cve::compare_and_report(asset:asset, cpes:vuln_cpes, severity:SECURITY_HOLE);
Related
cvelist
cvelist
CVE-2014-2259
2014-03-16 10:00:00
CVE-2014-2258
2014-03-22 01:00:00
prion
prion
Code injection
2014-03-16 14:06:00
Design/Logic Flaw
2014-03-24 14:20:00
cve
cve
CVE-2014-2259
2014-03-16 14:06:45
CVE-2014-2258
2014-03-24 14:20:39
nvd
nvd
CVE-2014-2259
2014-03-16 14:06:45
CVE-2014-2258
2014-03-24 14:20:39
nessus
nessus
Siemens Simatic Unspecified Vulnerability
2019-11-08 00:00:00
Siemens SIMATIC S7-1200 PLCs < 4.0 HTTPS Packets DOS
2019-05-08 00:00:00
Siemens SIMATIC S7-1200 Improper Input Validation (CVE-2014-2258)
2022-02-07 00:00:00
ics
ics
Siemens SIMATIC S7-1500 CPU Firmware Vulnerabilities
2018-09-06 12:00:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
6.7
Confidence
Low
EPSS
0.004
Percentile
73.4%
Related for TENABLE_OT_SIEMENS_CVE-2014-2259.NASL