CVE-2016-7987
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
35.6%
An issue was discovered in Siemens ETA4 firmware (all versions prior to Revision 08) of the SM-2558 extension module for: SICAM AK, SICAM TM 1703, SICAM BC 1703, and SICAM AK 3. Specially crafted packets sent to Port 2404/TCP could cause the affected device to go into defect mode. A cold start might be required to recover the system, a Denial-of-Service Vulnerability.
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| siemens | eta4_firmware | * | cpe:2.3:o:siemens:eta4_firmware:*:*:*:*:*:*:*:* |
| siemens | sicam_ak | - | cpe:2.3:h:siemens:sicam_ak:-:*:*:*:*:*:*:* |
| siemens | sicam_ak_3 | - | cpe:2.3:h:siemens:sicam_ak_3:-:*:*:*:*:*:*:* |
| siemens | sicam_bc_1703 | - | cpe:2.3:h:siemens:sicam_bc_1703:-:*:*:*:*:*:*:* |
| siemens | sicam_tm_1703 | - | cpe:2.3:h:siemens:sicam_tm_1703:-:*:*:*:*:*:*:* |
| siemens | eta2_firmware | * | cpe:2.3:o:siemens:eta2_firmware:*:*:*:*:*:*:*:* |
| siemens | sicam_bc | - | cpe:2.3:h:siemens:sicam_bc:-:*:*:*:*:*:*:* |
| siemens | sicam_tm | - | cpe:2.3:h:siemens:sicam_tm:-:*:*:*:*:*:*:* |
Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
35.6%