CVE-2017-2681 - Vulnerability Details

Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected.

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

This CVE is not in the KEV list.

The EPSS score is 0.00442.

Key SSVC decision points have not yet been added.

Vendors	Products
Siemens Subscribe	Dk Standard Ethernet Controller Subscribe Dk Standard Ethernet Controller Firmware Subscribe Ek-ertec 200 Pn Io Subscribe Ek-ertec 200 Pn Io Firmware Subscribe Ek-ertec 200p Pn Io Subscribe Ek-ertec 200p Pn Io Firmware Subscribe Ie\/as-i Link Pn Io Subscribe Ie\/as-i Link Pn Io Firmware Subscribe Ie\/pb-link Subscribe Ie\/pb-link Firmware Subscribe Pn\/pn Coupler Subscribe Pn\/pn Coupler Firmware Subscribe Scalance M-800 Subscribe Scalance M-800 Firmware Subscribe Scalance S615 Subscribe Scalance S615 Firmware Subscribe Scalance W700 Subscribe Scalance W700 Firmware Subscribe Scalance X200 Subscribe Scalance X200 Firmware Subscribe Scalance X200 Irt Subscribe Scalance X200 Irt Firmware Subscribe Scalance X300 Subscribe Scalance X300 Firmware Subscribe Scalance X408 Subscribe Scalance X408 Firmware Subscribe Scalance X414 Subscribe Scalance X414 Firmware Subscribe Scalance Xm400 Subscribe Scalance Xm400 Firmware Subscribe Scalance Xr500 Subscribe Scalance Xr500 Firmware Subscribe Simatic Cm 1542-1 Subscribe Simatic Cm 1542-1 Firmware Subscribe Simatic Cm 1542sp-1 Subscribe Simatic Cm 1542sp-1 Firmware Subscribe Simatic Cp 1243-1 Subscribe Simatic Cp 1243-1 Dnp3 Subscribe Simatic Cp 1243-1 Dnp3 Firmware Subscribe Simatic Cp 1243-1 Firmware Subscribe Simatic Cp 1243-1 Iec Subscribe Simatic Cp 1243-1 Iec Firmware Subscribe Simatic Cp 1243-1 Irc Subscribe Simatic Cp 1243-1 Irc Firmware Subscribe Simatic Cp 1542sp-1 Subscribe Simatic Cp 1542sp-1 Irc Subscribe Simatic Cp 1542sp-1 Irc Firmware Subscribe Simatic Cp 1543-1 Subscribe Simatic Cp 1543-1 Firmware Subscribe Simatic Cp 1543sp-1 Subscribe Simatic Cp 1543sp-1 Firmware Subscribe Simatic Cp 1604 Subscribe Simatic Cp 1604 Firmware Subscribe Simatic Cp 1616 Subscribe Simatic Cp 1616 Firmware Subscribe Simatic Cp 343-1 Adv Subscribe Simatic Cp 343-1 Adv Firmware Subscribe Simatic Cp 343-1 Lean Subscribe Simatic Cp 343-1 Lean Firmware Subscribe Simatic Cp 343-1 Std Subscribe Simatic Cp 343-1 Std Firmware Subscribe Simatic Cp 443-1 Adv Subscribe Simatic Cp 443-1 Adv Firmware Subscribe Simatic Cp 443-1 Opc-ua Subscribe Simatic Cp 443-1 Opc-ua Firmware Subscribe Simatic Cp 443-1 Std Subscribe Simatic Cp 443-1 Std Firmware Subscribe Simatic Dk-16xx Pn Io Subscribe Simatic Dk-16xx Pn Io Firmware Subscribe Simatic Et 200al Subscribe Simatic Et 200al Firmware Subscribe Simatic Et 200ecopn Subscribe Simatic Et 200ecopn Firmware Subscribe Simatic Et 200m Subscribe Simatic Et 200m Firmware Subscribe Simatic Et 200mp Subscribe Simatic Et 200mp Firmware Subscribe Simatic Et 200pro Subscribe Simatic Et 200pro Firmware Subscribe Simatic Et 200s Subscribe Simatic Et 200s Firmware Subscribe Simatic Et 200sp Subscribe Simatic Et 200sp Firmware Subscribe Simatic Hmi Comfort Panels Subscribe Simatic Hmi Mobile Panels Subscribe Simatic Hmi Multi Panels Subscribe Simatic Rf650r Subscribe Simatic Rf650r Firmware Subscribe Simatic Rf680r Subscribe Simatic Rf680r Firmware Subscribe Simatic Rf685r Subscribe Simatic Rf685r Firmware Subscribe Simatic S7-1200 Subscribe Simatic S7-1200 Firmware Subscribe Simatic S7-1500 Subscribe Simatic S7-1500 Firmware Subscribe Simatic S7-1500 Software Controller Subscribe Simatic S7-200 Smart Subscribe Simatic S7-200 Smart Firmware Subscribe Simatic S7-300 Subscribe Simatic S7-300 Firmware Subscribe Simatic S7-400 Subscribe Simatic S7-400 Firmware Subscribe Simatic Tdc Cp51m1 Subscribe Simatic Tdc Cp51m1 Firmware Subscribe Simatic Tdc Cpu555 Subscribe Simatic Tdc Cpu555 Firmware Subscribe Simatic Teleservice Adapter Ie Advanced Modem Subscribe Simatic Teleservice Adapter Ie Advanced Modem Firmware Subscribe Simatic Teleservice Adapter Ie Basic Modem Subscribe Simatic Teleservice Adapter Ie Basic Modem Firmware Subscribe Simatic Teleservice Adapter Standard Modem Subscribe Simatic Teleservice Adapter Standard Modem Firmware Subscribe Simatic Winac Rtx Subscribe Simatic Winac Rtx Firmware Subscribe Simocode Pro V Profinet Subscribe Simocode Pro V Profinet Firmware Subscribe Simotion Subscribe Simotion Firmware Subscribe Sinamics Dcm Subscribe Sinamics Dcm Firmware Subscribe Sinamics Dcp Subscribe Sinamics Dcp Firmware Subscribe Sinamics G110m Subscribe Sinamics G110m Firmware Subscribe Sinamics G120\(c\/p\/d\) Pn Subscribe Sinamics G120\(c\/p\/d\) Pn Firmware Subscribe Sinamics G130 Subscribe Sinamics G130 Firmware Subscribe Sinamics G150 Subscribe Sinamics G150 Firmware Subscribe Sinamics S110 Pn Subscribe Sinamics S110 Pn Firmware Subscribe Sinamics S120 Subscribe Sinamics S120 Firmware Subscribe Sinamics S150 Subscribe Sinamics S150 Firmware Subscribe Sinamics V90 Pn Subscribe Sinamics V90 Pn Firmware Subscribe Sinumerik 828d Subscribe Sinumerik 828d Firmware Subscribe Sinumerik 840d Sl Subscribe Sinumerik 840d Sl Firmware Subscribe Sirius Act 3su1 Subscribe Sirius Act 3su1 Firmware Subscribe Sirius Motor Starter M200d Profinet Subscribe Sirius Motor Starter M200d Profinet Firmware Subscribe Sirius Soft Starter 3rw44 Pn Subscribe Sirius Soft Starter 3rw44 Pn Firmware Subscribe Sitop Psu8600 Subscribe Sitop Psu8600 Firmware Subscribe Softnet Profinet Io Subscribe Softnet Profinet Io Firmware Subscribe Ups1600 Profinet Subscribe Ups1600 Profinet Firmware Subscribe

Configuration 1 [-]

AND

cpe:2.3:o:siemens:simatic_cp_343-1_std_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_343-1_std:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:siemens:simatic_cp_343-1_lean_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_343-1_lean:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:siemens:simatic_cp_343-1_adv_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_343-1_adv:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:siemens:simatic_cp_443-1_std_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_443-1_std:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:siemens:simatic_cp_443-1_adv_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_443-1_adv:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:siemens:simatic_cp_443-1_opc-ua_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_443-1_opc-ua:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:siemens:simatic_cp_1243-1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_1243-1:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:siemens:simatic_cm_1542-1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cm_1542-1:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:siemens:simatic_cp_1543sp-1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_1542sp-1:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:siemens:simatic_cp_1542sp-1_irc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_1542sp-1_irc:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:siemens:simatic_cp_1543sp-1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_1543sp-1:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:siemens:simatic_cp_1543-1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_1543-1:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:siemens:simatic_rf650r_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf650r:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:siemens:simatic_rf680r_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf680r:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:siemens:simatic_rf685r_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_rf685r:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:siemens:simatic_cp_1616_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_1616:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:siemens:simatic_cp_1604_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_1604:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:siemens:simatic_dk-16xx_pn_io_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_dk-16xx_pn_io:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:siemens:scalance_x200_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_x200:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:siemens:scalance_x200_irt_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_x200_irt:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:siemens:scalance_x300_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_x300:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:siemens:scalance_x408_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_x408:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:siemens:scalance_x414_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_x414:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:siemens:scalance_xm400_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_xm400:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND

cpe:2.3:o:siemens:scalance_xr500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_xr500:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND

cpe:2.3:o:siemens:scalance_w700_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_w700:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND

cpe:2.3:o:siemens:scalance_m-800_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_m-800:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND

cpe:2.3:o:siemens:scalance_s615_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:scalance_s615:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND

OR	cpe:2.3:o:siemens:softnet_profinet_io_firmware::::::::
	cpe:2.3:o:siemens:softnet_profinet_io_firmware:14:-::::::

cpe:2.3:h:siemens:softnet_profinet_io:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND

cpe:2.3:o:siemens:ie\/pb-link_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:ie\/pb-link:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND

cpe:2.3:o:siemens:ie\/as-i_link_pn_io_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:ie\/as-i_link_pn_io:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND

cpe:2.3:o:siemens:simatic_teleservice_adapter_standard_modem_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_teleservice_adapter_standard_modem:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND

cpe:2.3:o:siemens:simatic_teleservice_adapter_ie_basic_modem_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_teleservice_adapter_ie_basic_modem:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND

cpe:2.3:o:siemens:simatic_teleservice_adapter_ie_advanced_modem_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_teleservice_adapter_ie_advanced_modem:-:*:*:*:*:*:*:*

Configuration 35 [-]

AND

cpe:2.3:o:siemens:sitop_psu8600_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:sitop_psu8600:-:*:*:*:*:*:*:*

Configuration 36 [-]

AND

cpe:2.3:o:siemens:ups1600_profinet_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:ups1600_profinet:-:*:*:*:*:*:*:*

Configuration 37 [-]

AND

cpe:2.3:o:siemens:simatic_et_200al_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_et_200al:-:*:*:*:*:*:*:*

Configuration 38 [-]

AND

cpe:2.3:o:siemens:simatic_et_200ecopn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_et_200ecopn:-:*:*:*:*:*:*:*

Configuration 39 [-]

AND

cpe:2.3:o:siemens:simatic_et_200m_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_et_200m:-:*:*:*:*:*:*:*

Configuration 40 [-]

AND

cpe:2.3:o:siemens:simatic_et_200mp_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_et_200mp:-:*:*:*:*:*:*:*

Configuration 41 [-]

AND

cpe:2.3:o:siemens:simatic_et_200pro_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_et_200pro:-:*:*:*:*:*:*:*

Configuration 42 [-]

AND

cpe:2.3:o:siemens:simatic_et_200s_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_et_200s:-:*:*:*:*:*:*:*

Configuration 43 [-]

AND

cpe:2.3:o:siemens:simatic_et_200sp_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_et_200sp:-:*:*:*:*:*:*:*

Configuration 44 [-]

AND

cpe:2.3:o:siemens:pn\/pn_coupler_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:pn\/pn_coupler:-:*:*:*:*:*:*:*

Configuration 45 [-]

AND

OR	cpe:2.3:o:siemens:dk_standard_ethernet_controller_firmware::::::::
	cpe:2.3:o:siemens:dk_standard_ethernet_controller_firmware:4.1.1:-::::::

cpe:2.3:h:siemens:dk_standard_ethernet_controller:-:*:*:*:*:*:*:*

Configuration 46 [-]

AND

OR	cpe:2.3:o:siemens:ek-ertec_200p_pn_io_firmware::::::::
	cpe:2.3:o:siemens:ek-ertec_200p_pn_io_firmware:4.4.0:-::::::

cpe:2.3:h:siemens:ek-ertec_200p_pn_io:-:*:*:*:*:*:*:*

Configuration 47 [-]

AND

OR	cpe:2.3:o:siemens:ek-ertec_200_pn_io_firmware::::::::
	cpe:2.3:o:siemens:ek-ertec_200_pn_io_firmware:4.2.1:-::::::

cpe:2.3:h:siemens:ek-ertec_200_pn_io:-:*:*:*:*:*:*:*

Configuration 48 [-]

AND

cpe:2.3:o:siemens:simatic_s7-200_smart_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-200_smart:-:*:*:*:*:*:*:*

Configuration 49 [-]

AND

cpe:2.3:o:siemens:simatic_s7-300_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-300:-:*:*:*:*:*:*:*

Configuration 50 [-]

AND

cpe:2.3:o:siemens:simatic_s7-400_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-400:-:*:*:*:*:*:*:*

Configuration 51 [-]

AND

cpe:2.3:o:siemens:simatic_s7-1200_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-1200:-:*:*:*:*:*:*:*

Configuration 52 [-]

AND

cpe:2.3:o:siemens:simatic_s7-1500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_s7-1500:-:*:*:*:*:*:*:*

Configuration 53 [-]

AND

OR	cpe:2.3:o:siemens:simatic_winac_rtx_firmware::::::::
	cpe:2.3:o:siemens:simatic_winac_rtx_firmware:2010:-::::::

cpe:2.3:h:siemens:simatic_winac_rtx:-:*:*:*:*:*:*:*

Configuration 54 [-]

AND

cpe:2.3:o:siemens:sirius_act_3su1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:sirius_act_3su1:-:*:*:*:*:*:*:*

Configuration 55 [-]

AND

cpe:2.3:o:siemens:sirius_soft_starter_3rw44_pn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:sirius_soft_starter_3rw44_pn:-:*:*:*:*:*:*:*

Configuration 56 [-]

AND

cpe:2.3:o:siemens:sirius_motor_starter_m200d_profinet_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:sirius_motor_starter_m200d_profinet:-:*:*:*:*:*:*:*

Configuration 57 [-]

AND

cpe:2.3:o:siemens:simocode_pro_v_profinet_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simocode_pro_v_profinet:-:*:*:*:*:*:*:*

Configuration 58 [-]

AND

OR	cpe:2.3:o:siemens:sinamics_dcm_firmware::::::::
	cpe:2.3:o:siemens:sinamics_dcm_firmware:1.4:-::::::

cpe:2.3:h:siemens:sinamics_dcm:-:*:*:*:*:*:*:*

Configuration 59 [-]

AND

OR	cpe:2.3:o:siemens:sinamics_dcp_firmware::::::::
	cpe:2.3:o:siemens:sinamics_dcp_firmware:1.2:-::::::

cpe:2.3:h:siemens:sinamics_dcp:-:*:*:*:*:*:*:*

Configuration 60 [-]

AND

OR	cpe:2.3:o:siemens:sinamics_g110m_firmware::::::::
	cpe:2.3:o:siemens:sinamics_g110m_firmware:4.7:-::::::

cpe:2.3:h:siemens:sinamics_g110m:-:*:*:*:*:*:*:*

Configuration 61 [-]

AND

cpe:2.3:o:siemens:sinamics_g120\(c\/p\/d\)_pn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:sinamics_g120\(c\/p\/d\)_pn:-:*:*:*:*:*:*:*

Configuration 62 [-]

AND

OR	cpe:2.3:o:siemens:sinamics_g130_firmware::::::::
	cpe:2.3:o:siemens:sinamics_g130_firmware:4.7:-::::::

cpe:2.3:h:siemens:sinamics_g130:-:*:*:*:*:*:*:*

Configuration 63 [-]

AND

OR	cpe:2.3:o:siemens:sinamics_g150_firmware::::::::
	cpe:2.3:o:siemens:sinamics_g150_firmware:4.7:-::::::

cpe:2.3:h:siemens:sinamics_g150:-:*:*:*:*:*:*:*

Configuration 64 [-]

AND

OR	cpe:2.3:o:siemens:sinamics_s110_pn_firmware::::::::
	cpe:2.3:o:siemens:sinamics_s110_pn_firmware:4.4:-::::::

cpe:2.3:h:siemens:sinamics_s110_pn:-:*:*:*:*:*:*:*

Configuration 65 [-]

AND

OR	cpe:2.3:o:siemens:sinamics_s120_firmware::::::::
	cpe:2.3:o:siemens:sinamics_s120_firmware:4.7:-::::::

cpe:2.3:h:siemens:sinamics_s120:-:*:*:*:*:*:*:*

Configuration 66 [-]

AND

OR	cpe:2.3:o:siemens:sinamics_s150_firmware::::::::
	cpe:2.3:o:siemens:sinamics_s150_firmware:4.7:-::::::

cpe:2.3:h:siemens:sinamics_s150:-:*:*:*:*:*:*:*

Configuration 67 [-]

AND

cpe:2.3:o:siemens:sinamics_v90_pn_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:sinamics_v90_pn:-:*:*:*:*:*:*:*

Configuration 68 [-]

AND

OR	cpe:2.3:o:siemens:simotion_firmware::::::::
	cpe:2.3:o:siemens:simotion_firmware:4.5:-::::::

cpe:2.3:h:siemens:simotion:-:*:*:*:*:*:*:*

Configuration 69 [-]

AND

OR	cpe:2.3:o:siemens:sinumerik_828d_firmware::::::::
	cpe:2.3:o:siemens:sinumerik_828d_firmware:4.5:-::::::

cpe:2.3:h:siemens:sinumerik_828d:-:*:*:*:*:*:*:*

Configuration 70 [-]

AND

OR	cpe:2.3:o:siemens:sinumerik_840d_sl_firmware::::::::
	cpe:2.3:o:siemens:sinumerik_840d_sl_firmware:4.5:-::::::

cpe:2.3:h:siemens:sinumerik_840d_sl:-:*:*:*:*:*:*:*

Configuration 71 [-]

AND

cpe:2.3:o:siemens:simatic_hmi_comfort_panels:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_hmi_comfort_panels:-:*:*:*:*:*:*:*

Configuration 72 [-]

AND

cpe:2.3:o:siemens:simatic_hmi_multi_panels:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_hmi_multi_panels:-:*:*:*:*:*:*:*

Configuration 73 [-]

AND

cpe:2.3:o:siemens:simatic_hmi_mobile_panels:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_hmi_mobile_panels:-:*:*:*:*:*:*:*

Configuration 74 [-]

AND

cpe:2.3:o:siemens:simatic_cp_1243-1_irc_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_1243-1_irc:-:*:*:*:*:*:*:*

Configuration 75 [-]

AND

cpe:2.3:o:siemens:simatic_cp_1243-1_iec_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_1243-1_iec:-:*:*:*:*:*:*:*

Configuration 76 [-]

AND

cpe:2.3:o:siemens:simatic_cp_1243-1_dnp3_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cp_1243-1_dnp3:-:*:*:*:*:*:*:*

Configuration 77 [-]

AND

cpe:2.3:o:siemens:simatic_cm_1542sp-1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_cm_1542sp-1:-:*:*:*:*:*:*:*

Configuration 78 [-]

cpe:2.3:a:siemens:simatic_s7-1500_software_controller:*:*:*:*:*:*:*:*

Configuration 79 [-]

AND

OR	cpe:2.3:o:siemens:sinumerik_828d_firmware::::::::
	cpe:2.3:o:siemens:sinumerik_828d_firmware:4.7:-::::::

cpe:2.3:h:siemens:sinumerik_828d:-:*:*:*:*:*:*:*

Configuration 80 [-]

AND

OR	cpe:2.3:o:siemens:sinumerik_840d_sl_firmware::::::::
	cpe:2.3:o:siemens:sinumerik_840d_sl_firmware:4.7:-::::::

cpe:2.3:h:siemens:sinumerik_840d_sl:-:*:*:*:*:*:*:*

Configuration 81 [-]

AND

cpe:2.3:o:siemens:simatic_tdc_cpu555_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_tdc_cpu555:-:*:*:*:*:*:*:*

Configuration 82 [-]

AND

cpe:2.3:o:siemens:simatic_tdc_cp51m1_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_tdc_cp51m1:-:*:*:*:*:*:*:*

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2017-11824	Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://www.securityfocus.com/bid/98369
http://www.securitytracker.com/id/1038463
https://cert-portal.siemens.com/productcert/html/ssa-293562.html
https://cert-portal.siemens.com/productcert/pdf/ssa-293562.pdf
https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-293562.pdf

History

Tue, 10 Sep 2024 09:45:00 +0000

Type	Values Removed	Values Added
Description	Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected. This vulnerability affects only SIMATIC HMI Multi Panels and HMI Mobile Panels, and S7-300/S7-400 devices.	Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected.
Metrics	cvssV3_1 `{'score': 6.5, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C'}`	cvssV4_0 `{'score': 7.1, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N'}` cvssV3_1 `{'score': 6.5, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: siemens

Published: 2017-05-11T10:00:00

Updated: 2024-09-10T09:33:20.658Z

Reserved: 2016-12-01T00:00:00

Link: CVE-2017-2681

Vulnrichment

Updated: 2024-08-05T14:02:07.386Z

NVD

Status : Deferred

Published: 2017-05-11T10:29:00.180

Modified: 2025-04-20T01:37:25.860

Link: CVE-2017-2681

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-400

Metrics

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Adjacent Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

Affected Vendors & Products

Projects

JSON object

JSON object

JSON object

JSON object

JSON object