HIGH🇬🇧 English

CVE-2019-18336

CVSS 7.5v3.1pub. 2020-03-10upd. 2026-06-02

A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V3.X.17), SIMATIC TDC CP51M1 (All versions < V1.1.8), SIMATIC TDC CPU555 (All versions < V1.1.1), SINUMERIK 840D sl (All versions < V4.8.6), SINUMERIK 840D sl (All versions < V4.94). Specially crafted packets sent to port 102/tcp (Profinet) could cause the affected device to go into defect mode. A restart is required in order to recover the system. Successful exploitation requires an attacker to have network access to port 102/tcp, with no authentication. No user interation is required. At the time of advisory publication no public exploitation of this security vulnerability was known.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Siemens Simatic S7 300 Cpu

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic S7 300 Cpu 312 Ifm

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic S7 300 Cpu 312 Ifm Firmware

    OS
    Siemens
    < 3.3.17
  • Siemens Simatic S7 300 Cpu 313

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic S7 300 Cpu 313 Firmware

    OS
    Siemens
    < 3.3.17
  • Siemens Simatic S7 300 Cpu 314

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic S7 300 Cpu 314 Firmware

    OS
    Siemens
    < 3.3.17
  • Siemens Simatic S7 300 Cpu 314 Ifm

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic S7 300 Cpu 314 Ifm Firmware

    OS
    Siemens
    < 3.3.17
  • Siemens Simatic S7 300 Cpu 315

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic S7 300 Cpu 315 2 Dp

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic S7 300 Cpu 315 2 Dp Firmware

    OS
    Siemens
    < 3.3.17
  • Siemens Simatic S7 300 Cpu 315 Firmware

    OS
    Siemens
    < 3.3.17
  • Siemens Simatic S7 300 Cpu 316 2 Dp

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic S7 300 Cpu 316 2 Dp Firmware

    OS
    Siemens
    < 3.3.17
  • Siemens Simatic S7 300 Cpu 318 2

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic S7 300 Cpu 318 2 Firmware

    OS
    Siemens
    < 3.3.17
  • Siemens Simatic S7 300 Cpu Firmware

    OS
    Siemens
    < 3.3.17
  • Siemens Simatic Tdc Cp51m1

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Tdc Cp51m1 Firmware

    OS
    Siemens
    < 1.1.8
  • Siemens Simatic Tdc Cpu555

    HW
    Siemens
    wszystkie wersje
  • Siemens Simatic Tdc Cpu555 Firmware

    OS
    Siemens
    < 1.1.1
  • Siemens Sinumerik 840d Sl

    APP
    Siemens
    < 4.8.6< 4.94
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2020-15783HIGH7.5ten sam produkt

A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants...

CVE-2019-19300HIGH7.5ten sam produkt

A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, Development/...

CVE-2019-10936HIGH7.5ten sam produkt

Affected devices improperly handle large amounts of specially crafted UDP packets. This could allow an unau...

CVE-2019-10923HIGH7.5ten sam produkt

An attacker with network access to an affected product may cause a denial of service condition by breaking the...

CVE-2019-10937HIGH7.5ten sam produkt

A vulnerability has been identified in SIMATIC TDC CP51M1 (All versions < V1.1.7). An attacker with network ac...

CVE-2019-18336 — HIGH 7.5 | CVEbaza.pl