CVE-2020-15782

EPSS 0.41%
Veröffentlicht 28.05.2021 16:15:07
Zuletzt bearbeitet 21.11.2024 05:06:10
Quelle productcert@siemens.com
Teams Watchlist Login
Unerledigt Login

A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V21.9), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions < V4.5.0), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V2.9.2), SIMATIC S7-1500 Software Controller (All versions < V21.9), SIMATIC S7-PLCSIM Advanced (All versions < V4.0), SINAMICS PERFECT HARMONY GH180 Drives (Drives manufactured before 2021-08-13), SINUMERIK MC (All versions < V6.15), SINUMERIK ONE (All versions < V6.15). Affected devices are vulnerable to a memory protection bypass through a specific operation. A remote unauthenticated attacker with network access to port 102/tcp could potentially write arbitrary data and code to protected memory areas or read sensitive data to launch further attacks.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Siemens ≫ Simatic Driver Controller Firmware Version < 2.9.2

Siemens ≫ Cpu 1504d Tf Version-
Siemens ≫ Cpu 1507d Tf Version-

Siemens ≫ S7-1200 Cpu Firmware Version < 4.5.0

   Siemens ≫ Cpu 1211c Version-
   Siemens ≫ Cpu 1212c Version-
   Siemens ≫ Cpu 1212fc Version-
   Siemens ≫ Cpu 1214c Version-
   Siemens ≫ Cpu 1214fc Version-
   Siemens ≫ Cpu 1215c Version-
   Siemens ≫ Cpu 1215fc Version-
   Siemens ≫ Cpu 1217c Version-

Siemens ≫ S7-1500 Cpu Firmware Version < 2.9.2

Siemens ≫ Simatic S7-1500 Software Controller

Siemens ≫ Simatic S7-plcsim Advanced Version < 4.0

Siemens ≫ Et 200sp Open Controller Firmware

Siemens ≫ Cpu 1515sp Pc Version-
Siemens ≫ Cpu 1515sp Pc2 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.41%	0.585

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

https://cert-portal.siemens.com/productcert/pdf/ssa-434534.pdf

Patch

Vendor Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-434535.pdf

https://cert-portal.siemens.com/productcert/pdf/ssa-434536.pdf

https://nvd.nist.gov/vuln/detail/CVE-2020-15782

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2020-15782

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2020-15782

EUVD