Siemens

Simatic S7-1200 Firmware

10 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2020-28400

  • EPSS 1.08%
  • Published 13.07.2021 11:15:08
  • Last modified 10.12.2024 14:15:19

Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a denial of service condition. The vulnerability can be triggered if a large amount of DCP reset packets are sent to the device.

6.8

CVE-2019-13945

  • EPSS 0.15%
  • Published 12.12.2019 14:15:15
  • Last modified 21.11.2024 04:25:44

A vulnerability has been identified in SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions), SIMATIC S7-1200 CPU family < V4.x (incl. SIPLUS variants) (All versions), SIMATIC S7-1200 CPU family V4.x (incl. SIPLUS variants) (All versions ...

7.5

CVE-2018-13815

  • EPSS 0.45%
  • Published 13.12.2018 16:29:00
  • Last modified 21.11.2024 03:48:07

A vulnerability has been identified in SIMATIC S7-1200 (All versions), SIMATIC S7-1500 (All Versions < V2.6). An attacker could exhaust the available connection pool of an affected device by opening a sufficient number of connections to the device. S...

7.8

CVE-2017-12741

  • EPSS 5.26%
  • Published 26.12.2017 04:29:13
  • Last modified 20.04.2025 01:37:25

Specially crafted packets sent to port 161/udp could cause a denial of service condition. The affected devices must be restarted manually.

6.5

CVE-2017-2681

  • EPSS 0.44%
  • Published 11.05.2017 10:29:00
  • Last modified 20.04.2025 01:37:25

Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affec...

6.5

CVE-2017-2680

  • EPSS 2.34%
  • Published 11.05.2017 01:29:05
  • Last modified 20.04.2025 01:37:25

Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment (Layer 2). Human interaction is required to recover the systems. PROFIBUS interfaces are not affected.

7.8

CVE-2013-0700

  • EPSS 0.34%
  • Published 22.04.2013 03:27:13
  • Last modified 11.04.2025 00:51:21

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage) via crafted packets to TCP port 102 (aka the ISO-TSAP port).

7.8

CVE-2013-2780

  • EPSS 0.34%
  • Published 22.04.2013 03:27:13
  • Last modified 11.04.2025 00:51:21

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage) via crafted packets to UDP port 161 (aka the SNMP port).

4.3

CVE-2012-3040

  • EPSS 1.21%
  • Published 10.10.2012 18:55:02
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in the web server on Siemens SIMATIC S7-1200 PLCs 2.x through 3.0.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URI.

4.3

CVE-2012-3037

  • EPSS 0.64%
  • Published 25.09.2012 11:07:46
  • Last modified 11.04.2025 00:51:21

The Siemens SIMATIC S7-1200 2.x PLC does not properly protect the private key of the SIMATIC CONTROLLER Certification Authority certificate, which allows remote attackers to spoof the S7-1200 web server by using this key to create a forged certificat...