Siemens SIMATIC S7 1500 Firmware < 1.5.0 Multiple Vulnerabilities

high Nessus Network Monitor Plugin ID 134

Description

Siemens SIMATIC S7 1500 programmable logic controllers (PLCs) prior to firmware version 1.5 have multiple vulnerabilities that may allow attackers to perform Denial of Service (DoS) attacks with specially crafted HTTP(S), ISO-TSAP, or Profinet network packets. The web server may also be vulnerable to cross-site request forgery (CSRF), cross-site scripting (XSS), header injection, open redirect attacks, and privilege escalation.

Plugin Details

Severity: High

ID: 134

Family: SCADA

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: High

Base Score: 8.3

Temporal Score: 6.5

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:C

Reference Information

CVE: CVE-2014-2249

Detections

Analytics