Siemens SIMATIC S7 1500 Firmware < 1.6.0 DoS Vulnerability

high Nessus Network Monitor Plugin ID 135

Synopsis

A vulnerable Siemens SIMATIC S7 1500 programmable logic controller (PLC) has been detected.

Description

Siemens SIMATIC S7 1500 programmable logic controllers (PLCs) prior to firmware version 1.6 are vulnerable to a Denial of Service (DoS) via crafted TCP packets. Successful exploitation causes the CPU to automatically restart and remain in the "STOP" mode. The CPU would then need to be manually put in the "RUN" mode to restore operations.

Solution

Update the S7 1500 firmware to 1.6 or later.

Plugin Details

Severity: High

ID: 135

Family: SCADA

Published: 5/21/2019

Updated: 9/30/2019

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: High

Base Score: 7.1

Temporal Score: 5.6

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C

Vulnerability Information

CPE: cpe:/o:siemens:simatic_s7-1500_cpu_firmware:1.6

Patch Publication Date: 8/17/2014

Vulnerability Publication Date: 8/17/2014

Reference Information

CVE: CVE-2014-5074

Detections

Analytics