All the vulnerabilites related to siemens - 6es7518-4fp00-0ab0
Vulnerability from fkie_nvd
Published
2021-05-28 16:15
Modified
2024-11-21 05:06
Severity ?
Summary
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V21.9), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions < V4.5.0), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V2.9.2), SIMATIC S7-1500 Software Controller (All versions < V21.9), SIMATIC S7-PLCSIM Advanced (All versions < V4.0), SINAMICS PERFECT HARMONY GH180 Drives (Drives manufactured before 2021-08-13), SINUMERIK MC (All versions < V6.15), SINUMERIK ONE (All versions < V6.15). Affected devices are vulnerable to a memory protection bypass through a specific operation. A remote unauthenticated attacker with network access to port 102/tcp could potentially write arbitrary data and code to protected memory areas or read sensitive data to launch further attacks.
References
Impacted products
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:simatic_driver_controller_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "A7B8C5FB-3BF8-4A74-AB58-474D754CFBBA",
"versionEndExcluding": "2.9.2",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:cpu_1504d_tf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6150A06A-0EB8-46CC-A118-2E70BF183CFE",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:cpu_1507d_tf:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1F33CBC2-330D-4791-9BAB-ECEF3720BBC0",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:s7-1200_cpu_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "6852AC11-6388-4D26-923E-DB8933F05EDC",
"versionEndExcluding": "4.5.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:cpu_1211c:-:*:*:*:*:*:*:*",
"matchCriteriaId": "172D341B-D863-4C24-9B6E-633EBE87C8C9",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:cpu_1212c:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1B475E4F-EE4F-4435-9F0B-8E4FA35377BE",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:cpu_1212fc:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1402D624-5AF3-4E25-A2B0-9D9F214EE8FE",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:cpu_1214c:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1F714315-8BEB-4BD3-BE59-C6649A0A105E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:cpu_1214fc:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2A988C9F-60DF-4BC5-A890-F03F445DD9BD",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:cpu_1215c:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C90820D3-3F3E-4DC4-9DCE-A498CC26268D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:cpu_1215fc:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BAF22AB6-6DAA-4983-99DB-4F2A2E76856F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:cpu_1217c:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4C95F12D-563A-4915-9F26-A461EB4F8FA1",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:s7-1500_cpu_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "7D8BEAD8-461A-4832-8BF7-9F2CE8ADB6BC",
"versionEndExcluding": "2.9.2",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:6es7510-1dj01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "0645616B-B515-49BE-9C9A-33A0E9E7C108",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7510-1sj01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "8D11FF81-01F3-4B07-B57C-8B43DAD3640A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7511-1ak01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B9FFB12A-E3B7-4273-AAAF-0AECB9BB69C0",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7511-1ak02-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "25A19AB0-CCC8-4513-8182-68CE66F136F1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7511-1ck00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DED5460A-76CF-4830-AAFB-A10CE7EFD129",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7511-1ck01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "207FD076-F2B7-4DE5-8390-E135A09DBD26",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7511-1fk01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DF0FB5A5-A930-4635-B483-991611967E1E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7511-1fk02-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7F039613-55B4-45E9-9E12-9603DF424A6A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7511-1tk01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BA18592B-0624-4C06-AC5E-1336E9E02C11",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7511-1uk01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F3C00821-4873-4B80-ADC5-FED9FFD810DC",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7512-1ck00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "4E4D7484-F6E9-4A5C-9695-691FC48D602C",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7512-1ck01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DE762064-FE24-4A1D-94DA-7411CC701B8A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7512-1dk01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2A1B45F7-14BA-45B5-AE0F-25F4E77CB40E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7512-1sk01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CC5C0BB0-A443-4764-9A9F-828882556665",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7513-1al01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7CC9DB1B-DDAC-4FD2-BB9E-F64941C14E58",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7513-1al02-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1C01A87E-E18E-4E83-BCC5-AAE48E177B96",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7513-1fl01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5426F764-765B-4E80-86D5-A86EF95A53F6",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7513-1fl02-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F16BF979-9B89-42C9-8B5D-2A9F5E76F10E",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7513-1rl00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "D7FC9267-B12D-4E13-BEB5-7D61989C1047",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7513-2gl00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "91E3A8F5-7BC8-43C5-84D9-00DCEB4D4E05",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7513-2pl00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CAA520E3-A01E-441C-95B3-B3481C4405C4",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7515-2am01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DBFB9E73-59C8-4E05-ABDD-335315EE37CD",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7515-2am02-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "225036D8-E501-4069-9D30-C243AE79CA2B",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7515-2fm01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "69F4097E-27F4-43EB-81E7-BD497477396F",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7515-2fm02-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "CF247FF5-E912-44E1-8D0A-781912797783",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7515-2rm00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B707B729-AEF1-446D-9E85-5504BF098635",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7515-2tm01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6DD88AAE-1926-47AA-9071-E657053D9A91",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7515-2um01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C71F8606-63FC-4BC6-830C-1FF19B30110A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7516-2gn00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "DEA0DD75-F6B4-41A7-A9AA-03FAFAA38B16",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7516-2pn00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1CBB9517-4F18-4CB9-B7F3-4D30D6E9DCE2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7516-3an01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "56C07F7B-5042-44BA-B5F3-438A60A776D7",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7516-3an02-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9D2412B1-8ADC-48AC-85CF-BAE6E3674B29",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7516-3fn01-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B6F8F1FC-3F9A-48B0-A6EE-9AB66AB4A1E5",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7516-3fn02-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BC0DCCCE-1348-48FC-BD48-0D23F4A8A69D",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7516-3tn00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "E728548F-2F18-4BF4-8A32-83CBAE2D5A12",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7516-3un00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BE4AEE6E-03BA-4302-9D77-FC3102A216E9",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7517-3ap00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C49DB60C-69FB-4251-9185-02CABCB66E86",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7517-3fp00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "5628EB18-2D21-40F2-ACCC-65EF5D9A5BB3",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7517-3hp00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2E341A3B-D0F6-49EC-AE13-CC2D0DA6AF15",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7517-3tp00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BD084757-FD90-45BA-96D2-F885741EE205",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7517-3up00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "1A49F3BE-3391-423F-9EBC-5DAEB1A33C06",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7518-4ap00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A40D89C7-A781-407A-B675-507E3211EB38",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7518-4ap00-3ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "91BAF17B-E442-48E2-8484-547CB4375213",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7518-4fp00-0ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "F17DE4F0-A475-4F08-99A5-36744978FEB2",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:6es7518-4fp00-3ab0:-:*:*:*:*:*:*:*",
"matchCriteriaId": "BC059287-41DD-4926-A17A-ED256541AD28",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:siemens:simatic_s7-1500__software_controller:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B6745F8B-D98C-4410-AB01-CE6EE3DDCB4A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:siemens:simatic_s7-plcsim_advanced:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E58BF80D-955E-44DE-B376-FC632C197390",
"versionEndExcluding": "4.0",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:siemens:et_200sp_open_controller_firmware:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1EA915A3-BC37-4907-8207-AD3B2E4C488F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:siemens:cpu_1515sp_pc:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2F01ED37-3930-48BD-B911-388775A1715A",
"vulnerable": false
},
{
"criteria": "cpe:2.3:h:siemens:cpu_1515sp_pc2:-:*:*:*:*:*:*:*",
"matchCriteriaId": "02DE6F0F-C1FD-4007-AFA4-12F79C8DF1EC",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability has been identified in SIMATIC Drive Controller family (All versions \u003c V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions \u003c V21.9), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions \u003c V4.5.0), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions \u003c V2.9.2), SIMATIC S7-1500 Software Controller (All versions \u003c V21.9), SIMATIC S7-PLCSIM Advanced (All versions \u003c V4.0), SINAMICS PERFECT HARMONY GH180 Drives (Drives manufactured before 2021-08-13), SINUMERIK MC (All versions \u003c V6.15), SINUMERIK ONE (All versions \u003c V6.15). Affected devices are vulnerable to a memory protection bypass through a specific operation. A remote unauthenticated attacker with network access to port 102/tcp could potentially write arbitrary data and code to protected memory areas or read sensitive data to launch further attacks."
},
{
"lang": "es",
"value": "Se ha identificado una vulnerabilidad en la familia SIMATIC Drive Controller (Todas las versiones anteriores a la versi\u00f3n V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incluyendo las variantes SIPLUS) (Todas las versiones), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incluyendo las variantes SIPLUS) (Todas las versiones anteriores a la versi\u00f3n V21.9), familia SIMATIC S7-1200 CPU (incluyendo las variantes SIPLUS) (Todas las versiones anteriores a la versi\u00f3n V4.5.0), familia SIMATIC S7-1500 CPU (incluyendo CPU ET200 relacionadas y variantes SIPLUS) (Todas las versiones anteriores a la versi\u00f3n V2.9.2), SIMATIC S7-1500 Software Controller (Todas las versiones anteriores a la versi\u00f3n V21.9), SIMATIC S7-PLCSIM Advanced (Todas las versiones anteriores a la versi\u00f3n V4.0), SINAMICS PERFECT HARMONY GH180 Drives (Unidades fabricadas antes de 2021-08-13), SINUMERIK MC (Todas las versiones anteriores a la versi\u00f3n V6.15), SINUMERIK ONE (Todas las versiones anteriores a la versi\u00f3n V6.15). Los dispositivos afectados son vulnerables a una omisi\u00f3n de protecci\u00f3n de la memoria mediante una operaci\u00f3n espec\u00edfica. Un atacante remoto no autenticado con acceso de red al puerto 102/tcp podr\u00eda potencialmente escribir datos y c\u00f3digo arbitrario en \u00e1reas de memoria protegidas o leer datos confidenciales para iniciar m\u00e1s ataques"
}
],
"id": "CVE-2020-15782",
"lastModified": "2024-11-21T05:06:10.140",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2021-05-28T16:15:07.790",
"references": [
{
"source": "productcert@siemens.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434534.pdf"
},
{
"source": "productcert@siemens.com",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434535.pdf"
},
{
"source": "productcert@siemens.com",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434536.pdf"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434534.pdf"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434535.pdf"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434536.pdf"
}
],
"sourceIdentifier": "productcert@siemens.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-119"
}
],
"source": "productcert@siemens.com",
"type": "Primary"
}
]
}
cve-2020-15782
Vulnerability from cvelistv5
Published
2021-05-28 16:10
Modified
2024-08-04 13:22
Severity ?
EPSS score ?
Summary
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V21.9), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions < V4.5.0), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V2.9.2), SIMATIC S7-1500 Software Controller (All versions < V21.9), SIMATIC S7-PLCSIM Advanced (All versions < V4.0), SINAMICS PERFECT HARMONY GH180 Drives (Drives manufactured before 2021-08-13), SINUMERIK MC (All versions < V6.15), SINUMERIK ONE (All versions < V6.15). Affected devices are vulnerable to a memory protection bypass through a specific operation. A remote unauthenticated attacker with network access to port 102/tcp could potentially write arbitrary data and code to protected memory areas or read sensitive data to launch further attacks.
References
| ▼ | URL | Tags |
|---|---|---|
| https://cert-portal.siemens.com/productcert/pdf/ssa-434534.pdf | x_refsource_MISC | |
| https://cert-portal.siemens.com/productcert/pdf/ssa-434536.pdf | x_refsource_MISC | |
| https://cert-portal.siemens.com/productcert/pdf/ssa-434535.pdf | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | |||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ▼ | Siemens | SIMATIC Drive Controller family |
Version: All versions < V2.9.2 |
||||||||||||||||||||||||||||||||||||
|
|||||||||||||||||||||||||||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T13:22:30.758Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434534.pdf"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434536.pdf"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434535.pdf"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "SIMATIC Drive Controller family",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V2.9.2"
}
]
},
{
"product": "SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions"
}
]
},
{
"product": "SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V21.9"
}
]
},
{
"product": "SIMATIC S7-1200 CPU family (incl. SIPLUS variants)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V4.5.0"
}
]
},
{
"product": "SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V2.9.2"
}
]
},
{
"product": "SIMATIC S7-1500 Software Controller",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V21.9"
}
]
},
{
"product": "SIMATIC S7-PLCSIM Advanced",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V4.0"
}
]
},
{
"product": "SINAMICS PERFECT HARMONY GH180 Drives",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "Drives manufactured before 2021-08-13"
}
]
},
{
"product": "SINUMERIK MC",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V6.15"
}
]
},
{
"product": "SINUMERIK ONE",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V6.15"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability has been identified in SIMATIC Drive Controller family (All versions \u003c V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions \u003c V21.9), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions \u003c V4.5.0), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions \u003c V2.9.2), SIMATIC S7-1500 Software Controller (All versions \u003c V21.9), SIMATIC S7-PLCSIM Advanced (All versions \u003c V4.0), SINAMICS PERFECT HARMONY GH180 Drives (Drives manufactured before 2021-08-13), SINUMERIK MC (All versions \u003c V6.15), SINUMERIK ONE (All versions \u003c V6.15). Affected devices are vulnerable to a memory protection bypass through a specific operation. A remote unauthenticated attacker with network access to port 102/tcp could potentially write arbitrary data and code to protected memory areas or read sensitive data to launch further attacks."
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-119",
"description": "CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-09-14T10:47:06",
"orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
"shortName": "siemens"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434534.pdf"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434536.pdf"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434535.pdf"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "productcert@siemens.com",
"ID": "CVE-2020-15782",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "SIMATIC Drive Controller family",
"version": {
"version_data": [
{
"version_value": "All versions \u003c V2.9.2"
}
]
}
},
{
"product_name": "SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)",
"version": {
"version_data": [
{
"version_value": "All versions"
}
]
}
},
{
"product_name": "SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants)",
"version": {
"version_data": [
{
"version_value": "All versions \u003c V21.9"
}
]
}
},
{
"product_name": "SIMATIC S7-1200 CPU family (incl. SIPLUS variants)",
"version": {
"version_data": [
{
"version_value": "All versions \u003c V4.5.0"
}
]
}
},
{
"product_name": "SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)",
"version": {
"version_data": [
{
"version_value": "All versions \u003c V2.9.2"
}
]
}
},
{
"product_name": "SIMATIC S7-1500 Software Controller",
"version": {
"version_data": [
{
"version_value": "All versions \u003c V21.9"
}
]
}
},
{
"product_name": "SIMATIC S7-PLCSIM Advanced",
"version": {
"version_data": [
{
"version_value": "All versions \u003c V4.0"
}
]
}
},
{
"product_name": "SINAMICS PERFECT HARMONY GH180 Drives",
"version": {
"version_data": [
{
"version_value": "Drives manufactured before 2021-08-13"
}
]
}
},
{
"product_name": "SINUMERIK MC",
"version": {
"version_data": [
{
"version_value": "All versions \u003c V6.15"
}
]
}
},
{
"product_name": "SINUMERIK ONE",
"version": {
"version_data": [
{
"version_value": "All versions \u003c V6.15"
}
]
}
}
]
},
"vendor_name": "Siemens"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A vulnerability has been identified in SIMATIC Drive Controller family (All versions \u003c V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions \u003c V21.9), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions \u003c V4.5.0), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions \u003c V2.9.2), SIMATIC S7-1500 Software Controller (All versions \u003c V21.9), SIMATIC S7-PLCSIM Advanced (All versions \u003c V4.0), SINAMICS PERFECT HARMONY GH180 Drives (Drives manufactured before 2021-08-13), SINUMERIK MC (All versions \u003c V6.15), SINUMERIK ONE (All versions \u003c V6.15). Affected devices are vulnerable to a memory protection bypass through a specific operation. A remote unauthenticated attacker with network access to port 102/tcp could potentially write arbitrary data and code to protected memory areas or read sensitive data to launch further attacks."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-434534.pdf",
"refsource": "MISC",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434534.pdf"
},
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-434536.pdf",
"refsource": "MISC",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434536.pdf"
},
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-434535.pdf",
"refsource": "MISC",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-434535.pdf"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77",
"assignerShortName": "siemens",
"cveId": "CVE-2020-15782",
"datePublished": "2021-05-28T16:10:10",
"dateReserved": "2020-07-15T00:00:00",
"dateUpdated": "2024-08-04T13:22:30.758Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}