Vulnerability-Lookup

CVE-2016-7113 (GCVE-0-2016-7113)

Vulnerability from cvelistv5 – Published: 2016-09-06 00:00 – Updated: 2024-09-16 16:19

Summary

A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions < V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions < V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions < V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions < V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions < 1.02.02. Specially crafted packets sent to port 80/tcp could cause the affected device to go into defect mode.

Severity

No CVSS data available.

CWE

Assigner

mitre

References

5 references

URL	Tags
http://www.securityfocus.com/bid/92748	vdb-entryx_refsource_BID
https://www.siemens.com/cert/pool/cert/siemens_se…	x_refsource_CONFIRM
https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03	x_refsource_MISC
http://www.siemens.com/cert/pool/cert/siemens_sec…	x_refsource_CONFIRM
http://www.securityfocus.com/bid/99471	vdb-entryx_refsource_BID

Date Public

2017-07-04 00:00

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T01:50:47.436Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "92748",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/92748"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf"
          },
          {
            "name": "99471",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/99471"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2017-07-04T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions \u003c V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions \u003c V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions \u003c V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions \u003c V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions \u003c 1.02.02. Specially crafted packets sent to port 80/tcp could cause the affected device to go into defect mode."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-03-22T17:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "92748",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/92748"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf"
        },
        {
          "name": "99471",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/99471"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "DATE_PUBLIC": "2017-07-04T00:00:00",
          "ID": "CVE-2016-7113",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions \u003c V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions \u003c V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions \u003c V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions \u003c V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions \u003c 1.02.02. Specially crafted packets sent to port 80/tcp could cause the affected device to go into defect mode."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "92748",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/92748"
            },
            {
              "name": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf",
              "refsource": "CONFIRM",
              "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf"
            },
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03",
              "refsource": "MISC",
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03"
            },
            {
              "name": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf",
              "refsource": "CONFIRM",
              "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf"
            },
            {
              "name": "99471",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/99471"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2016-7113",
    "datePublished": "2016-09-06T00:00:00.000Z",
    "dateReserved": "2016-08-30T00:00:00.000Z",
    "dateUpdated": "2024-09-16T16:19:06.371Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2016-7113",
      "date": "2026-05-29",
      "epss": "0.00506",
      "percentile": "0.66509"
    },
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:en100_ethernet_module_firmware:4.28:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"862476A4-6C97-4E00-9EC1-5EEA8A27EE73\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:en100_ethernet_module:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DAC429FD-7148-4A68-AA81-8FBADA588F4E\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions \u003c V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions \u003c V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions \u003c V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions \u003c V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions \u003c 1.02.02. Specially crafted packets sent to port 80/tcp could cause the affected device to go into defect mode.\"}, {\"lang\": \"es\", \"value\": \"Se ha identificado una vulnerabilidad en la variante de Firmware PROFINET IO para los m\\u00f3dulos EN100 Ethernet: en todas las versiones anteriores a V1.04.01; la variante de Firmware Modbus TCP para los m\\u00f3dulos EN100 Ethernet: en todas las versiones anteriores a V1.11.00; la variante de Firmware v TCP para los m\\u00f3dulos EN100 Ethernet: en todas las versiones anteriores a V1.03; la variante de Firmware IEC 104 para los m\\u00f3dulos EN100 Ethernet: en todas las versiones anteriores a V1.21 y el m\\u00f3dulo EN100 Ethernet incluido en SIPROTEC Merging Unit 6MU80: todas las versiones anteriores a la 1.02.02. El env\\u00edo de paquetes especialmente manipulados al puerto 80/tcp podr\\u00edan provocar que el dispositivo afectado entre en modo defect.\"}]",
      "id": "CVE-2016-7113",
      "lastModified": "2024-11-21T02:57:29.400",
      "metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:C\", \"baseScore\": 7.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.9, \"acInsufInfo\": true, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2016-09-06T00:59:01.883",
      "references": "[{\"url\": \"http://www.securityfocus.com/bid/92748\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/99471\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/92748\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/99471\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-399\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2016-7113\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2016-09-06T00:59:01.883\",\"lastModified\":\"2026-05-06T22:30:45.220\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions \u003c V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions \u003c V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions \u003c V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions \u003c V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions \u003c 1.02.02. Specially crafted packets sent to port 80/tcp could cause the affected device to go into defect mode.\"},{\"lang\":\"es\",\"value\":\"Se ha identificado una vulnerabilidad en la variante de Firmware PROFINET IO para los m\u00f3dulos EN100 Ethernet: en todas las versiones anteriores a V1.04.01; la variante de Firmware Modbus TCP para los m\u00f3dulos EN100 Ethernet: en todas las versiones anteriores a V1.11.00; la variante de Firmware v TCP para los m\u00f3dulos EN100 Ethernet: en todas las versiones anteriores a V1.03; la variante de Firmware IEC 104 para los m\u00f3dulos EN100 Ethernet: en todas las versiones anteriores a V1.21 y el m\u00f3dulo EN100 Ethernet incluido en SIPROTEC Merging Unit 6MU80: todas las versiones anteriores a la 1.02.02. El env\u00edo de paquetes especialmente manipulados al puerto 80/tcp podr\u00edan provocar que el dispositivo afectado entre en modo defect.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":true,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-399\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:en100_ethernet_module_firmware:4.28:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"862476A4-6C97-4E00-9EC1-5EEA8A27EE73\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:en100_ethernet_module:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAC429FD-7148-4A68-AA81-8FBADA588F4E\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/92748\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/99471\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/92748\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/99471\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

CERTFR-2016-AVI-296

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été corrigées dans SCADA Siemens SIPROTEC 4 et SIPROTEC Compact. Elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une élévation de privilèges.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Micrologiciel pour modules Ethernet EN100 dans SIPROTEC 4 et SIPROTEC Compact versions antérieures à 4.29

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité SCADA Siemens du 05 septembre 2016

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eMicrologiciel pour modules Ethernet EN100 dans SIPROTEC 4 et  SIPROTEC Compact versions ant\u00e9rieures \u00e0 4.29\u003c/P\u003e",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-7114",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7114"
    },
    {
      "name": "CVE-2016-7112",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7112"
    },
    {
      "name": "CVE-2016-7113",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7113"
    }
  ],
  "links": [],
  "reference": "CERTFR-2016-AVI-296",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2016-09-06T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eSCADA Siemens SIPROTEC 4 et SIPROTEC Compact\u003c/span\u003e.\nElles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0\ndistance, un contournement de la politique de s\u00e9curit\u00e9 et une \u00e9l\u00e9vation\nde privil\u00e8ges.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans SCADA Siemens SIPROTEC 4 et SIPROTEC Compact",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SCADA Siemens du 05 septembre 2016",
      "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-630413.pdf"
    }
  ]
}

CERTFR-2017-AVI-200

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été corrigées dans SCADA les produits Siemens. Elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Siemens	N/A	Module Ethernet EN100 pour Reyrolle sans le dernier correctif de sécurité
	Siemens	N/A	Module Ethernet EN100 pour SIPROTEC 4 et SIPROTEC Compact sans le dernier correctif de sécurité

References

Title

Publication Time

Tags

Bulletin de sécurité Siemens SSA-452237 du 04 juillet 2017	None	vendor-advisory
Bulletin de sécurité Siemens SSA-323211 du 04 juillet 2017	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Module Ethernet EN100 pour Reyrolle sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Module Ethernet EN100 pour SIPROTEC 4 et SIPROTEC Compact sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-4784",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4784"
    },
    {
      "name": "CVE-2016-7114",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7114"
    },
    {
      "name": "CVE-2016-7112",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7112"
    },
    {
      "name": "CVE-2016-7113",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7113"
    },
    {
      "name": "CVE-2015-5374",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-5374"
    },
    {
      "name": "CVE-2016-4785",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4785"
    }
  ],
  "links": [],
  "reference": "CERTFR-2017-AVI-200",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2017-07-05T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eSCADA les produits Siemens\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer un d\u00e9ni de service \u00e0 distance, un contournement\nde la politique de s\u00e9curit\u00e9 et une atteinte \u00e0 la confidentialit\u00e9 des\ndonn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans SCADA les produits Siemens",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-452237 du 04 juillet 2017",
      "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-452237.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-323211 du 04 juillet 2017",
      "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf"
    }
  ]
}

CERTFR-2017-AVI-437

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans SCADA Siemens SWT3000. Elles permettent à un attaquant de provoquer un déni de service à distance, un contournement de la politique de sécurité et une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

EN100 pour SWT3000 (iSWT3000) avec:
- IEC 61850 microgiciel toutes versions antérieures à V4.29.01
- TPOP microgiciel toutes versions antérieures V01.01.00

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Siemens SSA-350846 du 29 novembre 2017

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cul\u003e \u003cli\u003eEN100 pour SWT3000 (iSWT3000) avec: \u003cul\u003e \u003cli\u003eIEC 61850 microgiciel toutes versions ant\u00e9rieures \u00e0 V4.29.01\u003c/li\u003e \u003cli\u003eTPOP microgiciel toutes versions ant\u00e9rieures V01.01.00\u003c/li\u003e \u003c/ul\u003e \u003c/li\u003e \u003c/ul\u003e ",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-4784",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4784"
    },
    {
      "name": "CVE-2016-7114",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7114"
    },
    {
      "name": "CVE-2016-7112",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7112"
    },
    {
      "name": "CVE-2016-7113",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7113"
    },
    {
      "name": "CVE-2016-4785",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4785"
    }
  ],
  "links": [],
  "reference": "CERTFR-2017-AVI-437",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2017-11-30T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans SCADA Siemens\nSWT3000. Elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service\n\u00e0 distance, un contournement de la politique de s\u00e9curit\u00e9 et une atteinte\n\u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans SCADA Siemens SWT3000",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-350846 du 29 novembre 2017",
      "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-350846.pdf"
    }
  ]
}

CERTFR-2016-AVI-296

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Micrologiciel pour modules Ethernet EN100 dans SIPROTEC 4 et SIPROTEC Compact versions antérieures à 4.29

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité SCADA Siemens du 05 septembre 2016

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eMicrologiciel pour modules Ethernet EN100 dans SIPROTEC 4 et  SIPROTEC Compact versions ant\u00e9rieures \u00e0 4.29\u003c/P\u003e",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-7114",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7114"
    },
    {
      "name": "CVE-2016-7112",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7112"
    },
    {
      "name": "CVE-2016-7113",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7113"
    }
  ],
  "links": [],
  "reference": "CERTFR-2016-AVI-296",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2016-09-06T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eSCADA Siemens SIPROTEC 4 et SIPROTEC Compact\u003c/span\u003e.\nElles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0\ndistance, un contournement de la politique de s\u00e9curit\u00e9 et une \u00e9l\u00e9vation\nde privil\u00e8ges.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans SCADA Siemens SIPROTEC 4 et SIPROTEC Compact",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SCADA Siemens du 05 septembre 2016",
      "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-630413.pdf"
    }
  ]
}

CERTFR-2017-AVI-200

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Siemens	N/A	Module Ethernet EN100 pour Reyrolle sans le dernier correctif de sécurité
	Siemens	N/A	Module Ethernet EN100 pour SIPROTEC 4 et SIPROTEC Compact sans le dernier correctif de sécurité

References

Title

Publication Time

Tags

Bulletin de sécurité Siemens SSA-452237 du 04 juillet 2017	None	vendor-advisory
Bulletin de sécurité Siemens SSA-323211 du 04 juillet 2017	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Module Ethernet EN100 pour Reyrolle sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    },
    {
      "description": "Module Ethernet EN100 pour SIPROTEC 4 et SIPROTEC Compact sans le dernier correctif de s\u00e9curit\u00e9",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Siemens",
          "scada": true
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-4784",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4784"
    },
    {
      "name": "CVE-2016-7114",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7114"
    },
    {
      "name": "CVE-2016-7112",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7112"
    },
    {
      "name": "CVE-2016-7113",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7113"
    },
    {
      "name": "CVE-2015-5374",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-5374"
    },
    {
      "name": "CVE-2016-4785",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4785"
    }
  ],
  "links": [],
  "reference": "CERTFR-2017-AVI-200",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2017-07-05T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eSCADA les produits Siemens\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer un d\u00e9ni de service \u00e0 distance, un contournement\nde la politique de s\u00e9curit\u00e9 et une atteinte \u00e0 la confidentialit\u00e9 des\ndonn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans SCADA les produits Siemens",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-452237 du 04 juillet 2017",
      "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-452237.pdf"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-323211 du 04 juillet 2017",
      "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf"
    }
  ]
}

CERTFR-2017-AVI-437

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

EN100 pour SWT3000 (iSWT3000) avec:
- IEC 61850 microgiciel toutes versions antérieures à V4.29.01
- TPOP microgiciel toutes versions antérieures V01.01.00

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Siemens SSA-350846 du 29 novembre 2017

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cul\u003e \u003cli\u003eEN100 pour SWT3000 (iSWT3000) avec: \u003cul\u003e \u003cli\u003eIEC 61850 microgiciel toutes versions ant\u00e9rieures \u00e0 V4.29.01\u003c/li\u003e \u003cli\u003eTPOP microgiciel toutes versions ant\u00e9rieures V01.01.00\u003c/li\u003e \u003c/ul\u003e \u003c/li\u003e \u003c/ul\u003e ",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-4784",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4784"
    },
    {
      "name": "CVE-2016-7114",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7114"
    },
    {
      "name": "CVE-2016-7112",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7112"
    },
    {
      "name": "CVE-2016-7113",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7113"
    },
    {
      "name": "CVE-2016-4785",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4785"
    }
  ],
  "links": [],
  "reference": "CERTFR-2017-AVI-437",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2017-11-30T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans SCADA Siemens\nSWT3000. Elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service\n\u00e0 distance, un contournement de la politique de s\u00e9curit\u00e9 et une atteinte\n\u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans SCADA Siemens SWT3000",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Siemens SSA-350846 du 29 novembre 2017",
      "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-350846.pdf"
    }
  ]
}

CNVD-2016-07253

Vulnerability from cnvd - Published: 2016-09-06

Title

Siemens SIPROTEC 4/SIPROTEC Compact拒绝服务漏洞

Description

SIPROTEC 4及SIPROTEC Compact设备可对变电所及其他应用提供广泛的集中防护、控制及自动化功能。 Siemens SIPROTEC 4、SIPROTEC Compact设备，EN100 Ethernet 4.29之前版本存在拒绝服务漏洞。远程攻击者通过构造的HTTP数据包，可造成拒绝服务。

Severity

中

Patch Name

Siemens SIPROTEC 4/SIPROTEC Compact拒绝服务漏洞的补丁

Patch Description

SIPROTEC 4及SIPROTEC Compact设备可对变电所及其他应用提供广泛的集中防护、控制及自动化功能。 Siemens SIPROTEC 4、SIPROTEC Compact设备，EN100 Ethernet 4.29之前版本存在拒绝服务漏洞。远程攻击者通过构造的HTTP数据包，可造成拒绝服务。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf

Reference

http://www.securityfocus.com/bid/92748 http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf

Impacted products

Name
['Siemens SIPROTEC Compact <EN100 Ethernet 4.29', 'Siemens SIPROTEC 4 <EN100 Ethernet 4.29']

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "92748"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-7113"
    }
  },
  "description": "SIPROTEC 4\u53caSIPROTEC Compact\u8bbe\u5907\u53ef\u5bf9\u53d8\u7535\u6240\u53ca\u5176\u4ed6\u5e94\u7528\u63d0\u4f9b\u5e7f\u6cdb\u7684\u96c6\u4e2d\u9632\u62a4\u3001\u63a7\u5236\u53ca\u81ea\u52a8\u5316\u529f\u80fd\u3002\r\n\r\nSiemens SIPROTEC 4\u3001SIPROTEC Compact\u8bbe\u5907\uff0cEN100 Ethernet 4.29\u4e4b\u524d\u7248\u672c\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u901a\u8fc7\u6784\u9020\u7684HTTP\u6570\u636e\u5305\uff0c\u53ef\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002",
  "discovererName": "Siemens",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u8fd9\u4e2a\u5b89\u5168\u95ee\u9898\uff0c\u8bf7\u5230\u5382\u5546\u7684\u4e3b\u9875\u4e0b\u8f7d\uff1a\r\nhttp://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-07253",
  "openTime": "2016-09-06",
  "patchDescription": "SIPROTEC 4\u53caSIPROTEC Compact\u8bbe\u5907\u53ef\u5bf9\u53d8\u7535\u6240\u53ca\u5176\u4ed6\u5e94\u7528\u63d0\u4f9b\u5e7f\u6cdb\u7684\u96c6\u4e2d\u9632\u62a4\u3001\u63a7\u5236\u53ca\u81ea\u52a8\u5316\u529f\u80fd\u3002\r\n\r\nSiemens SIPROTEC 4\u3001SIPROTEC Compact\u8bbe\u5907\uff0cEN100 Ethernet 4.29\u4e4b\u524d\u7248\u672c\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u901a\u8fc7\u6784\u9020\u7684HTTP\u6570\u636e\u5305\uff0c\u53ef\u9020\u6210\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Siemens SIPROTEC 4/SIPROTEC Compact\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Siemens SIPROTEC Compact \u003cEN100 Ethernet 4.29",
      "Siemens SIPROTEC 4 \u003cEN100 Ethernet 4.29"
    ]
  },
  "referenceLink": "http://www.securityfocus.com/bid/92748\r\nhttp://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf",
  "serverity": "\u4e2d",
  "submitTime": "2016-09-06",
  "title": "Siemens SIPROTEC 4/SIPROTEC Compact\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}

FKIE_CVE-2016-7113

Vulnerability from fkie_nvd - Published: 2016-09-06 00:59 - Updated: 2026-05-06 22:30

Severity

7.5 (High) - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Summary

References

URL	Tags
cve@mitre.org	http://www.securityfocus.com/bid/92748
cve@mitre.org	http://www.securityfocus.com/bid/99471
cve@mitre.org	http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf	Vendor Advisory
cve@mitre.org	https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03
cve@mitre.org	https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/92748
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/99471
af854a3a-2127-422b-91ae-364da2661108	http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03
af854a3a-2127-422b-91ae-364da2661108	https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf

Impacted products

	Vendor	Product	Version
	siemens	en100_ethernet_module_firmware	4.28
	siemens	en100_ethernet_module	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:siemens:en100_ethernet_module_firmware:4.28:*:*:*:*:*:*:*",
              "matchCriteriaId": "862476A4-6C97-4E00-9EC1-5EEA8A27EE73",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:siemens:en100_ethernet_module:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DAC429FD-7148-4A68-AA81-8FBADA588F4E",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions \u003c V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions \u003c V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions \u003c V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions \u003c V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions \u003c 1.02.02. Specially crafted packets sent to port 80/tcp could cause the affected device to go into defect mode."
    },
    {
      "lang": "es",
      "value": "Se ha identificado una vulnerabilidad en la variante de Firmware PROFINET IO para los m\u00f3dulos EN100 Ethernet: en todas las versiones anteriores a V1.04.01; la variante de Firmware Modbus TCP para los m\u00f3dulos EN100 Ethernet: en todas las versiones anteriores a V1.11.00; la variante de Firmware v TCP para los m\u00f3dulos EN100 Ethernet: en todas las versiones anteriores a V1.03; la variante de Firmware IEC 104 para los m\u00f3dulos EN100 Ethernet: en todas las versiones anteriores a V1.21 y el m\u00f3dulo EN100 Ethernet incluido en SIPROTEC Merging Unit 6MU80: todas las versiones anteriores a la 1.02.02. El env\u00edo de paquetes especialmente manipulados al puerto 80/tcp podr\u00edan provocar que el dispositivo afectado entre en modo defect."
    }
  ],
  "id": "CVE-2016-7113",
  "lastModified": "2026-05-06T22:30:45.220",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": true,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.8,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 7.5,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2016-09-06T00:59:01.883",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/92748"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/99471"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/92748"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/99471"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-399"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-86WF-Q4PV-Q73V

Vulnerability from github – Published: 2022-05-14 03:35 – Updated: 2022-05-14 03:35

Details

Severity

7.5 (High)


                  
                    CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2016-7113"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2016-09-06T00:59:00Z",
    "severity": "HIGH"
  },
  "details": "A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions \u003c V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions \u003c V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions \u003c V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions \u003c V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions \u003c 1.02.02. Specially crafted packets sent to port 80/tcp could cause the affected device to go into defect mode.",
  "id": "GHSA-86wf-q4pv-q73v",
  "modified": "2022-05-14T03:35:57Z",
  "published": "2022-05-14T03:35:57Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-7113"
    },
    {
      "type": "WEB",
      "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03"
    },
    {
      "type": "WEB",
      "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/92748"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/99471"
    },
    {
      "type": "WEB",
      "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2016-7113

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2016-7113

Aliases

CVE-2016-7113

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2016-7113",
    "description": "A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions \u003c V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions \u003c V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions \u003c V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions \u003c V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions \u003c 1.02.02. Specially crafted packets sent to port 80/tcp could cause the affected device to go into defect mode.",
    "id": "GSD-2016-7113"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2016-7113"
      ],
      "details": "A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions \u003c V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions \u003c V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions \u003c V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions \u003c V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions \u003c 1.02.02. Specially crafted packets sent to port 80/tcp could cause the affected device to go into defect mode.",
      "id": "GSD-2016-7113",
      "modified": "2023-12-13T01:21:20.862984Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "DATE_PUBLIC": "2017-07-04T00:00:00",
        "ID": "CVE-2016-7113",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions \u003c V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions \u003c V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions \u003c V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions \u003c V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions \u003c 1.02.02. Specially crafted packets sent to port 80/tcp could cause the affected device to go into defect mode."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "92748",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/92748"
          },
          {
            "name": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf",
            "refsource": "CONFIRM",
            "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf"
          },
          {
            "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03",
            "refsource": "MISC",
            "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03"
          },
          {
            "name": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf",
            "refsource": "CONFIRM",
            "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf"
          },
          {
            "name": "99471",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/99471"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:a:siemens:en100_ethernet_module_firmware:4.28:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:siemens:en100_ethernet_module:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2016-7113"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions \u003c V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions \u003c V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions \u003c V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions \u003c V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions \u003c 1.02.02. Specially crafted packets sent to port 80/tcp could cause the affected device to go into defect mode."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-399"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-630413.pdf"
            },
            {
              "name": "92748",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/92748"
            },
            {
              "name": "99471",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/99471"
            },
            {
              "name": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf"
            },
            {
              "name": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03",
              "refsource": "MISC",
              "tags": [],
              "url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": true,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 3.6
        }
      },
      "lastModifiedDate": "2018-03-23T01:29Z",
      "publishedDate": "2016-09-06T00:59Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.

Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2016-7113 (GCVE-0-2016-7113)

Solution

Solution

Solution

Solution

Solution

Solution

Tags

Sightings

Nomenclature