SSA-480230
Vulnerability from csaf_siemens - Published: 2019-04-09 00:00 - Updated: 2023-05-09 00:00Summary
SSA-480230: Denial of Service Vulnerability in Webserver of Industrial Products
Notes
Summary: A vulnerability in the affected devices could allow an unauthorized attacker
with network access to the webserver of an affected device to perform a
denial of service attack.
Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.
General Recommendations: As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download:
https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources: For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use: Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter "License Terms"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter "Terms of Use"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.
CWE-125
- Out-of-bounds Read
Affected products
Known affected
86 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SIMATIC CP 1604 (6GK1160-4AA01)
Siemens / SIMATIC CP 1604 (6GK1160-4AA01)
|
6GK1160-4AA01
|
vers:all/* |
Mitigation
Mitigation
No Fix Planned
|
|
SIMATIC CP 1616 (6GK1161-6AA02)
Siemens / SIMATIC CP 1616 (6GK1161-6AA02)
|
6GK1161-6AA02
|
vers:all/* |
Mitigation
Mitigation
No Fix Planned
|
|
SIMATIC CP 343-1 Advanced (6GK7343-1GX31-0XE0)
Siemens / SIMATIC CP 343-1 Advanced (6GK7343-1GX31-0XE0)
|
6GK7343-1GX31-0XE0
|
vers:all/* |
Mitigation
Mitigation
No Fix Planned
|
|
SIMATIC CP 443-1 (6GK7443-1EX30-0XE0)
Siemens / SIMATIC CP 443-1 (6GK7443-1EX30-0XE0)
|
6GK7443-1EX30-0XE0
|
vers:all/<V3.3 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC CP 443-1 (6GK7443-1EX30-0XE1)
Siemens / SIMATIC CP 443-1 (6GK7443-1EX30-0XE1)
|
6GK7443-1EX30-0XE1
|
vers:all/<V3.3 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC CP 443-1 Advanced (6GK7443-1GX30-0XE0)
Siemens / SIMATIC CP 443-1 Advanced (6GK7443-1GX30-0XE0)
|
6GK7443-1GX30-0XE0
|
vers:all/<V3.3 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC CP 443-1 OPC UA (6GK7443-1UX00-0XE0)
Siemens / SIMATIC CP 443-1 OPC UA (6GK7443-1UX00-0XE0)
|
6GK7443-1UX00-0XE0
|
vers:all/* |
Mitigation
Mitigation
No Fix Planned
|
|
SIMATIC ET 200pro IM154-8 PN/DP CPU (6ES7154-8AB01-0AB0)
Siemens / SIMATIC ET 200pro IM154-8 PN/DP CPU (6ES7154-8AB01-0AB0)
|
6ES7154-8AB01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200pro IM154-8F PN/DP CPU (6ES7154-8FB01-0AB0)
Siemens / SIMATIC ET 200pro IM154-8F PN/DP CPU (6ES7154-8FB01-0AB0)
|
6ES7154-8FB01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200pro IM154-8FX PN/DP CPU (6ES7154-8FX00-0AB0)
Siemens / SIMATIC ET 200pro IM154-8FX PN/DP CPU (6ES7154-8FX00-0AB0)
|
6ES7154-8FX00-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200S IM151-8 PN/DP CPU (6ES7151-8AB01-0AB0)
Siemens / SIMATIC ET 200S IM151-8 PN/DP CPU (6ES7151-8AB01-0AB0)
|
6ES7151-8AB01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200S IM151-8F PN/DP CPU (6ES7151-8FB01-0AB0)
Siemens / SIMATIC ET 200S IM151-8F PN/DP CPU (6ES7151-8FB01-0AB0)
|
6ES7151-8FB01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
|
vers:all/<V2.1.6 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants)
Siemens / SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants)
|
vers:all/<V2.7 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC HMI Comfort Outdoor Panels 7" & 15" (incl. SIPLUS variants)
Siemens / SIMATIC HMI Comfort Outdoor Panels 7" & 15" (incl. SIPLUS variants)
|
All versions < V15.1 Upd4 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC HMI Comfort Panels 4" - 22" (incl. SIPLUS variants)
Siemens / SIMATIC HMI Comfort Panels 4" - 22" (incl. SIPLUS variants)
|
All versions < V15.1 Upd4 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 and KTP900F
Siemens / SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 and KTP900F
|
All versions < V15.1 Upd4 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC IPC DiagMonitor
Siemens / SIMATIC IPC DiagMonitor
|
vers:all/<V5.1.3 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC RF182C (6GT2002-0JD10)
Siemens / SIMATIC RF182C (6GT2002-0JD10)
|
6GT2002-0JD10
|
vers:all/* |
Mitigation
Mitigation
Mitigation
No Fix Planned
|
|
SIMATIC RF185C (6GT2002-0JE10)
Siemens / SIMATIC RF185C (6GT2002-0JE10)
|
6GT2002-0JE10
|
vers:all/<V1.1.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC RF186C (6GT2002-0JE20)
Siemens / SIMATIC RF186C (6GT2002-0JE20)
|
6GT2002-0JE20
|
vers:all/<V1.1.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC RF188C (6GT2002-0JE40)
Siemens / SIMATIC RF188C (6GT2002-0JE40)
|
6GT2002-0JE40
|
vers:all/<V1.1.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC RF600R family
Siemens / SIMATIC RF600R family
|
vers:all/<V3.2.1 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC RFID 181EIP (6GT2002-0JD20)
Siemens / SIMATIC RFID 181EIP (6GT2002-0JD20)
|
6GT2002-0JD20
|
vers:all/* |
Mitigation
Mitigation
Mitigation
No Fix Planned
|
|
SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)
Siemens / SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)
|
vers:all/<V2.6.1 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC S7-1500 Software Controller
Siemens / SIMATIC S7-1500 Software Controller
|
vers:all/<V2.7 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0)
Siemens / SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0)
|
6ES7314-6EH04-0AB0
|
vers:all/<V3.3.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0)
Siemens / SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0)
|
6ES7315-2EH14-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0)
Siemens / SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0)
|
6ES7315-2FJ14-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0)
Siemens / SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0)
|
6ES7315-7TJ10-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0)
Siemens / SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0)
|
6ES7317-2EK14-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0)
Siemens / SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0)
|
6ES7317-2FK14-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0)
Siemens / SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0)
|
6ES7317-7TK10-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0)
Siemens / SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0)
|
6ES7317-7UL10-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0)
Siemens / SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0)
|
6ES7318-3EL01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0)
Siemens / SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0)
|
6ES7318-3FL01-0AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants)
Siemens / SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants)
|
vers:all/* |
Mitigation
Mitigation
No Fix Planned
|
|
|
SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)
Siemens / SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)
|
vers:all/* |
Mitigation
Mitigation
No Fix Planned
|
|
|
SIMATIC S7-PLCSIM Advanced
Siemens / SIMATIC S7-PLCSIM Advanced
|
All versions < V2.0 SP1 UPD1 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SIMATIC Teleservice Adapter IE Advanced
Siemens / SIMATIC Teleservice Adapter IE Advanced
|
vers:all/* |
Mitigation
Mitigation
Mitigation
No Fix Planned
|
|
|
SIMATIC Teleservice Adapter IE Basic
Siemens / SIMATIC Teleservice Adapter IE Basic
|
vers:all/* |
Mitigation
Mitigation
Mitigation
No Fix Planned
|
|
|
SIMATIC Teleservice Adapter IE Standard
Siemens / SIMATIC Teleservice Adapter IE Standard
|
vers:all/* |
Mitigation
Mitigation
Mitigation
No Fix Planned
|
|
|
SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0)
Siemens / SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0)
|
6ES7671-0RC08-0YA0
|
All versions < V2010 SP3 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0)
Siemens / SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0)
|
6ES7671-1RC08-0YA0
|
All versions < V2010 SP3 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIMATIC WinCC Runtime Advanced
Siemens / SIMATIC WinCC Runtime Advanced
|
All versions < V15.1 Upd4 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SIMOCODE pro V Ethernet/IP (incl. SIPLUS variants)
Siemens / SIMOCODE pro V Ethernet/IP (incl. SIPLUS variants)
|
vers:all/<V1.1.3 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SIMOCODE pro V PROFINET (incl. SIPLUS variants)
Siemens / SIMOCODE pro V PROFINET (incl. SIPLUS variants)
|
vers:all/<V2.1.3 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS G130 V4.6 Control Unit
Siemens / SINAMICS G130 V4.6 Control Unit
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS G130 V4.7 Control Unit
Siemens / SINAMICS G130 V4.7 Control Unit
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS G130 V4.7 SP1 Control Unit
Siemens / SINAMICS G130 V4.7 SP1 Control Unit
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS G130 V4.8 Control Unit
Siemens / SINAMICS G130 V4.8 Control Unit
|
All versions < V4.8 HF6 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS G130 V5.1 Control Unit
Siemens / SINAMICS G130 V5.1 Control Unit
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS G130 V5.1 SP1 Control Unit
Siemens / SINAMICS G130 V5.1 SP1 Control Unit
|
All versions < V5.1 SP1 HF4 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS G150 V4.6 Control Unit
Siemens / SINAMICS G150 V4.6 Control Unit
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS G150 V4.7 Control Unit
Siemens / SINAMICS G150 V4.7 Control Unit
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS G150 V4.7 SP1 Control Unit
Siemens / SINAMICS G150 V4.7 SP1 Control Unit
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS G150 V4.8 Control Unit
Siemens / SINAMICS G150 V4.8 Control Unit
|
All versions < V4.8 HF6 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS G150 V5.1 Control Unit
Siemens / SINAMICS G150 V5.1 Control Unit
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS G150 V5.1 SP1 Control Unit
Siemens / SINAMICS G150 V5.1 SP1 Control Unit
|
All versions < V5.1 SP1 HF4 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS S120 V4.6 Control Unit (incl. SIPLUS variants)
Siemens / SINAMICS S120 V4.6 Control Unit (incl. SIPLUS variants)
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS S120 V4.7 Control Unit (incl. SIPLUS variants)
Siemens / SINAMICS S120 V4.7 Control Unit (incl. SIPLUS variants)
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS S120 V4.7 SP1 Control Unit (incl. SIPLUS variants)
Siemens / SINAMICS S120 V4.7 SP1 Control Unit (incl. SIPLUS variants)
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS S120 V4.8 Control Unit (incl. SIPLUS variants)
Siemens / SINAMICS S120 V4.8 Control Unit (incl. SIPLUS variants)
|
All versions < V4.8 HF6 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS S120 V5.1 Control Unit (incl. SIPLUS variants)
Siemens / SINAMICS S120 V5.1 Control Unit (incl. SIPLUS variants)
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS S120 V5.1 SP1 Control Unit (incl. SIPLUS variants)
Siemens / SINAMICS S120 V5.1 SP1 Control Unit (incl. SIPLUS variants)
|
All versions < V5.1 SP1 HF4 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS S150 V4.6 Control Unit
Siemens / SINAMICS S150 V4.6 Control Unit
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS S150 V4.7 Control Unit
Siemens / SINAMICS S150 V4.7 Control Unit
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS S150 V4.7 SP1 Control Unit
Siemens / SINAMICS S150 V4.7 SP1 Control Unit
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS S150 V4.8 Control Unit
Siemens / SINAMICS S150 V4.8 Control Unit
|
All versions < V4.8 HF6 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS S150 V5.1 Control Unit
Siemens / SINAMICS S150 V5.1 Control Unit
|
vers:all/* |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS S150 V5.1 SP1 Control Unit
Siemens / SINAMICS S150 V5.1 SP1 Control Unit
|
All versions < V5.1 SP1 HF4 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SINAMICS S210
Siemens / SINAMICS S210
|
vers:all/<V5.1 SP1 HF8 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SIPLUS ET 200S IM151-8 PN/DP CPU (6AG1151-8AB01-7AB0)
Siemens / SIPLUS ET 200S IM151-8 PN/DP CPU (6AG1151-8AB01-7AB0)
|
6AG1151-8AB01-7AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIPLUS ET 200S IM151-8F PN/DP CPU (6AG1151-8FB01-2AB0)
Siemens / SIPLUS ET 200S IM151-8F PN/DP CPU (6AG1151-8FB01-2AB0)
|
6AG1151-8FB01-2AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIPLUS NET CP 343-1 Advanced (6AG1343-1GX31-4XE0)
Siemens / SIPLUS NET CP 343-1 Advanced (6AG1343-1GX31-4XE0)
|
6AG1343-1GX31-4XE0
|
vers:all/* |
Mitigation
Mitigation
No Fix Planned
|
|
SIPLUS NET CP 443-1 (6AG1443-1EX30-4XE0)
Siemens / SIPLUS NET CP 443-1 (6AG1443-1EX30-4XE0)
|
6AG1443-1EX30-4XE0
|
vers:all/<V3.3 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIPLUS NET CP 443-1 Advanced (6AG1443-1GX30-4XE0)
Siemens / SIPLUS NET CP 443-1 Advanced (6AG1443-1GX30-4XE0)
|
6AG1443-1GX30-4XE0
|
vers:all/<V3.3 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0)
Siemens / SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0)
|
6AG1314-6EH04-7AB0
|
vers:all/<V3.3.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0)
Siemens / SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0)
|
6AG1315-2EH14-7AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0)
Siemens / SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0)
|
6AG1315-2FJ14-2AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0)
Siemens / SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0)
|
6AG1317-2EK14-7AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0)
Siemens / SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0)
|
6AG1317-2FK14-2AB0
|
vers:all/<V3.2.16 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SITOP Manager
Siemens / SITOP Manager
|
vers:all/<V1.1 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SITOP PSU8600
Siemens / SITOP PSU8600
|
vers:all/<V1.5 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
SITOP UPS1600 (incl. SIPLUS variants)
Siemens / SITOP UPS1600 (incl. SIPLUS variants)
|
vers:all/<V2.3 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
|
TIM 1531 IRC (incl. SIPLUS NET variants)
Siemens / TIM 1531 IRC (incl. SIPLUS NET variants)
|
vers:all/<V2.1 |
Mitigation
Mitigation
Vendor Fix
fix
|
References
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited. (TLPv2: TLP:CLEAR)",
"tlp": {
"label": "WHITE"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A vulnerability in the affected devices could allow an unauthorized attacker\nwith network access to the webserver of an affected device to perform a\ndenial of service attack.\n\nSiemens has released updates for several affected products and recommends to update to the latest versions. Siemens recommends specific countermeasures for products where updates are not, or not yet available.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "productcert@siemens.com",
"name": "Siemens ProductCERT",
"namespace": "https://www.siemens.com"
},
"references": [
{
"category": "self",
"summary": "SSA-480230: Denial of Service Vulnerability in Webserver of Industrial Products - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-480230.html"
},
{
"category": "self",
"summary": "SSA-480230: Denial of Service Vulnerability in Webserver of Industrial Products - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-480230.json"
},
{
"category": "self",
"summary": "SSA-480230: Denial of Service Vulnerability in Webserver of Industrial Products - PDF Version",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-480230.pdf"
},
{
"category": "self",
"summary": "SSA-480230: Denial of Service Vulnerability in Webserver of Industrial Products - TXT Version",
"url": "https://cert-portal.siemens.com/productcert/txt/ssa-480230.txt"
}
],
"title": "SSA-480230: Denial of Service Vulnerability in Webserver of Industrial Products",
"tracking": {
"current_release_date": "2023-05-09T00:00:00Z",
"generator": {
"engine": {
"name": "Siemens ProductCERT CSAF Generator",
"version": "1"
}
},
"id": "SSA-480230",
"initial_release_date": "2019-04-09T00:00:00Z",
"revision_history": [
{
"date": "2019-04-09T00:00:00Z",
"legacy_version": "1.0",
"number": "1",
"summary": "Publication Date"
},
{
"date": "2019-05-14T00:00:00Z",
"legacy_version": "1.1",
"number": "2",
"summary": "Specification for SINAMICS products, added solution for SIMATIC S7-1500 CPU family and SIMATIC S7-PLCSIM Advanced"
},
{
"date": "2019-06-11T00:00:00Z",
"legacy_version": "1.2",
"number": "3",
"summary": "Added update for SIMATIC Software Controller and SIMATIC ET 200 SP Open Controller CPU 1515SP PC2"
},
{
"date": "2019-07-09T00:00:00Z",
"legacy_version": "1.3",
"number": "4",
"summary": "Added update for SIMATIC RF600 family, SIMATIC RF185C, SIMATIC RF186C, and SIMATIC RF188C"
},
{
"date": "2019-10-08T00:00:00Z",
"legacy_version": "1.4",
"number": "5",
"summary": "Renamed SIMATIC WinAC RTX 2010 to SIMATIC WinAC RTX (F) 2010 and added update for SIMATIC WinAC RTX (F) 2010"
},
{
"date": "2020-01-14T00:00:00Z",
"legacy_version": "1.5",
"number": "6",
"summary": "Added update for WinCC Runtime Advanced, SITOP Manager, SITOP UPS1600, and SIMATIC HMI Panels. SIPLUS devices now explicitly mentioned in the list of affected products"
},
{
"date": "2020-02-11T00:00:00Z",
"legacy_version": "1.6",
"number": "7",
"summary": "Added update for SITOP PSU8600, TIM 1531 IRC"
},
{
"date": "2020-03-10T00:00:00Z",
"legacy_version": "1.7",
"number": "8",
"summary": "Added update for SIMATIC IPC DiagMonitor"
},
{
"date": "2020-06-09T00:00:00Z",
"legacy_version": "1.8",
"number": "9",
"summary": "Added update for SIMOCODE pro V PN; clarified update version information for SINAMICS G130/G150/S150 and SINAMICS S120"
},
{
"date": "2020-08-11T00:00:00Z",
"legacy_version": "1.9",
"number": "10",
"summary": "Added update for SIMOCODE pro V EIP; informed about successor product for SIMATIC Teleservice adapters"
},
{
"date": "2020-09-08T00:00:00Z",
"legacy_version": "2.0",
"number": "11",
"summary": "Informed about successor products for SIMATIC RF182C and RFID 181EIP"
},
{
"date": "2020-12-08T00:00:00Z",
"legacy_version": "2.1",
"number": "12",
"summary": "Updated information regarding successor products for SIMATIC RF182C and RFID 181EIP"
},
{
"date": "2022-02-08T00:00:00Z",
"legacy_version": "2.2",
"number": "13",
"summary": "No remediation planned for SIMATIC CP 343-1 Advanced, SIMATIC CP 443-1 OPC UA, SIMATIC CP 1604, SIMATIC CP 1616, and SIPLUS NET CP 343-1 Advanced"
},
{
"date": "2022-06-14T00:00:00Z",
"legacy_version": "2.3",
"number": "14",
"summary": "No fix planned for SIMATIC CP 443-1 Advanced and SIPLUS NET CP 443-1 Advanced"
},
{
"date": "2022-08-09T00:00:00Z",
"legacy_version": "2.4",
"number": "15",
"summary": "No fix planned for SIMATIC S7-400 PN/DP V6 and below CPU family; consolidated mitigation measures"
},
{
"date": "2023-01-10T00:00:00Z",
"legacy_version": "2.5",
"number": "16",
"summary": "SIMATIC S7-300 CPU family expanded with product specific designations, patch links and MLFBs and Name of SIMOCODE pro V EIP (incl. SIPLUS variants) was updated to SIMOCODE pro V Ethernet/IP (incl. SIPLUS variants) and Name of SIMOCODE pro V PN (incl. SIPLUS variants) was updated to SIMOCODE pro V PROFINET (incl. SIPLUS variants); No fix planned for SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)"
},
{
"date": "2023-04-11T00:00:00Z",
"legacy_version": "2.6",
"number": "17",
"summary": "Added fix for SIMATIC CP 443-1 and CP 443-1 Advanced and for SINAMICS S210"
},
{
"date": "2023-05-09T00:00:00Z",
"legacy_version": "2.7",
"number": "18",
"summary": "Updated fix information for SINAMICS S210"
}
],
"status": "interim",
"version": "18"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC CP 1604 (6GK1160-4AA01)",
"product_id": "1",
"product_identification_helper": {
"model_numbers": [
"6GK1160-4AA01"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 1604 (6GK1160-4AA01)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC CP 1616 (6GK1161-6AA02)",
"product_id": "2",
"product_identification_helper": {
"model_numbers": [
"6GK1161-6AA02"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 1616 (6GK1161-6AA02)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC CP 343-1 Advanced (6GK7343-1GX31-0XE0)",
"product_id": "3",
"product_identification_helper": {
"model_numbers": [
"6GK7343-1GX31-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 343-1 Advanced (6GK7343-1GX31-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIMATIC CP 443-1 (6GK7443-1EX30-0XE0)",
"product_id": "4",
"product_identification_helper": {
"model_numbers": [
"6GK7443-1EX30-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 443-1 (6GK7443-1EX30-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIMATIC CP 443-1 (6GK7443-1EX30-0XE1)",
"product_id": "5",
"product_identification_helper": {
"model_numbers": [
"6GK7443-1EX30-0XE1"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 443-1 (6GK7443-1EX30-0XE1)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIMATIC CP 443-1 Advanced (6GK7443-1GX30-0XE0)",
"product_id": "6",
"product_identification_helper": {
"model_numbers": [
"6GK7443-1GX30-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 443-1 Advanced (6GK7443-1GX30-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC CP 443-1 OPC UA (6GK7443-1UX00-0XE0)",
"product_id": "7",
"product_identification_helper": {
"model_numbers": [
"6GK7443-1UX00-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 443-1 OPC UA (6GK7443-1UX00-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200pro IM154-8 PN/DP CPU (6ES7154-8AB01-0AB0)",
"product_id": "8",
"product_identification_helper": {
"model_numbers": [
"6ES7154-8AB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200pro IM154-8 PN/DP CPU (6ES7154-8AB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200pro IM154-8F PN/DP CPU (6ES7154-8FB01-0AB0)",
"product_id": "9",
"product_identification_helper": {
"model_numbers": [
"6ES7154-8FB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200pro IM154-8F PN/DP CPU (6ES7154-8FB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200pro IM154-8FX PN/DP CPU (6ES7154-8FX00-0AB0)",
"product_id": "10",
"product_identification_helper": {
"model_numbers": [
"6ES7154-8FX00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200pro IM154-8FX PN/DP CPU (6ES7154-8FX00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200S IM151-8 PN/DP CPU (6ES7151-8AB01-0AB0)",
"product_id": "11",
"product_identification_helper": {
"model_numbers": [
"6ES7151-8AB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200S IM151-8 PN/DP CPU (6ES7151-8AB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC ET 200S IM151-8F PN/DP CPU (6ES7151-8FB01-0AB0)",
"product_id": "12",
"product_identification_helper": {
"model_numbers": [
"6ES7151-8FB01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200S IM151-8F PN/DP CPU (6ES7151-8FB01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV2.1.6",
"product": {
"name": "SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)",
"product_id": "13"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV2.7",
"product": {
"name": "SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants)",
"product_id": "14"
}
}
],
"category": "product_name",
"name": "SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V15.1 Upd4",
"product": {
"name": "SIMATIC HMI Comfort Outdoor Panels 7\" \u0026 15\" (incl. SIPLUS variants)",
"product_id": "15"
}
}
],
"category": "product_name",
"name": "SIMATIC HMI Comfort Outdoor Panels 7\" \u0026 15\" (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V15.1 Upd4",
"product": {
"name": "SIMATIC HMI Comfort Panels 4\" - 22\" (incl. SIPLUS variants)",
"product_id": "16"
}
}
],
"category": "product_name",
"name": "SIMATIC HMI Comfort Panels 4\" - 22\" (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V15.1 Upd4",
"product": {
"name": "SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 and KTP900F",
"product_id": "17"
}
}
],
"category": "product_name",
"name": "SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 and KTP900F"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV5.1.3",
"product": {
"name": "SIMATIC IPC DiagMonitor",
"product_id": "18"
}
}
],
"category": "product_name",
"name": "SIMATIC IPC DiagMonitor"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC RF182C (6GT2002-0JD10)",
"product_id": "19",
"product_identification_helper": {
"model_numbers": [
"6GT2002-0JD10"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC RF182C (6GT2002-0JD10)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV1.1.0",
"product": {
"name": "SIMATIC RF185C (6GT2002-0JE10)",
"product_id": "20",
"product_identification_helper": {
"model_numbers": [
"6GT2002-0JE10"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC RF185C (6GT2002-0JE10)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV1.1.0",
"product": {
"name": "SIMATIC RF186C (6GT2002-0JE20)",
"product_id": "21",
"product_identification_helper": {
"model_numbers": [
"6GT2002-0JE20"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC RF186C (6GT2002-0JE20)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV1.1.0",
"product": {
"name": "SIMATIC RF188C (6GT2002-0JE40)",
"product_id": "22",
"product_identification_helper": {
"model_numbers": [
"6GT2002-0JE40"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC RF188C (6GT2002-0JE40)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.1",
"product": {
"name": "SIMATIC RF600R family",
"product_id": "23"
}
}
],
"category": "product_name",
"name": "SIMATIC RF600R family"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC RFID 181EIP (6GT2002-0JD20)",
"product_id": "24",
"product_identification_helper": {
"model_numbers": [
"6GT2002-0JD20"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC RFID 181EIP (6GT2002-0JD20)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV2.6.1",
"product": {
"name": "SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)",
"product_id": "25"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV2.7",
"product": {
"name": "SIMATIC S7-1500 Software Controller",
"product_id": "26"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1500 Software Controller"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3.16",
"product": {
"name": "SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0)",
"product_id": "27",
"product_identification_helper": {
"model_numbers": [
"6ES7314-6EH04-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 314C-2 PN/DP (6ES7314-6EH04-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0)",
"product_id": "28",
"product_identification_helper": {
"model_numbers": [
"6ES7315-2EH14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 315-2 PN/DP (6ES7315-2EH14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0)",
"product_id": "29",
"product_identification_helper": {
"model_numbers": [
"6ES7315-2FJ14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 315F-2 PN/DP (6ES7315-2FJ14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0)",
"product_id": "30",
"product_identification_helper": {
"model_numbers": [
"6ES7315-7TJ10-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 315T-3 PN/DP (6ES7315-7TJ10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0)",
"product_id": "31",
"product_identification_helper": {
"model_numbers": [
"6ES7317-2EK14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317-2 PN/DP (6ES7317-2EK14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0)",
"product_id": "32",
"product_identification_helper": {
"model_numbers": [
"6ES7317-2FK14-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317F-2 PN/DP (6ES7317-2FK14-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0)",
"product_id": "33",
"product_identification_helper": {
"model_numbers": [
"6ES7317-7TK10-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317T-3 PN/DP (6ES7317-7TK10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0)",
"product_id": "34",
"product_identification_helper": {
"model_numbers": [
"6ES7317-7UL10-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 317TF-3 PN/DP (6ES7317-7UL10-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0)",
"product_id": "35",
"product_identification_helper": {
"model_numbers": [
"6ES7318-3EL01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 319-3 PN/DP (6ES7318-3EL01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0)",
"product_id": "36",
"product_identification_helper": {
"model_numbers": [
"6ES7318-3FL01-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-300 CPU 319F-3 PN/DP (6ES7318-3FL01-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants)",
"product_id": "37"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)",
"product_id": "38"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V2.0 SP1 UPD1",
"product": {
"name": "SIMATIC S7-PLCSIM Advanced",
"product_id": "39"
}
}
],
"category": "product_name",
"name": "SIMATIC S7-PLCSIM Advanced"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC Teleservice Adapter IE Advanced",
"product_id": "40"
}
}
],
"category": "product_name",
"name": "SIMATIC Teleservice Adapter IE Advanced"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC Teleservice Adapter IE Basic",
"product_id": "41"
}
}
],
"category": "product_name",
"name": "SIMATIC Teleservice Adapter IE Basic"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIMATIC Teleservice Adapter IE Standard",
"product_id": "42"
}
}
],
"category": "product_name",
"name": "SIMATIC Teleservice Adapter IE Standard"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V2010 SP3",
"product": {
"name": "SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0)",
"product_id": "43",
"product_identification_helper": {
"model_numbers": [
"6ES7671-0RC08-0YA0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC WinAC RTX 2010 (6ES7671-0RC08-0YA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V2010 SP3",
"product": {
"name": "SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0)",
"product_id": "44",
"product_identification_helper": {
"model_numbers": [
"6ES7671-1RC08-0YA0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC WinAC RTX F 2010 (6ES7671-1RC08-0YA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V15.1 Upd4",
"product": {
"name": "SIMATIC WinCC Runtime Advanced",
"product_id": "45"
}
}
],
"category": "product_name",
"name": "SIMATIC WinCC Runtime Advanced"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV1.1.3",
"product": {
"name": "SIMOCODE pro V Ethernet/IP (incl. SIPLUS variants)",
"product_id": "46"
}
}
],
"category": "product_name",
"name": "SIMOCODE pro V Ethernet/IP (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV2.1.3",
"product": {
"name": "SIMOCODE pro V PROFINET (incl. SIPLUS variants)",
"product_id": "47"
}
}
],
"category": "product_name",
"name": "SIMOCODE pro V PROFINET (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS G130 V4.6 Control Unit",
"product_id": "48"
}
}
],
"category": "product_name",
"name": "SINAMICS G130 V4.6 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS G130 V4.7 Control Unit",
"product_id": "49"
}
}
],
"category": "product_name",
"name": "SINAMICS G130 V4.7 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS G130 V4.7 SP1 Control Unit",
"product_id": "50"
}
}
],
"category": "product_name",
"name": "SINAMICS G130 V4.7 SP1 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V4.8 HF6",
"product": {
"name": "SINAMICS G130 V4.8 Control Unit",
"product_id": "51"
}
}
],
"category": "product_name",
"name": "SINAMICS G130 V4.8 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS G130 V5.1 Control Unit",
"product_id": "52"
}
}
],
"category": "product_name",
"name": "SINAMICS G130 V5.1 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V5.1 SP1 HF4",
"product": {
"name": "SINAMICS G130 V5.1 SP1 Control Unit",
"product_id": "53"
}
}
],
"category": "product_name",
"name": "SINAMICS G130 V5.1 SP1 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS G150 V4.6 Control Unit",
"product_id": "54"
}
}
],
"category": "product_name",
"name": "SINAMICS G150 V4.6 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS G150 V4.7 Control Unit",
"product_id": "55"
}
}
],
"category": "product_name",
"name": "SINAMICS G150 V4.7 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS G150 V4.7 SP1 Control Unit",
"product_id": "56"
}
}
],
"category": "product_name",
"name": "SINAMICS G150 V4.7 SP1 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V4.8 HF6",
"product": {
"name": "SINAMICS G150 V4.8 Control Unit",
"product_id": "57"
}
}
],
"category": "product_name",
"name": "SINAMICS G150 V4.8 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS G150 V5.1 Control Unit",
"product_id": "58"
}
}
],
"category": "product_name",
"name": "SINAMICS G150 V5.1 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V5.1 SP1 HF4",
"product": {
"name": "SINAMICS G150 V5.1 SP1 Control Unit",
"product_id": "59"
}
}
],
"category": "product_name",
"name": "SINAMICS G150 V5.1 SP1 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS S120 V4.6 Control Unit (incl. SIPLUS variants)",
"product_id": "60"
}
}
],
"category": "product_name",
"name": "SINAMICS S120 V4.6 Control Unit (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS S120 V4.7 Control Unit (incl. SIPLUS variants)",
"product_id": "61"
}
}
],
"category": "product_name",
"name": "SINAMICS S120 V4.7 Control Unit (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS S120 V4.7 SP1 Control Unit (incl. SIPLUS variants)",
"product_id": "62"
}
}
],
"category": "product_name",
"name": "SINAMICS S120 V4.7 SP1 Control Unit (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V4.8 HF6",
"product": {
"name": "SINAMICS S120 V4.8 Control Unit (incl. SIPLUS variants)",
"product_id": "63"
}
}
],
"category": "product_name",
"name": "SINAMICS S120 V4.8 Control Unit (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS S120 V5.1 Control Unit (incl. SIPLUS variants)",
"product_id": "64"
}
}
],
"category": "product_name",
"name": "SINAMICS S120 V5.1 Control Unit (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V5.1 SP1 HF4",
"product": {
"name": "SINAMICS S120 V5.1 SP1 Control Unit (incl. SIPLUS variants)",
"product_id": "65"
}
}
],
"category": "product_name",
"name": "SINAMICS S120 V5.1 SP1 Control Unit (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS S150 V4.6 Control Unit",
"product_id": "66"
}
}
],
"category": "product_name",
"name": "SINAMICS S150 V4.6 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS S150 V4.7 Control Unit",
"product_id": "67"
}
}
],
"category": "product_name",
"name": "SINAMICS S150 V4.7 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS S150 V4.7 SP1 Control Unit",
"product_id": "68"
}
}
],
"category": "product_name",
"name": "SINAMICS S150 V4.7 SP1 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V4.8 HF6",
"product": {
"name": "SINAMICS S150 V4.8 Control Unit",
"product_id": "69"
}
}
],
"category": "product_name",
"name": "SINAMICS S150 V4.8 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINAMICS S150 V5.1 Control Unit",
"product_id": "70"
}
}
],
"category": "product_name",
"name": "SINAMICS S150 V5.1 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "All versions \u003c V5.1 SP1 HF4",
"product": {
"name": "SINAMICS S150 V5.1 SP1 Control Unit",
"product_id": "71"
}
}
],
"category": "product_name",
"name": "SINAMICS S150 V5.1 SP1 Control Unit"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV5.1 SP1 HF8",
"product": {
"name": "SINAMICS S210",
"product_id": "72"
}
}
],
"category": "product_name",
"name": "SINAMICS S210"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS ET 200S IM151-8 PN/DP CPU (6AG1151-8AB01-7AB0)",
"product_id": "73",
"product_identification_helper": {
"model_numbers": [
"6AG1151-8AB01-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200S IM151-8 PN/DP CPU (6AG1151-8AB01-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS ET 200S IM151-8F PN/DP CPU (6AG1151-8FB01-2AB0)",
"product_id": "74",
"product_identification_helper": {
"model_numbers": [
"6AG1151-8FB01-2AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200S IM151-8F PN/DP CPU (6AG1151-8FB01-2AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SIPLUS NET CP 343-1 Advanced (6AG1343-1GX31-4XE0)",
"product_id": "75",
"product_identification_helper": {
"model_numbers": [
"6AG1343-1GX31-4XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS NET CP 343-1 Advanced (6AG1343-1GX31-4XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIPLUS NET CP 443-1 (6AG1443-1EX30-4XE0)",
"product_id": "76",
"product_identification_helper": {
"model_numbers": [
"6AG1443-1EX30-4XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS NET CP 443-1 (6AG1443-1EX30-4XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3",
"product": {
"name": "SIPLUS NET CP 443-1 Advanced (6AG1443-1GX30-4XE0)",
"product_id": "77",
"product_identification_helper": {
"model_numbers": [
"6AG1443-1GX30-4XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS NET CP 443-1 Advanced (6AG1443-1GX30-4XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.3.16",
"product": {
"name": "SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0)",
"product_id": "78",
"product_identification_helper": {
"model_numbers": [
"6AG1314-6EH04-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 314C-2 PN/DP (6AG1314-6EH04-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0)",
"product_id": "79",
"product_identification_helper": {
"model_numbers": [
"6AG1315-2EH14-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 315-2 PN/DP (6AG1315-2EH14-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0)",
"product_id": "80",
"product_identification_helper": {
"model_numbers": [
"6AG1315-2FJ14-2AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 315F-2 PN/DP (6AG1315-2FJ14-2AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0)",
"product_id": "81",
"product_identification_helper": {
"model_numbers": [
"6AG1317-2EK14-7AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 317-2 PN/DP (6AG1317-2EK14-7AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV3.2.16",
"product": {
"name": "SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0)",
"product_id": "82",
"product_identification_helper": {
"model_numbers": [
"6AG1317-2FK14-2AB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-300 CPU 317F-2 PN/DP (6AG1317-2FK14-2AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV1.1",
"product": {
"name": "SITOP Manager",
"product_id": "83"
}
}
],
"category": "product_name",
"name": "SITOP Manager"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV1.5",
"product": {
"name": "SITOP PSU8600",
"product_id": "84"
}
}
],
"category": "product_name",
"name": "SITOP PSU8600"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV2.3",
"product": {
"name": "SITOP UPS1600 (incl. SIPLUS variants)",
"product_id": "85"
}
}
],
"category": "product_name",
"name": "SITOP UPS1600 (incl. SIPLUS variants)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/\u003cV2.1",
"product": {
"name": "TIM 1531 IRC (incl. SIPLUS NET variants)",
"product_id": "86"
}
}
],
"category": "product_name",
"name": "TIM 1531 IRC (incl. SIPLUS NET variants)"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-6568",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "The webserver of the affected devices contains a vulnerability that may lead to\r\na denial of service condition. An attacker may cause a denial of service\r\nsituation which leads to a restart of the webserver of the affected device.\r\n\r\nThe security vulnerability could be exploited by an attacker with network\r\naccess to the affected systems. Successful exploitation requires no system\r\nprivileges and no user interaction. An attacker could use the vulnerability\r\nto compromise availability of the device.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"24",
"25",
"26",
"27",
"28",
"29",
"30",
"31",
"32",
"33",
"34",
"35",
"36",
"37",
"38",
"39",
"40",
"41",
"42",
"43",
"44",
"45",
"46",
"47",
"48",
"49",
"50",
"51",
"52",
"53",
"54",
"55",
"56",
"57",
"58",
"59",
"60",
"61",
"62",
"63",
"64",
"65",
"66",
"67",
"68",
"69",
"70",
"71",
"72",
"73",
"74",
"75",
"76",
"77",
"78",
"79",
"80",
"81",
"82",
"83",
"84",
"85",
"86"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Restrict network access to the integrated webserver",
"product_ids": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"24",
"25",
"26",
"27",
"28",
"29",
"30",
"31",
"32",
"33",
"34",
"35",
"36",
"37",
"38",
"39",
"40",
"41",
"42",
"43",
"44",
"45",
"46",
"47",
"48",
"49",
"50",
"51",
"52",
"53",
"54",
"55",
"56",
"57",
"58",
"59",
"60",
"61",
"62",
"63",
"64",
"65",
"66",
"67",
"68",
"69",
"70",
"71",
"72",
"73",
"74",
"75",
"76",
"77",
"78",
"79",
"80",
"81",
"82",
"83",
"84",
"85",
"86"
]
},
{
"category": "mitigation",
"details": "Deactivate the webserver if not required, and if deactivation is supported by the product",
"product_ids": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"24",
"25",
"26",
"27",
"28",
"29",
"30",
"31",
"32",
"33",
"34",
"35",
"36",
"37",
"38",
"39",
"40",
"41",
"42",
"43",
"44",
"45",
"46",
"47",
"48",
"49",
"50",
"51",
"52",
"53",
"54",
"55",
"56",
"57",
"58",
"59",
"60",
"61",
"62",
"63",
"64",
"65",
"66",
"67",
"68",
"69",
"70",
"71",
"72",
"73",
"74",
"75",
"76",
"77",
"78",
"79",
"80",
"81",
"82",
"83",
"84",
"85",
"86"
]
},
{
"category": "mitigation",
"details": "Migrate to a successor product within the SCALANCE M-800 family. For details refer to the notice of discontinuation at \nhttps://support.industry.siemens.com/cs/ww/en/view/109781070",
"product_ids": [
"40",
"41",
"42"
]
},
{
"category": "mitigation",
"details": "Migrate to a successor product within the SIMATIC RF18xC/CI family, V1.3 (see \nhttps://support.industry.siemens.com/cs/ww/en/view/109781665) or later version. For details refer to the phase-out announcement at https://support.industry.siemens.com/cs/ww/en/view/109783832",
"product_ids": [
"19",
"24"
]
},
{
"category": "no_fix_planned",
"details": "Currently no fix is planned",
"product_ids": [
"1",
"2",
"3",
"7",
"19",
"24",
"37",
"38",
"40",
"41",
"42",
"75"
]
},
{
"category": "vendor_fix",
"details": "Update to V3.3 or later version",
"product_ids": [
"4",
"5",
"6",
"76",
"77"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109817938/"
},
{
"category": "vendor_fix",
"details": "Update to V5.1 SP1 HF8 or later version",
"product_ids": [
"72"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109781700/"
},
{
"category": "vendor_fix",
"details": "Update to V2.7 or later version",
"product_ids": [
"26"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109478528/"
},
{
"category": "vendor_fix",
"details": "Update to V2.0 SP1 UPD1 or later version",
"product_ids": [
"39"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109764222/"
},
{
"category": "vendor_fix",
"details": "Update to V5.1.3 or later version",
"product_ids": [
"18"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109763202/"
},
{
"category": "vendor_fix",
"details": "Update to V1.1.0 or later version",
"product_ids": [
"20",
"21",
"22"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109768507/"
},
{
"category": "vendor_fix",
"details": "Update to V1.5 or later version",
"product_ids": [
"84"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/102295547/"
},
{
"category": "vendor_fix",
"details": "Update to V1.1 or later version",
"product_ids": [
"83"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109760607/"
},
{
"category": "vendor_fix",
"details": "Update to V15.1 Upd4 or later version",
"product_ids": [
"45"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109763891/"
},
{
"category": "vendor_fix",
"details": "Update to V2.6.1 or later version",
"product_ids": [
"25"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109478459/"
},
{
"category": "vendor_fix",
"details": "Update to latest version of V5.2",
"product_ids": [
"60",
"61",
"62"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109762626"
},
{
"category": "vendor_fix",
"details": "Update to V4.8 HF6",
"product_ids": [
"63"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109740193"
},
{
"category": "vendor_fix",
"details": "Update to V5.1 SP1 HF4 or later version, or to latest version of V5.2",
"product_ids": [
"64"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109758423"
},
{
"category": "vendor_fix",
"details": "Update to V5.1 SP1 HF4 or later version",
"product_ids": [
"65"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109758423"
},
{
"category": "vendor_fix",
"details": "Update to latest version of V5.2",
"product_ids": [
"48",
"49",
"50",
"54",
"55",
"56",
"66",
"67",
"68"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109764679/"
},
{
"category": "vendor_fix",
"details": "Update to V4.8 HF6",
"product_ids": [
"51",
"57",
"69"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109742040"
},
{
"category": "vendor_fix",
"details": "Update to V5.1 SP1 HF4 or later version, or to latest version of V5.2",
"product_ids": [
"52",
"58",
"70"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109765015"
},
{
"category": "vendor_fix",
"details": "Update to V5.1 SP1 HF4 or later version",
"product_ids": [
"53",
"59",
"71"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109765015"
},
{
"category": "vendor_fix",
"details": "Update to V2.3 or later version",
"product_ids": [
"85"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/79207181/"
},
{
"category": "vendor_fix",
"details": "Update to V2.1.3 or later version",
"product_ids": [
"47"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109749989/"
},
{
"category": "vendor_fix",
"details": "Update to V1.1.3 or later version",
"product_ids": [
"46"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109756912/"
},
{
"category": "vendor_fix",
"details": "Update to V15.1 Upd4 or later version",
"product_ids": [
"15",
"16",
"17"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109763890/"
},
{
"category": "vendor_fix",
"details": "Update to V2.1.6 or later version",
"product_ids": [
"13"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109759122/"
},
{
"category": "vendor_fix",
"details": "Update to V2.7 or later version",
"product_ids": [
"14"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109759122/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.1 or later version",
"product_ids": [
"23"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109768501/"
},
{
"category": "vendor_fix",
"details": "Update to V2.1 or later version",
"product_ids": [
"86"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109774204/"
},
{
"category": "vendor_fix",
"details": "Update to V2010 SP3 or later version and apply BIOS and Microsoft Windows updates",
"product_ids": [
"43",
"44"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109765109/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"8"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47354502/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"9"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47354578/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"10"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/62612377/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"11",
"73"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47353723/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"12",
"74"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/47354354/"
},
{
"category": "vendor_fix",
"details": "Update to V3.3.16 or later version",
"product_ids": [
"27",
"78"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/51466769/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"28",
"79"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40360647/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"29",
"80"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40944925/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"30"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/85049260/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"31",
"81"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40362228/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"32",
"82"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/40945128/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"33"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/85059804/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"34"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/85063017/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"35"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/44442927/"
},
{
"category": "vendor_fix",
"details": "Update to V3.2.16 or later version",
"product_ids": [
"36"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/44443101/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"1",
"2",
"3",
"4",
"5",
"6",
"7",
"8",
"9",
"10",
"11",
"12",
"13",
"14",
"15",
"16",
"17",
"18",
"19",
"20",
"21",
"22",
"23",
"24",
"25",
"26",
"27",
"28",
"29",
"30",
"31",
"32",
"33",
"34",
"35",
"36",
"37",
"38",
"39",
"40",
"41",
"42",
"43",
"44",
"45",
"46",
"47",
"48",
"49",
"50",
"51",
"52",
"53",
"54",
"55",
"56",
"57",
"58",
"59",
"60",
"61",
"62",
"63",
"64",
"65",
"66",
"67",
"68",
"69",
"70",
"71",
"72",
"73",
"74",
"75",
"76",
"77",
"78",
"79",
"80",
"81",
"82",
"83",
"84",
"85",
"86"
]
}
],
"title": "CVE-2019-6568"
}
]
}
Loading…
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…