CVE-2013-0700 — Siemens Simatic S7-1200 CPU 1211c Firmware vulnerability

7 documents4 sources

Severity

7.8HIGHNVD

EPSS

0.3%

top 43.09%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Simatic S7-1200 CPU 1211c Firmware Siemens Simatic S7-1200 CPU 1212c Firmware Siemens Simatic S7-1200 CPU 1212fc Firmware +6 more

Timeline

PublishedApr 22

Latest updateMay 13

Description

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage) via crafted packets to TCP port 102 (aka the ISO-TSAP port).

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages9 packages

▶NVDsiemens/simatic_s7-1200_firmware< 4.0

▶NVDsiemens/simatic_s7-1200_cpu_1211c_firmware< 4.0

▶NVDsiemens/simatic_s7-1200_cpu_1212c_firmware< 4.0

▶NVDsiemens/simatic_s7-1200_cpu_1214c_firmware< 4.0

▶NVDsiemens/simatic_s7-1200_cpu_1215c_firmware< 4.0

🔴Vulnerability Details

GHSA

GHSA-88w8-3q83-cjjp: Siemens SIMATIC S7-1200 PLCs 2↗2022-05-13

▶

CVEList

CVE-2013-0700: Siemens SIMATIC S7-1200 PLCs 2↗2013-04-22

▶

💬Community

Bugzilla

CVE-2014-0467 mutt: heap-based buffer overflow when parsing certain headers↗2014-03-13

▶

Bugzilla

CVE-2013-4331 lightdm: Word-readable .Xauthority↗2013-09-12

▶

Bugzilla

CVE-2013-0345 varnish: world-readable log files↗2013-02-25

▶

Bugzilla

CVE-2013-0337 nginx: world-readable log files↗2013-02-21

▶