CVE-2013-2780 — Siemens Simatic S7-1200 CPU 1211c Firmware vulnerability

4 documents4 sources

Severity

7.8HIGHNVD

EPSS

0.3%

top 43.09%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Simatic S7-1200 CPU 1211c Firmware Siemens Simatic S7-1200 CPU 1212c Firmware Siemens Simatic S7-1200 CPU 1212fc Firmware +6 more

Timeline

PublishedApr 22

Latest updateMay 13

Description

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage) via crafted packets to UDP port 161 (aka the SNMP port).

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages9 packages

▶NVDsiemens/simatic_s7-1200_firmware< 4.0

▶NVDsiemens/simatic_s7-1200_cpu_1211c_firmware< 4.0

▶NVDsiemens/simatic_s7-1200_cpu_1212c_firmware< 4.0

▶NVDsiemens/simatic_s7-1200_cpu_1214c_firmware< 4.0

▶NVDsiemens/simatic_s7-1200_cpu_1215c_firmware< 4.0

🔴Vulnerability Details

GHSA

GHSA-fqm2-qmjg-3r68: Siemens SIMATIC S7-1200 PLCs 2↗2022-05-13

▶

CVEList

CVE-2013-2780: Siemens SIMATIC S7-1200 PLCs 2↗2013-04-22

▶

💥Exploits & PoCs

Exploit-DB

vTiger CRM 5.4.0 SOAP - Multiple Vulnerabilities↗2013-08-02

▶