CVE-2016-2200

CWE-20 — Improper Input Validation3 documents3 sources

Severity

7.5HIGH

EPSS

9.2%

top 7.28%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Simatic S7-1500 CPU Firmware

Timeline

PublishedFeb 8

Latest updateMay 13

Description

Siemens SIMATIC S7-1500 CPU devices before 1.8.3 allow remote attackers to cause a denial of service (STOP mode transition) via crafted packets on TCP port 102.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages1 packages

▶NVDsiemens/simatic_s7-1500_cpu_firmware1.8.2

🔴Vulnerability Details

GHSA

GHSA-4m2w-vcxc-r9wm: Siemens SIMATIC S7-1500 CPU devices before 1↗2022-05-13

▶

CVEList

CVE-2016-2200: Siemens SIMATIC S7-1500 CPU devices before 1↗2016-02-08

▶