cbcvebase.
CVE-2016-8562
published 2016-11-18

CVE-2016-8562: A vulnerability has been identified in SIMATIC CP 1543-1 (All versions < V2.0.28), SIPLUS NET CP 1543-1 (All versions < V2.0.28). Under special conditions it…

PriorityP276high7.5CVSS 3.1
AVNACHPRLUINSUCHIHAH
KEVITW
CISA Known Exploited Vulnerabilitydue 2022-03-24
Exploited in the wild
EPSS
3.62%
88.1th percentile
A vulnerability has been identified in SIMATIC CP 1543-1 (All versions < V2.0.28), SIPLUS NET CP 1543-1 (All versions < V2.0.28). Under special conditions it was possible to write SNMP variables on port 161/udp which should be read-only and should only be configured with TIA-Portal. A write to these variables could reduce the availability or cause a denial-of-service.

Affected

2 ranges
VendorProductVersion rangeFixed in
siemenssimatic_cp_1543-1_firmware< 2.0.282.0.28
siemenssiplus_net_cp_1543-1_firmware< 2.0.282.0.28

Detection & IOCsextracted from sources · hover to see the quote

port161/udp
  • Monitor for unauthorized SNMP write requests (SET operations) to port 161/UDP targeting SIMATIC CP 1543-1 devices, as the vulnerability allows writing to read-only SNMP variables under special conditions.
  • Flag any SNMP SET requests originating from non-TIA-Portal sources directed at SIMATIC CP 1543-1 (6GK7543-1AX00-0XE0) or SIPLUS NET CP 1543-1 (6AG1543-1AX00-2XE0) devices running firmware versions prior to v2.0.28.
  • ·Exploitation requires 'special conditions' and is rated high attack complexity (AC:H), meaning opportunistic exploitation is less likely but targeted attacks against exposed SNMP ports remain a risk.
  • ·No known public exploits specifically target this vulnerability as of advisory publication.

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.03.5LOWAV:N/AC:M/Au:S/C:N/I:N/A:P
vulncheck7.5HIGH
cisa7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.