cbcvebase.
CVE-2021-33716
published 2021-09-14

CVE-2021-33716: A vulnerability has been identified in SIMATIC CP 1543-1 (incl. SIPLUS variants) (All versions < V3.0), SIMATIC CP 1545-1 (All versions < V1.1). An attacker…

PriorityP428medium6.5CVSS 3.1
AVAACLPRNUINSUCHINAN
EPSS
0.24%
15.6th percentile
A vulnerability has been identified in SIMATIC CP 1543-1 (incl. SIPLUS variants) (All versions < V3.0), SIMATIC CP 1545-1 (All versions < V1.1). An attacker with access to the subnet of the affected device could retrieve sensitive information stored in cleartext.

Affected

4 ranges
VendorProductVersion rangeFixed in
siemenssimatic_cp_1543-1
siemenssimatic_cp_1543-1_firmware< 3.03.0
siemenssimatic_cp_1545-1
siemenssimatic_cp_1545-1_firmware< 1.11.1

CVSS provenance

nvdv3.16.5MEDIUMCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.03.3LOWAV:A/AC:L/Au:N/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.