Description
Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected.
CVSS breakdown
CVSS 4.0
Attack Vector
Adjacent
Attack Complexity
Low
Attack Requirements
None
Privileges Required
None
User Interaction
None
Confidentiality (Vulnerable System)
None
Integrity (Vulnerable System)
None
Availability (Vulnerable System)
High
Confidentiality (Subsequent System)
None
Integrity (Subsequent System)
None
Availability (Subsequent System)
None
CVSS 3.1
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Affected products
- Siemens / Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet ControllerAll versions < V4.1.1 Patch04 – All versions < V4.1.1 Patch04
- Siemens / Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200All versions < V4.2.1 Patch03 – All versions < V4.2.1 Patch03
- Siemens / Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200PAll versions < V4.4.0 Patch01 – All versions < V4.4.0 Patch01
- Siemens / IE/AS-i Link PN IOAll versions – All versions
- Siemens / IE/PB-Link (incl. SIPLUS NET variants)All versions < V3.0 – All versions < V3.0
- Siemens / SCALANCE M-800 family (incl. S615, MUM-800 and RM1224)All versions < V4.03 – All versions < V4.03
- Siemens / SCALANCE W-700 IEEE 802.11n familyAll versions < V6.1 – All versions < V6.1
- Siemens / SCALANCE X-200 family (incl. SIPLUS NET variants)All versions < V5.2.2 – All versions < V5.2.2
- Siemens / SCALANCE X-200IRT family (incl. SIPLUS NET variants)All versions < V5.4.0 – All versions < V5.4.0
- Siemens / SCALANCE X-300 family (incl. X408 and SIPLUS NET variants)All versions < V4.1.0 – All versions < V4.1.0
- Siemens / SCALANCE X408 familyAll versions < V4.1.0 – All versions < V4.1.0
- Siemens / SCALANCE X414All versions < V3.10.2 – All versions < V3.10.2
- Siemens / SCALANCE XM-400 familyAll versions < V6.1 – All versions < V6.1
- Siemens / SCALANCE XR-500 familyAll versions < V6.1 – All versions < V6.1
- Siemens / SIMATIC CM 1542-1All versions < V2.0 – All versions < V2.0
- Siemens / SIMATIC CM 1542SP-1All versions < V1.0.15 – All versions < V1.0.15
- Siemens / SIMATIC CP 1243-1 DNP3 (incl. SIPLUS variants)0 – *
- Siemens / SIMATIC CP 1243-1 IEC (incl. SIPLUS variants)All versions – All versions
- Siemens / SIMATIC CP 1243-1 (incl. SIPLUS variants)All versions < V2.1.82 – All versions < V2.1.82
- Siemens / SIMATIC CP 1243-8 IRCAll versions < V2.1.82 – All versions < V2.1.82
- Siemens / SIMATIC CP 1542SP-1 IRC (incl. SIPLUS variants)All versions < V1.0.15 – All versions < V1.0.15
- Siemens / SIMATIC CP 1543-1 (incl. SIPLUS variants)All versions < V2.1 – All versions < V2.1
- Siemens / SIMATIC CP 1543SP-1 (incl. SIPLUS variants)All versions < V1.0.15 – All versions < V1.0.15
- Siemens / SIMATIC CP 1604All versions < V2.7 – All versions < V2.7
- Siemens / SIMATIC CP 1616All versions < V2.7 – All versions < V2.7
- Siemens / SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)All versions – All versions
- Siemens / SIMATIC CP 343-1 (incl. SIPLUS variants)All versions < V3.1.3 – All versions < V3.1.3
- Siemens / SIMATIC CP 343-1 Lean (incl. SIPLUS variants)All versions < V3.1.3 – All versions < V3.1.3
- Siemens / SIMATIC CP 443-1 Advanced (incl. SIPLUS variants)All versions < V3.2.17 – All versions < V3.2.17
- Siemens / SIMATIC CP 443-1 (incl. SIPLUS variants)All versions < V3.2.17 – All versions < V3.2.17
- Siemens / SIMATIC CP 443-1 OPC UAAll versions – All versions
- Siemens / SIMATIC DK-16xx PN IOAll versions < V2.7 – All versions < V2.7
- Siemens / SIMATIC ET 200AL IM 157-1 PN0 – V1.0.2
- Siemens / SIMATIC ET200ecoPN, 16DI, DC24V, 8xM12All versions – All versions
- Siemens / SIMATIC ET200ecoPN, 16DO DC24V/1,3A, 8xM12All versions – All versions
- Siemens / SIMATIC ET200ecoPN, 4AO U/I 4xM12All versions – All versions
- Siemens / SIMATIC ET200ecoPN, 8AI; 4 U/I; 4 RTD/TC 8xM12All versions – All versions
- Siemens / SIMATIC ET200ecoPN, 8AI RTD/TC 8xM12All versions – All versions
- Siemens / SIMATIC ET200ecoPN, 8DI, DC24V, 4xM12All versions – All versions
- Siemens / SIMATIC ET200ecoPN, 8DI, DC24V, 8xM12All versions – All versions
- Siemens / SIMATIC ET200ecoPN, 8 DIO, DC24V/1,3A, 8xM12All versions – All versions
- Siemens / SIMATIC ET200ecoPN, 8DO, DC24V/0,5A, 4xM12All versions – All versions
- Siemens / SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 4xM12All versions – All versions
- Siemens / SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 8xM12All versions – All versions
- Siemens / SIMATIC ET200ecoPN, 8 DO, DC24V/2A, 8xM12All versions – All versions
- Siemens / SIMATIC ET200ecoPN: IO-Link MasterAll versions – All versions
- Siemens / SIMATIC ET 200M (incl. SIPLUS variants)All versions – All versions
- Siemens / SIMATIC ET 200MP IM 155-5 PN BA0 – V4.0.1
- Siemens / SIMATIC ET 200MP IM 155-5 PN HF0 – V4.2.0
- Siemens / SIMATIC ET 200MP IM 155-5 PN ST0 – V4.1.0
- Siemens / SIMATIC ET 200pro IM 154-3 PN HF0 – *
- Siemens / SIMATIC ET 200pro IM 154-4 PN HF0 – *
- Siemens / SIMATIC ET200S (incl. SIPLUS variants)All versions – All versions
- Siemens / SIMATIC ET 200SP IM 155-6 PN BA0 – *
- Siemens / SIMATIC ET 200SP IM 155-6 PN HF0 – V4.2.0
- Siemens / SIMATIC ET 200SP IM 155-6 PN HS0 – V4.0.1
- Siemens / SIMATIC ET 200SP IM 155-6 PN ST0 – V4.1.0
- Siemens / SIMATIC ET 200SP IM 155-6 PN ST BA0 – V4.1.0
- Siemens / SIMATIC HMI Comfort Panels, HMI Multi Panels, HMI Mobile Panels (incl. SIPLUS variants)All versions < V15.1 – All versions < V15.1
- Siemens / SIMATIC MV420 SR-B0 – V7.0.6
- Siemens / SIMATIC MV420 SR-B Body0 – V7.0.6
- Siemens / SIMATIC MV420 SR-P0 – V7.0.6
- Siemens / SIMATIC MV420 SR-P Body0 – V7.0.6
- Siemens / SIMATIC MV440 HR0 – V7.0.6
- Siemens / SIMATIC MV440 SR0 – V7.0.6
- Siemens / SIMATIC MV440 UR0 – V7.0.6
- Siemens / SIMATIC PN/PN Coupler (incl. SIPLUS NET variants)All versions < V4.0 – All versions < V4.0
- Siemens / SIMATIC RF650RAll versions < V3.0 – All versions < V3.0
- Siemens / SIMATIC RF680RAll versions < V3.0 – All versions < V3.0
- Siemens / SIMATIC RF685RAll versions < V3.0 – All versions < V3.0
- Siemens / SIMATIC S7-1200 CPU family (incl. SIPLUS variants)All versions < V4.2.1 – All versions < V4.2.1
- Siemens / SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)All versions < V2.1 – All versions < V2.1
- Siemens / SIMATIC S7-1500 Software ControllerAll versions < V2.1 – All versions < V2.1
- Siemens / SIMATIC S7-200 SMARTAll versions < V2.3 – All versions < V2.3
- Siemens / SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants)0 – V3.X.14
- Siemens / SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)0 – V6.0.7
- Siemens / SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants)0 – V6.0.6
- Siemens / SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)0 – V7.0.2
- Siemens / SIMATIC S7-410 CPU family (incl. SIPLUS variants)All versions < V8.2 – All versions < V8.2
- Siemens / SIMATIC TDC CP51M10 – V1.1.8
- Siemens / SIMATIC TDC CPU5550 – V1.1.1
- Siemens / SIMATIC Teleservice Adapter IE AdvancedAll versions – All versions
- Siemens / SIMATIC Teleservice Adapter IE BasicAll versions – All versions
- Siemens / SIMATIC Teleservice Adapter IE StandardAll versions – All versions
- Siemens / SIMATIC WinAC RTX 2010All versions < V2010 SP3 – All versions < V2010 SP3
- Siemens / SIMATIC WinAC RTX F 2010All versions < V2010 SP3 – All versions < V2010 SP3
- Siemens / SIMOCODE pro V PROFINET (incl. SIPLUS variants)All versions < V2.0.0 – All versions < V2.0.0
- Siemens / SIMOTIONAll versions < V4.5 HF1 – All versions < V4.5 HF1
- Siemens / SINAMICS DCM w. PNAll versions < V1.4 SP1 HF5 – All versions < V1.4 SP1 HF5
- Siemens / SINAMICS DCP w. PNAll versions < V1.2 HF1 – All versions < V1.2 HF1
- Siemens / SINAMICS G110M w. PNAll versions < V4.7 SP6 HF3 – All versions < V4.7 SP6 HF3
- Siemens / SINAMICS G120(C/P/D) w. PN (incl. SIPLUS variants)All versions < V4.7 SP6 HF3 – All versions < V4.7 SP6 HF3
- Siemens / SINAMICS G130 V4.7 w. PNAll versions < V4.7 HF27 – All versions < V4.7 HF27
- Siemens / SINAMICS G130 V4.8 w. PNAll versions < V4.8 HF4 – All versions < V4.8 HF4
- Siemens / SINAMICS G150 V4.7 w. PNV4.7: All versions < V4.7 HF27 – V4.7: All versions < V4.7 HF27
- Siemens / SINAMICS G150 V4.8 w. PNAll versions < V4.8 HF4 – All versions < V4.8 HF4
- Siemens / SINAMICS S110 w. PNAll versions < V4.4 SP3 HF5 – All versions < V4.4 SP3 HF5
- Siemens / SINAMICS S120 prior to V4.7 w. PN (incl. SIPLUS variants)All versions < V4.7 – All versions < V4.7
- Siemens / SINAMICS S120 V4.7 SP1 w. PN (incl. SIPLUS variants)All versions – All versions
- Siemens / SINAMICS S120 V4.7 w. PN (incl. SIPLUS variants)All versions < V4.7 HF27 – All versions < V4.7 HF27
- Siemens / SINAMICS S120 V4.8 w. PN (incl. SIPLUS variants)All versions < V4.8 HF4 – All versions < V4.8 HF4
- Siemens / SINAMICS S150 V4.7 w. PNAll versions < V4.7 HF27 – All versions < V4.7 HF27
- Siemens / SINAMICS S150 V4.8 w. PNAll versions < V4.8 HF4 – All versions < V4.8 HF4
- Siemens / SINAMICS V90 w. PNAll versions < V1.01 – All versions < V1.01
- Siemens / SINUMERIK 828D V4.5 and priorAll versions < V4.5 SP6 HF2 – All versions < V4.5 SP6 HF2
- Siemens / SINUMERIK 828D V4.7All versions < V4.7 SP4 HF1 – All versions < V4.7 SP4 HF1
- Siemens / SINUMERIK 840D sl V4.5 and priorAll versions < V4.5 SP6 HF2 – All versions < V4.5 SP6 HF2
- Siemens / SINUMERIK 840D sl V4.7All versions < V4.7 SP4 HF1 – All versions < V4.7 SP4 HF1
- Siemens / SIPLUS ET 200MP IM 155-5 PN HF0 – V4.2.0
- Siemens / SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL0 – V4.2.0
- Siemens / SIPLUS ET 200MP IM 155-5 PN ST0 – V4.1.0
- Siemens / SIPLUS ET 200MP IM 155-5 PN ST TX RAIL0 – V4.1.0
- Siemens / SIPLUS ET 200SP IM 155-6 PN HF0 – V4.2.0
- Siemens / SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL0 – V4.2.0
- Siemens / SIPLUS ET 200SP IM 155-6 PN ST0 – V4.1.0
- Siemens / SIPLUS ET 200SP IM 155-6 PN ST BA0 – V4.1.0
- Siemens / SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL0 – V4.1.0
- Siemens / SIPLUS ET 200SP IM 155-6 PN ST TX RAIL0 – V4.1.0
- Siemens / SIRIUS ACT 3SU1 interface module PROFINETAll versions < V1.1.0 – All versions < V1.1.0
- Siemens / SIRIUS Motor Starter M200D PROFINETAll versions – All versions
- Siemens / SIRIUS Soft Starter 3RW44 PNAll versions – All versions
- Siemens / SITOP PSU8600 PROFINETAll versions < V1.2.0 – All versions < V1.2.0
- Siemens / SITOP UPS1600 PROFINET (incl. SIPLUS variants)All versions < V2.2.0 – All versions < V2.2.0
- Siemens / Softnet PROFINET IO for PC-based Windows systemsAll versions < V14 SP1 – All versions < V14 SP1
References
- MISChttp://www.securitytracker.com/id/1038463
- MISChttp://www.securityfocus.com/bid/98369
- MISChttps://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-293562.pdf
- MISChttps://cert-portal.siemens.com/productcert/pdf/ssa-293562.pdf
- MISChttps://cert-portal.siemens.com/productcert/html/ssa-293562.html