CVE-2020-15783

CVSS 7.5 HIGHEPSS 1.6%CWE-400

Vexday Risk Score

21Bajo

Decisión SSVC (CISA)

Track

Sin señal de explotación → monitorear

CVSS 7.5EPSS 1.6%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

12 nov 2020Publicada en NVD

Recomendación: Monitorear — sin señal de explotación por ahora.

A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions), SIMATIC TDC CPU555 (All versions), SINUMERIK 840D sl (All versions). Sending multiple specially crafted packets to the affected devices could cause a Denial-of-Service on port 102. A cold restart is required to recover the service.

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Productos afectados

Siemens · SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants)Siemens · SIMATIC TDC CPU555 Siemens · SINUMERIK 840D sl

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://cert-portal.siemens.com/productcert/pdf/ssa-492828.pdf