CVE-2014-5074

Published Aug 17, 2014

Last updated 3 months ago

CVSS info 7.1

Overview

Description: Siemens SIMATIC S7-1500 CPU devices with firmware before 1.6 allow remote attackers to cause a denial of service (device restart and STOP transition) via crafted TCP packets.
Source: cve@mitre.org
NVD status: Modified

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.1
Impact score: 6.9
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "164F6569-C801-4790-9326-F3D56CF85903",
            "versionEndIncluding": "1.5.1"
          },
          {
            "criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_firmware:1.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "00673095-ABE2-44E9-B032-3C0D9FD4DADC"
          },
          {
            "criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_firmware:1.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B7034B3A-0E68-46CB-B481-A644CAF26855"
          },
          {
            "criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_firmware:1.1.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ABE40AA5-31F1-42E7-9C96-EB0812EA699D"
          },
          {
            "criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_firmware:1.1.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3E50C015-01AF-4CAB-AE69-84349DC133FB"
          },
          {
            "criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_firmware:1.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "814CB3FD-C9EA-4963-B705-BBB30AA8EE8A"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:siemens:simatic_s7-1511-1_pn_cpu:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "668B8FDF-4D50-4E54-88CE-D9A2C483D460"
          },
          {
            "criteria": "cpe:2.3:h:siemens:simatic_s7-1513-1_pn_cpu:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F18327E-6C57-42F0-983C-F88F70C9FB6C"
          },
          {
            "criteria": "cpe:2.3:h:siemens:simatic_s7-1515-2_pn_cpu:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A074A6C0-6D87-40C3-9031-E8582797A299"
          },
          {
            "criteria": "cpe:2.3:h:siemens:simatic_s7-1516-3_pn\\/dp_cpu:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E3C8B2D4-9BC2-424E-ABE3-2095CE414255"
          },
          {
            "criteria": "cpe:2.3:h:siemens:simatic_s7-1516f-3_pn\\/dp_cpu:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "84C4C6FB-5D77-4A8B-9ABA-321353F6D1E2"
          },
          {
            "criteria": "cpe:2.3:h:siemens:simatic_s7-1518-4_pn\\/dp_cpu:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "59EFE215-70A4-4A85-AA84-360FED0B6D89"
          },
          {
            "criteria": "cpe:2.3:h:siemens:simatic_s7-1518f-4_pn\\/dp_cpu:-:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9BE49E75-DC54-4AD5-923C-12F6603B9793"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References