CVE-2017-2681

high-risk
Published 2017-05-11

Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected.

Do I need to act?

-
0.44% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
6
CVSS 6.5/10 Medium
ADJACENT_NETWORK / LOW complexity

Affected Products (20)

Simatic Cp 343-1 Lean Firmware
Simatic Cp 343-1 Adv Firmware
Simatic Cp 1542Sp-1 Irc Firmware
Simatic Rf650R Firmware
Simatic Cp 1604 Firmware
Simatic Dk-16Xx Pn Io Firmware
Scalance X408 Firmware
Scalance X414 Firmware
Scalance Xm400 Firmware
Scalance Xr500 Firmware
Softnet Profinet Io Firmware
Ie\/As-I Link Pn Io Firmware
Simatic Teleservice Adapter Ie Advanced Modem Firmware
Simatic Et 200Al Firmware
Simatic Et 200M Firmware
Simatic Et 200Pro Firmware
Simatic Et 200S Firmware
Simatic Et 200Sp Firmware
Pn\/Pn Coupler Firmware

Affected Vendors

Siemens

References (10)

Third Party Advisory http://www.securityfocus.com/bid/98369
Third Party Advisory http://www.securitytracker.com/id/1038463
https://cert-portal.siemens.com/productcert/html/ssa-293562.html
Vendor Advisory https://cert-portal.siemens.com/productcert/pdf/ssa-293562.pdf
Broken Link https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-293562.pdf
Third Party Advisory http://www.securityfocus.com/bid/98369
Third Party Advisory http://www.securitytracker.com/id/1038463
https://cert-portal.siemens.com/productcert/html/ssa-293562.html
Vendor Advisory https://cert-portal.siemens.com/productcert/pdf/ssa-293562.pdf
Broken Link https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-293562.pdf
53
/ 100
high-risk
Severity 21/34 · High
Exploitability 2/34 · Minimal
Exposure 30/34 · Critical