CVE-2018-13815
moderate-risk
Published 2018-12-13
A vulnerability has been identified in SIMATIC S7-1200 (All versions), SIMATIC S7-1500 (All Versions < V2.6). An attacker could exhaust the available connection pool of an affected device by opening a sufficient number of connections to the device. Successful exploitation requires an attacker to be able to send packets to port 102/tcp of the affected device. No user interaction and no user privileges are required to exploit the vulnerability. The vulnerability, if exploited, could cause a Denial-of-Service condition impacting the availability of the system. At the time of advisory publication no public exploitation of this vulnerability was known.
Do I need to act?
-
0.45% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10
High
NETWORK
/ LOW complexity
Affected Products (2)
Simatic S7-1200 Firmware
Affected Vendors
References (4)
Third Party Advisory
http://www.securityfocus.com/bid/105928
Vendor Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-584286.pdf
Third Party Advisory
http://www.securityfocus.com/bid/105928
Vendor Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-584286.pdf
35
/ 100
moderate-risk
Severity
26/34 · High
Exploitability
2/34 · Minimal
Exposure
7/34 · Low