cve/2021/CVE-2021-37185.md

### [CVE-2021-37185](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37185)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20Drive%20Controller%20family&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20ET%20200SP%20Open%20Controller%20CPU%201515SP%20PC2%20(incl.%20SIPLUS%20variants)&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%20family%20(incl.%20SIPLUS%20variants)&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1500%20CPU%20family%20(incl.%20related%20ET200%20CPUs%20and%20SIPLUS%20variants)&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1500%20Software%20Controller&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-PLCSIM%20Advanced&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20TIM%201531%20IRC&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=TIM%201531%20IRC&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20All%20versions%20%3C%20V2.3.6%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20All%20versions%20%3E%3D%20V2.9.2%20%3C%20V2.9.4%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20All%20versions%20%3E%3D%20V21.9%20%3C%20V21.9.4%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20All%20versions%20%3E%3D%20V4.0%20%3C%20V4.0%20SP1%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Version&message=%3D%20All%20versions%20%3E%3D%20V4.5.0%20%3C%20V4.5.2%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-672%3A%20Operation%20on%20a%20Resource%20after%20Expiration%20or%20Release&color=brighgreen)

### Description

A vulnerability has been identified in SIMATIC Drive Controller family (All versions >= V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions >= V21.9 < V21.9.4), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions >= V4.5.0 < V4.5.2), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions >= V2.9.2 < V2.9.4), SIMATIC S7-1500 Software Controller (All versions >= V21.9 < V21.9.4), SIMATIC S7-PLCSIM Advanced (All versions >= V4.0 < V4.0 SP1), SIPLUS TIM 1531 IRC (All versions < V2.3.6), TIM 1531 IRC (All versions < V2.3.6). An unauthenticated attacker could cause a denial-of-service condition in a PLC when sending specially prepared packets over port 102/tcp. A restart of the affected device is needed to restore normal operations.

### POC

#### Reference
No PoCs from references.

#### Github
- https://github.com/ARPSyndicate/cvemon
- https://github.com/ic3sw0rd/S7_plus_Crash
Update Sat May 25 21:48:12 CEST 2024 2024-05-25 21:48:12 +02:00			`### [CVE-2021-37185](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-37185)`
			`![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20Drive%20Controller%20family&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20ET%20200SP%20Open%20Controller%20CPU%201515SP%20PC2%20(incl.%20SIPLUS%20variants)&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1200%20CPU%20family%20(incl.%20SIPLUS%20variants)&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1500%20CPU%20family%20(incl.%20related%20ET200%20CPUs%20and%20SIPLUS%20variants)&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-1500%20Software%20Controller&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=SIMATIC%20S7-PLCSIM%20Advanced&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=SIPLUS%20TIM%201531%20IRC&color=blue)`
			`![](https://img.shields.io/static/v1?label=Product&message=TIM%201531%20IRC&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=%3D%20All%20versions%20%3C%20V2.3.6%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=%3D%20All%20versions%20%3E%3D%20V2.9.2%20%3C%20V2.9.4%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=%3D%20All%20versions%20%3E%3D%20V21.9%20%3C%20V21.9.4%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=%3D%20All%20versions%20%3E%3D%20V4.0%20%3C%20V4.0%20SP1%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Version&message=%3D%20All%20versions%20%3E%3D%20V4.5.0%20%3C%20V4.5.2%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-672%3A%20Operation%20on%20a%20Resource%20after%20Expiration%20or%20Release&color=brighgreen)`

			`### Description`

			A vulnerability has been identified in SIMATIC Drive Controller family (All versions >= V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions >= V21.9 < V21.9.4), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions >= V4.5.0 < V4.5.2), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions >= V2.9.2 < V2.9.4), SIMATIC S7-1500 Software Controller (All versions >= V21.9 < V21.9.4), SIMATIC S7-PLCSIM Advanced (All versions >= V4.0 < V4.0 SP1), SIPLUS TIM 1531 IRC (All versions < V2.3.6), TIM 1531 IRC (All versions < V2.3.6). An unauthenticated attacker could cause a denial-of-service condition in a PLC when sending specially prepared packets over port 102/tcp. A restart of the affected device is needed to restore normal operations.

			`### POC`

			`#### Reference`
			`No PoCs from references.`

			`#### Github`
			`- https://github.com/ARPSyndicate/cvemon`
			`- https://github.com/ic3sw0rd/S7_plus_Crash`