diff --git a/2017/12xxx/CVE-2017-12741.json b/2017/12xxx/CVE-2017-12741.json index c94ddaa0438..5c6fad57017 100644 --- a/2017/12xxx/CVE-2017-12741.json +++ b/2017/12xxx/CVE-2017-12741.json @@ -1,183 +1,892 @@ { + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", "CVE_data_meta": { - "ASSIGNER": "productcert@siemens.com", - "DATE_PUBLIC": "2018-05-15T00:00:00", "ID": "CVE-2017-12741", + "ASSIGNER": "productcert@siemens.com", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { + "vendor_name": "Siemens AG", "product": { "product_data": [ { - "product_name": "SIMATIC S7-200 Smart, SIMATIC S7-400 PN V6, SIMATIC S7-400 H V6, SIMATIC S7-400 PN/DP V7, SIMATIC S7-410 V8, SIMATIC S7-300, SIMATIC S7-1200, SIMATIC S7-1500, SIMATIC S7-1500 Software Controller, SIMATIC WinAC RTX 2010 incl. F, SIMATIC ET 200AL, SIMATIC ET 200ecoPN, SIMATIC ET 200M, SIMATIC ET 200MP IM155-5 PN BA, SIMATIC ET 200MP IM155-5 PN ST, SIMATIC ET 200MP (except IM155-5 PN BA and IM155-5 PN ST), SIMATIC ET 200pro, SIMATIC ET 200S, SIMATIC ET 200SP, Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, SIMOTION D, SIMOTION C, SIMOTION P V4.4 and V4.5, SIMOTION P V5, SINAMICS DCM w. PN, SINAMICS DCP w. PN, SINAMICS G110M w. PN, SINAMICS G120 (C/P/D) w. PN, SINAMICS G130 V4.7 w. PN, SINAMICS G130 V4.8 w. PN, SINAMICS G150 V4.7 w. PN, SINAMICS G150 V4.8 w. PN, SINAMICS S110 w. PN, SINAMICS S120 V4.7 w. PN, SINAMICS S120 V4.8 w. PN, SINAMICS S150 V4.7 w. PN, SINAMICS S150 V4.8 w. PN, SINAMICS V90 w. PN, SINUMERIK 840D sl, SIMATIC Compact Field Unit, SIMATIC PN/PN Coupler, SIMOCODE pro V PROFINET, SIRIUS Soft Starter 3RW44 PN", + "product_name": "SIMATIC S7-200 Smart", "version": { "version_data": [ { - "version_value": "SIMATIC S7-200 Smart : All versions < V2.03.01" - }, - { - "version_value": "SIMATIC S7-400 PN V6 : All versions < V6.0.6" - }, - { - "version_value": "SIMATIC S7-400 H V6 : All versions < V6.0.8" - }, - { - "version_value": "SIMATIC S7-400 PN/DP V7 : All versions < V7.0.2" - }, - { - "version_value": "SIMATIC S7-410 V8 : All versions" - }, - { - "version_value": "SIMATIC S7-300 : All versions" - }, - { - "version_value": "SIMATIC S7-1200 : All versions < V4.2.3" - }, - { - "version_value": "SIMATIC S7-1500 : All versions < V2.0" - }, - { - "version_value": "SIMATIC S7-1500 Software Controller : All versions < V2.0" - }, - { - "version_value": "SIMATIC WinAC RTX 2010 incl. F : All versions" - }, - { - "version_value": "SIMATIC ET 200AL : All versions" - }, - { - "version_value": "SIMATIC ET 200ecoPN : All versions" - }, - { - "version_value": "SIMATIC ET 200M : All versions" - }, - { - "version_value": "SIMATIC ET 200MP IM155-5 PN BA : All versions < V4.0.2" - }, - { - "version_value": "SIMATIC ET 200MP IM155-5 PN ST : All versions < V4.1" - }, - { - "version_value": "SIMATIC ET 200MP (except IM155-5 PN BA and IM155-5 PN ST) : All versions" - }, - { - "version_value": "SIMATIC ET 200pro : All versions" - }, - { - "version_value": "SIMATIC ET 200S : All versions" - }, - { - "version_value": "SIMATIC ET 200SP : All versions" - }, - { - "version_value": "Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller : All versions < V4.1.1 Patch 05" - }, - { - "version_value": "Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P : All versions < V4.5" - }, - { - "version_value": "Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 : All versions < V4.5" - }, - { - "version_value": "SIMOTION D : All versions < V5.1 HF1" - }, - { - "version_value": "SIMOTION C : All versions < V5.1 HF1" - }, - { - "version_value": "SIMOTION P V4.4 and V4.5 : All versions < V4.5 HF5" - }, - { - "version_value": "SIMOTION P V5 : All versions < V5.1 HF1" - }, - { - "version_value": "SINAMICS DCM w. PN : All versions < V1.4 SP1 HF6" - }, - { - "version_value": "SINAMICS DCP w. PN : All versions < V1.2 HF2" - }, - { - "version_value": "SINAMICS G110M w. PN : All versions < V4.7 SP9 HF1" - }, - { - "version_value": "SINAMICS G120 (C/P/D) w. PN : All versions < V4.7 SP9 HF1" - }, - { - "version_value": "SINAMICS G130 V4.7 w. PN : All versions < V4.7 HF29" - }, - { - "version_value": "SINAMICS G130 V4.8 w. PN : All versions < V4.8 HF4" - }, - { - "version_value": "SINAMICS G150 V4.7 w. PN : All versions < V4.7 HF29" - }, - { - "version_value": "SINAMICS G150 V4.8 w. PN : All versions < V4.8 HF4" - }, - { - "version_value": "SINAMICS S110 w. PN : All versions < V4.4 SP3 HF6" - }, - { - "version_value": "SINAMICS S120 V4.7 w. PN : All versions < V4.7 HF29" - }, - { - "version_value": "SINAMICS S120 V4.8 w. PN : All versions < V4.8 HF5" - }, - { - "version_value": "SINAMICS S150 V4.7 w. PN : All versions < V4.7 HF29" - }, - { - "version_value": "SINAMICS S150 V4.8 w. PN : All versions < V4.8 HF4" - }, - { - "version_value": "SINAMICS V90 w. PN : All versions < V1.02" - }, - { - "version_value": "SINUMERIK 840D sl : All versions" - }, - { - "version_value": "SIMATIC Compact Field Unit : All versions" - }, - { - "version_value": "SIMATIC PN/PN Coupler : All versions" - }, - { - "version_value": "SIMOCODE pro V PROFINET : All versions" - }, - { - "version_value": "SIRIUS Soft Starter 3RW44 PN : All versions" + "version_value": "All versions < V2.03.01" } ] } } ] - }, - "vendor_name": "Siemens AG" + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC S7-400 PN V6", + "version": { + "version_data": [ + { + "version_value": "All versions < V6.0.6" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC S7-400 H V6", + "version": { + "version_data": [ + { + "version_value": "All versions < V6.0.8" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC S7-400 PN/DP V7", + "version": { + "version_data": [ + { + "version_value": "All versions < V7.0.2" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC S7-410 V8", + "version": { + "version_data": [ + { + "version_value": "All versions < V8.2.1" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC S7-300", + "version": { + "version_data": [ + { + "version_value": "All versions < V3.X.16" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC S7-1200", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.2.3" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC S7-1500", + "version": { + "version_data": [ + { + "version_value": "All versions < V2.0" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC S7-1500 Software Controller", + "version": { + "version_data": [ + { + "version_value": "All versions < V2.0" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC WinAC RTX 2010 incl. F", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC ET 200AL", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC ET 200ecoPN", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC ET 200M", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC ET 200MP IM155-5 PN BA", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.0.2" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC ET 200MP IM155-5 PN ST", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.1" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC ET 200MP IM155-5 PN HF", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.2" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC ET 200pro", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC ET 200S", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC ET 200SP IM155-6 PN HF", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.2.0" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC ET 200SP IM155-6 PN HA", + "version": { + "version_data": [ + { + "version_value": "All versions < V1.1.0" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC ET 200SP IM155-6 PN BA", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC ET 200SP IM155-6 PN ST", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC ET 200SP IM155-6 PN HS", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.1.1 Patch 05" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.5" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.5" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMOTION D", + "version": { + "version_data": [ + { + "version_value": "All versions < V5.1 HF1" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMOTION C", + "version": { + "version_data": [ + { + "version_value": "All versions < V5.1 HF1" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMOTION P V4.4 and V4.5", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.5 HF5" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMOTION P V5", + "version": { + "version_data": [ + { + "version_value": "All versions < V5.1 HF1" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS DCM w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V1.4 SP1 HF6" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS DCP w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V1.2 HF2" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS G110M w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.7 SP9 HF1" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS G120 (C/P/D) w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.7 SP9 HF1" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS G130 V4.7 w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.7 HF29" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS G130 V4.8 w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.8 HF4" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS G150 V4.7 w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.7 HF29" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS G150 V4.8 w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.8 HF4" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS S110 w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.4 SP3 HF6" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS S120 prior to V4.7 w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.7" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS S120 V4.7 w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.7 HF29" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS S120 V4.7 SP1 w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS S120 V4.8 w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.8 HF5" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS S150 V4.7 w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.7 HF29" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS S150 V4.8 w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.8 HF4" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINAMICS V90 w. PN", + "version": { + "version_data": [ + { + "version_value": "All versions < V1.02" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SINUMERIK 840D sl", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC Compact Field Unit", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMATIC PN/PN Coupler", + "version": { + "version_data": [ + { + "version_value": "All versions < V4.2.0" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIMOCODE pro V PROFINET", + "version": { + "version_data": [ + { + "version_value": "All versions < V2.1.1" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIRIUS Soft Starter 3RW44 PN", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } } ] } }, - "data_format": "MITRE", - "data_type": "CVE", - "data_version": "4.0", - "description": { - "description_data": [ - { - "lang": "eng", - "value": "A vulnerability has been identified in SIMATIC S7-200 Smart (All versions < V2.03.01), SIMATIC S7-400 PN V6 (All versions < V6.0.6), SIMATIC S7-400 H V6 (All versions < V6.0.8), SIMATIC S7-400 PN/DP V7 (All versions < V7.0.2), SIMATIC S7-410 V8 (All versions), SIMATIC S7-300 (All versions), SIMATIC S7-1200 (All versions < V4.2.3), SIMATIC S7-1500 (All versions < V2.0), SIMATIC S7-1500 Software Controller (All versions < V2.0), SIMATIC WinAC RTX 2010 incl. F (All versions), SIMATIC ET 200AL (All versions), SIMATIC ET 200ecoPN (All versions), SIMATIC ET 200M (All versions), SIMATIC ET 200MP IM155-5 PN BA (All versions < V4.0.2), SIMATIC ET 200MP IM155-5 PN ST (All versions < V4.1), SIMATIC ET 200MP (except IM155-5 PN BA and IM155-5 PN ST) (All versions), SIMATIC ET 200pro (All versions), SIMATIC ET 200S (All versions), SIMATIC ET 200SP (All versions), Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller (All versions < V4.1.1 Patch 05), Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P (All versions < V4.5), Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 (All versions < V4.5), SIMOTION D (All versions < V5.1 HF1), SIMOTION C (All versions < V5.1 HF1), SIMOTION P V4.4 and V4.5 (All versions < V4.5 HF5), SIMOTION P V5 (All versions < V5.1 HF1), SINAMICS DCM w. PN (All versions < V1.4 SP1 HF6), SINAMICS DCP w. PN (All versions < V1.2 HF2), SINAMICS G110M w. PN (All versions < V4.7 SP9 HF1), SINAMICS G120 (C/P/D) w. PN (All versions < V4.7 SP9 HF1), SINAMICS G130 V4.7 w. PN (All versions < V4.7 HF29), SINAMICS G130 V4.8 w. PN (All versions < V4.8 HF4), SINAMICS G150 V4.7 w. PN (All versions < V4.7 HF29), SINAMICS G150 V4.8 w. PN (All versions < V4.8 HF4), SINAMICS S110 w. PN (All versions < V4.4 SP3 HF6), SINAMICS S120 V4.7 w. PN (All versions < V4.7 HF29), SINAMICS S120 V4.8 w. PN (All versions < V4.8 HF5), SINAMICS S150 V4.7 w. PN (All versions < V4.7 HF29), SINAMICS S150 V4.8 w. PN (All versions < V4.8 HF4), SINAMICS V90 w. PN (All versions < V1.02), SINUMERIK 840D sl (All versions), SIMATIC Compact Field Unit (All versions), SIMATIC PN/PN Coupler (All versions), SIMOCODE pro V PROFINET (All versions), SIRIUS Soft Starter 3RW44 PN (All versions). Specially crafted packets sent to port 161/udp could cause a Denial-of-Service condition. The affected devices must be restarted manually." - } - ] - }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", - "value": "CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')" + "value": "Other" } ] } @@ -186,24 +895,27 @@ "references": { "reference_data": [ { - "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-546832.pdf", "refsource": "CONFIRM", + "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-546832.pdf", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-546832.pdf" }, { - "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-346262.pdf", "refsource": "CONFIRM", + "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-346262.pdf", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-346262.pdf" }, { - "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-914382.pdf", - "refsource": "CONFIRM", - "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-914382.pdf" - }, - { - "name": "101964", "refsource": "BID", - "url": "http://www.securityfocus.com/bid/101964" + "name": "101964", + "url": "https://www.securityfocus.com/bid/101964" + } + ] + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "A vulnerability has been identified in SIMATIC S7-200 Smart (All versions < V2.03.01), SIMATIC S7-400 PN V6 (All versions < V6.0.6), SIMATIC S7-400 H V6 (All versions < V6.0.8), SIMATIC S7-400 PN/DP V7 (All versions < V7.0.2), SIMATIC S7-410 V8 (All versions < V8.2.1), SIMATIC S7-300 (All versions < V3.X.16), SIMATIC S7-1200 (All versions < V4.2.3), SIMATIC S7-1500 (All versions < V2.0), SIMATIC S7-1500 Software Controller (All versions < V2.0), SIMATIC WinAC RTX 2010 incl. F (All versions), SIMATIC ET 200AL (All versions), SIMATIC ET 200ecoPN (All versions), SIMATIC ET 200M (All versions), SIMATIC ET 200MP IM155-5 PN BA (All versions < V4.0.2), SIMATIC ET 200MP IM155-5 PN ST (All versions < V4.1), SIMATIC ET 200MP IM155-5 PN HF (All versions < V4.2), SIMATIC ET 200pro (All versions), SIMATIC ET 200S (All versions), SIMATIC ET 200SP IM155-6 PN HF (All versions < V4.2.0), SIMATIC ET 200SP IM155-6 PN HA (All versions < V1.1.0), SIMATIC ET 200SP IM155-6 PN BA (All versions), SIMATIC ET 200SP IM155-6 PN ST (All versions), SIMATIC ET 200SP IM155-6 PN HS (All versions), Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller (All versions < V4.1.1 Patch 05), Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P (All versions < V4.5), Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 (All versions < V4.5), SIMOTION D (All versions < V5.1 HF1), SIMOTION C (All versions < V5.1 HF1), SIMOTION P V4.4 and V4.5 (All versions < V4.5 HF5), SIMOTION P V5 (All versions < V5.1 HF1), SINAMICS DCM w. PN (All versions < V1.4 SP1 HF6), SINAMICS DCP w. PN (All versions < V1.2 HF2), SINAMICS G110M w. PN (All versions < V4.7 SP9 HF1), SINAMICS G120 (C/P/D) w. PN (All versions < V4.7 SP9 HF1), SINAMICS G130 V4.7 w. PN (All versions < V4.7 HF29), SINAMICS G130 V4.8 w. PN (All versions < V4.8 HF4), SINAMICS G150 V4.7 w. PN (All versions < V4.7 HF29), SINAMICS G150 V4.8 w. PN (All versions < V4.8 HF4), SINAMICS S110 w. PN (All versions < V4.4 SP3 HF6), SINAMICS S120 prior to V4.7 w. PN (All versions < V4.7), SINAMICS S120 V4.7 w. PN (All versions < V4.7 HF29), SINAMICS S120 V4.7 SP1 w. PN (All versions), SINAMICS S120 V4.8 w. PN (All versions < V4.8 HF5), SINAMICS S150 V4.7 w. PN (All versions < V4.7 HF29), SINAMICS S150 V4.8 w. PN (All versions < V4.8 HF4), SINAMICS V90 w. PN (All versions < V1.02), SINUMERIK 840D sl (All versions), SIMATIC Compact Field Unit (All versions), SIMATIC PN/PN Coupler (All versions < V4.2.0), SIMOCODE pro V PROFINET (All versions < V2.1.1), SIRIUS Soft Starter 3RW44 PN (All versions). Specially crafted packets sent to port 161/udp could cause a Denial-of-Service condition. The affected devices must be restarted manually." } ] } diff --git a/2018/11xxx/CVE-2018-11451.json b/2018/11xxx/CVE-2018-11451.json index bbe4db0e8ae..bb10c52cd7e 100644 --- a/2018/11xxx/CVE-2018-11451.json +++ b/2018/11xxx/CVE-2018-11451.json @@ -1,69 +1,144 @@ { + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", "CVE_data_meta": { - "ASSIGNER": "productcert@siemens.com", - "DATE_PUBLIC": "2018-07-11T00:00:00", "ID": "CVE-2018-11451", + "ASSIGNER": "productcert@siemens.com", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { + "vendor_name": "Siemens AG", "product": { "product_data": [ { - "product_name": "Firmware variant IEC 61850 for EN100 Ethernet module, Firmware variant PROFINET IO for EN100 Ethernet module, Firmware variant Modbus TCP for EN100 Ethernet module, Firmware variant DNP3 TCP for EN100 Ethernet module, Firmware variant IEC104 for EN100 Ethernet module, SIPROTEC 5 relays with CPU variants CP300 and CP100 and the respective Ethernet communication modules, SIPROTEC 5 relays with CPU variants CP200 and the respective Ethernet communication modules", + "product_name": "Firmware variant IEC 61850 for EN100 Ethernet module", "version": { "version_data": [ { - "version_value": "Firmware variant IEC 61850 for EN100 Ethernet module : All versions < V4.33" - }, - { - "version_value": "Firmware variant PROFINET IO for EN100 Ethernet module : All versions" - }, - { - "version_value": "Firmware variant Modbus TCP for EN100 Ethernet module : All versions" - }, - { - "version_value": "Firmware variant DNP3 TCP for EN100 Ethernet module : All versions" - }, - { - "version_value": "Firmware variant IEC104 for EN100 Ethernet module : All versions" - }, - { - "version_value": "SIPROTEC 5 relays with CPU variants CP300 and CP100 and the respective Ethernet communication modules : All versions < V7.80" - }, - { - "version_value": "SIPROTEC 5 relays with CPU variants CP200 and the respective Ethernet communication modules : All versions" + "version_value": "All versions < V4.33" } ] } } ] - }, - "vendor_name": "Siemens AG" + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "Firmware variant PROFINET IO for EN100 Ethernet module", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "Firmware variant Modbus TCP for EN100 Ethernet module", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "Firmware variant DNP3 TCP for EN100 Ethernet module", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "Firmware variant IEC104 for EN100 Ethernet module", + "version": { + "version_data": [ + { + "version_value": "All versions < V1.22" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIPROTEC 5 relays with CPU variants CP300 and CP100 and the respective Ethernet communication modules", + "version": { + "version_data": [ + { + "version_value": "All versions < V7.80" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "SIPROTEC 5 relays with CPU variants CP200 and the respective Ethernet communication modules", + "version": { + "version_data": [ + { + "version_value": "All versions < V7.58" + } + ] + } + } + ] + } } ] } }, - "data_format": "MITRE", - "data_type": "CVE", - "data_version": "4.0", - "description": { - "description_data": [ - { - "lang": "eng", - "value": "A vulnerability has been identified in Firmware variant IEC 61850 for EN100 Ethernet module (All versions < V4.33), Firmware variant PROFINET IO for EN100 Ethernet module (All versions), Firmware variant Modbus TCP for EN100 Ethernet module (All versions), Firmware variant DNP3 TCP for EN100 Ethernet module (All versions), Firmware variant IEC104 for EN100 Ethernet module (All versions), SIPROTEC 5 relays with CPU variants CP300 and CP100 and the respective Ethernet communication modules (All versions < V7.80), SIPROTEC 5 relays with CPU variants CP200 and the respective Ethernet communication modules (All versions). Specially crafted packets to port 102/tcp could cause a denial-of-service condition in the affected products. A manual restart is required to recover the EN100 module functionality of SIPROTEC 4 and SIPROTEC Compact relays. Successful exploitation requires an attacker with network access to send multiple packets to the affected products or modules. As a precondition the IEC 61850-MMS communication needs to be activated on the affected products or modules. No user interaction or privileges are required to exploit the vulnerability. The vulnerability could allow causing a Denial-of-Service condition of the network functionality of the device, compromising the availability of the system. At the time of advisory publication no public exploitation of this security vulnerability was known." - } - ] - }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", - "value": "CWE-20: Improper Input Validation" + "value": "Other" } ] } @@ -72,19 +147,27 @@ "references": { "reference_data": [ { - "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-635129.pdf", "refsource": "CONFIRM", + "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-635129.pdf", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-635129.pdf" }, { - "name": "106221", - "refsource": "BID", - "url": "http://www.securityfocus.com/bid/106221" + "refsource": "CONFIRM", + "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-325546.pdf", + "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-325546.pdf" }, { - "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-325546.pdf", - "refsource": "CONFIRM", - "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-325546.pdf" + "refsource": "BID", + "name": "106221", + "url": "https://www.securityfocus.com/bid/106221" + } + ] + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "A vulnerability has been identified in Firmware variant IEC 61850 for EN100 Ethernet module (All versions < V4.33), Firmware variant PROFINET IO for EN100 Ethernet module (All versions), Firmware variant Modbus TCP for EN100 Ethernet module (All versions), Firmware variant DNP3 TCP for EN100 Ethernet module (All versions), Firmware variant IEC104 for EN100 Ethernet module (All versions < V1.22), SIPROTEC 5 relays with CPU variants CP300 and CP100 and the respective Ethernet communication modules (All versions < V7.80), SIPROTEC 5 relays with CPU variants CP200 and the respective Ethernet communication modules (All versions < V7.58). Specially crafted packets to port 102/tcp could cause a denial-of-service condition in the affected products. A manual restart is required to recover the EN100 module functionality of the affected devices. Successful exploitation requires an attacker with network access to send multiple packets to the affected products or modules. As a precondition the IEC 61850-MMS communication needs to be activated on the affected products or modules. No user interaction or privileges are required to exploit the vulnerability. The vulnerability could allow causing a Denial-of-Service condition of the network functionality of the device, compromising the availability of the system. At the time of advisory publication no public exploitation of this security vulnerability was known." } ] } diff --git a/2018/11xxx/CVE-2018-11452.json b/2018/11xxx/CVE-2018-11452.json index d5abe9d9cf0..3b3e19591ba 100644 --- a/2018/11xxx/CVE-2018-11452.json +++ b/2018/11xxx/CVE-2018-11452.json @@ -1,63 +1,110 @@ { + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", "CVE_data_meta": { - "ASSIGNER": "productcert@siemens.com", - "DATE_PUBLIC": "2018-07-11T00:00:00", "ID": "CVE-2018-11452", + "ASSIGNER": "productcert@siemens.com", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { + "vendor_name": "Siemens AG", "product": { "product_data": [ { - "product_name": "Firmware variant IEC 61850 for EN100 Ethernet module, Firmware variant PROFINET IO for EN100 Ethernet module, Firmware variant Modbus TCP for EN100 Ethernet module, Firmware variant DNP3 TCP for EN100 Ethernet module, Firmware variant IEC104 for EN100 Ethernet module", + "product_name": "Firmware variant IEC 61850 for EN100 Ethernet module", "version": { "version_data": [ { - "version_value": "Firmware variant IEC 61850 for EN100 Ethernet module : All versions < V4.33" - }, - { - "version_value": "Firmware variant PROFINET IO for EN100 Ethernet module: All versions" - }, - { - "version_value": "Firmware variant Modbus TCP for EN100 Ethernet module : All versions" - }, - { - "version_value": "Firmware variant DNP3 TCP for EN100 Ethernet module : All versions" - }, - { - "version_value": "Firmware variant IEC104 for EN100 Ethernet module : All versions" + "version_value": "All versions < V4.33" } ] } } ] - }, - "vendor_name": "Siemens AG" + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "Firmware variant PROFINET IO for EN100 Ethernet module", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "Firmware variant Modbus TCP for EN100 Ethernet module", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "Firmware variant DNP3 TCP for EN100 Ethernet module", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "Firmware variant IEC104 for EN100 Ethernet module", + "version": { + "version_data": [ + { + "version_value": "All versions < V1.22" + } + ] + } + } + ] + } } ] } }, - "data_format": "MITRE", - "data_type": "CVE", - "data_version": "4.0", - "description": { - "description_data": [ - { - "lang": "eng", - "value": "A vulnerability has been identified in Firmware variant IEC 61850 for EN100 Ethernet module (All versions < V4.33), Firmware variant PROFINET IO for EN100 Ethernet module (All versions), Firmware variant Modbus TCP for EN100 Ethernet module (All versions), Firmware variant DNP3 TCP for EN100 Ethernet module (All versions), Firmware variant IEC104 for EN100 Ethernet module (All versions). Specially crafted packets to port 102/tcp could cause a denial-of-service condition in the EN100 communication module if oscillographs are running. A manual restart is required to recover the EN100 module functionality. Successful exploitation requires an attacker with network access to send multiple packets to the EN100 module. As a precondition the IEC 61850-MMS communication needs to be activated on the affected EN100 modules. No user interaction or privileges are required to exploit the security vulnerability. The vulnerability could allow causing a Denial-of-Service condition of the network functionality of the device, compromising the availability of the system. At the time of advisory publication no public exploitation of this security vulnerability was known." - } - ] - }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", - "value": "CWE-20: Improper Input Validation" + "value": "Other" } ] } @@ -66,19 +113,27 @@ "references": { "reference_data": [ { - "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-635129.pdf", "refsource": "CONFIRM", + "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-635129.pdf", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-635129.pdf" }, { - "name": "106221", - "refsource": "BID", - "url": "http://www.securityfocus.com/bid/106221" + "refsource": "CONFIRM", + "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-325546.pdf", + "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-325546.pdf" }, { - "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-325546.pdf", - "refsource": "CONFIRM", - "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-325546.pdf" + "refsource": "BID", + "name": "106221", + "url": "https://www.securityfocus.com/bid/106221" + } + ] + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "A vulnerability has been identified in Firmware variant IEC 61850 for EN100 Ethernet module (All versions < V4.33), Firmware variant PROFINET IO for EN100 Ethernet module (All versions), Firmware variant Modbus TCP for EN100 Ethernet module (All versions), Firmware variant DNP3 TCP for EN100 Ethernet module (All versions), Firmware variant IEC104 for EN100 Ethernet module (All versions < V1.22). Specially crafted packets to port 102/tcp could cause a denial-of-service condition in the EN100 communication module if oscillographs are running. A manual restart is required to recover the EN100 module functionality. Successful exploitation requires an attacker with network access to send multiple packets to the EN100 module. As a precondition the IEC 61850-MMS communication needs to be activated on the affected EN100 modules. No user interaction or privileges are required to exploit the security vulnerability. The vulnerability could allow causing a Denial-of-Service condition of the network functionality of the device, compromising the availability of the system. At the time of advisory publication no public exploitation of this security vulnerability was known." } ] } diff --git a/2018/4xxx/CVE-2018-4838.json b/2018/4xxx/CVE-2018-4838.json index 98259833e82..54aa51ab300 100644 --- a/2018/4xxx/CVE-2018-4838.json +++ b/2018/4xxx/CVE-2018-4838.json @@ -1,63 +1,110 @@ { + "data_type": "CVE", + "data_format": "MITRE", + "data_version": "4.0", "CVE_data_meta": { - "ASSIGNER": "productcert@siemens.com", - "DATE_PUBLIC": "2018-03-08T00:00:00", "ID": "CVE-2018-4838", + "ASSIGNER": "productcert@siemens.com", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { + "vendor_name": "Siemens AG", "product": { "product_data": [ { - "product_name": "EN100 Ethernet module IEC 61850 variant, EN100 Ethernet module PROFINET IO variant, EN100 Ethernet module Modbus TCP variant, EN100 Ethernet module DNP3 variant, EN100 Ethernet module IEC 104 variant=", + "product_name": "EN100 Ethernet module IEC 61850 variant", "version": { "version_data": [ { - "version_value": "EN100 Ethernet module IEC 61850 variant : All versions < V4.30" - }, - { - "version_value": "EN100 Ethernet module PROFINET IO variant : All versions" - }, - { - "version_value": "EN100 Ethernet module Modbus TCP variant : All versions" - }, - { - "version_value": "EN100 Ethernet module DNP3 variant : All versions" - }, - { - "version_value": "EN100 Ethernet module IEC 104 variant : All versions" + "version_value": "All versions < V4.30" } ] } } ] - }, - "vendor_name": "Siemens AG" + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "EN100 Ethernet module DNP3 variant", + "version": { + "version_data": [ + { + "version_value": "All versions < V1.04" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "EN100 Ethernet module PROFINET IO variant", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "EN100 Ethernet module Modbus TCP variant", + "version": { + "version_data": [ + { + "version_value": "All versions" + } + ] + } + } + ] + } + }, + { + "vendor_name": "Siemens AG", + "product": { + "product_data": [ + { + "product_name": "EN100 Ethernet module IEC 104 variant", + "version": { + "version_data": [ + { + "version_value": "All versions < V1.22" + } + ] + } + } + ] + } } ] } }, - "data_format": "MITRE", - "data_type": "CVE", - "data_version": "4.0", - "description": { - "description_data": [ - { - "lang": "eng", - "value": "A vulnerability has been identified in Siemens EN100 Ethernet module IEC 61850 variant (All versions < V4.30), EN100 Ethernet module PROFINET IO variant (All versions), EN100 Ethernet module Modbus TCP variant (All versions), EN100 Ethernet module DNP3 variant (All versions), EN100 Ethernet module IEC 104 variant (All versions). The web interface (TCP/80) of affected devices allows an unauthenticated user to upgrade or downgrade the firmware of the device, including to older versions with known vulnerabilities." - } - ] - }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", - "value": "CWE-306: Missing Authentication for Critical Function" + "value": "Other" } ] } @@ -66,14 +113,22 @@ "references": { "reference_data": [ { - "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-845879.pdf", "refsource": "CONFIRM", + "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-845879.pdf", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-845879.pdf" }, { - "name": "103379", "refsource": "BID", - "url": "http://www.securityfocus.com/bid/103379" + "name": "103379", + "url": "https://www.securityfocus.com/bid/103379" + } + ] + }, + "description": { + "description_data": [ + { + "lang": "eng", + "value": "A vulnerability has been identified in EN100 Ethernet module IEC 61850 variant (All versions < V4.30), EN100 Ethernet module DNP3 variant (All versions < V1.04), EN100 Ethernet module PROFINET IO variant (All versions), EN100 Ethernet module Modbus TCP variant (All versions), EN100 Ethernet module IEC 104 variant (All versions < V1.22). The web interface (TCP/80) of affected devices allows an unauthenticated user to upgrade or downgrade the firmware of the device, including to older versions with known vulnerabilities." } ] }