{ "data_version": "4.0", "data_type": "CVE", "data_format": "MITRE", "CVE_data_meta": { "ID": "CVE-2017-2681", "ASSIGNER": "productcert@siemens.com", "STATE": "PUBLIC" }, "description": { "description_data": [ { "lang": "eng", "value": "Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "CWE-400: Uncontrolled Resource Consumption", "cweId": "CWE-400" } ] } ] }, "affects": { "vendor": { "vendor_data": [ { "vendor_name": "Siemens", "product": { "product_data": [ { "product_name": "Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.1.1 Patch04" } ] } }, { "product_name": "Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.2.1 Patch03" } ] } }, { "product_name": "Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.4.0 Patch01" } ] } }, { "product_name": "IE/AS-i Link PN IO", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "IE/PB-Link (incl. SIPLUS NET variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V3.0" } ] } }, { "product_name": "SCALANCE M-800 family (incl. S615, MUM-800 and RM1224)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.03" } ] } }, { "product_name": "SCALANCE W-700 IEEE 802.11n family", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V6.1" } ] } }, { "product_name": "SCALANCE X-200 family (incl. SIPLUS NET variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V5.2.2" } ] } }, { "product_name": "SCALANCE X-200IRT family (incl. SIPLUS NET variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V5.4.0" } ] } }, { "product_name": "SCALANCE X-300 family (incl. X408 and SIPLUS NET variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.1.0" } ] } }, { "product_name": "SCALANCE X408 family", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.1.0" } ] } }, { "product_name": "SCALANCE X414", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V3.10.2" } ] } }, { "product_name": "SCALANCE XM-400 family", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V6.1" } ] } }, { "product_name": "SCALANCE XR-500 family", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V6.1" } ] } }, { "product_name": "SIMATIC CM 1542-1", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V2.0" } ] } }, { "product_name": "SIMATIC CM 1542SP-1", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V1.0.15" } ] } }, { "product_name": "SIMATIC CP 1243-1 (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V2.1.82" } ] } }, { "product_name": "SIMATIC CP 1243-1 DNP3 (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "*" } ] } }, { "product_name": "SIMATIC CP 1243-1 IEC (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC CP 1243-8 IRC", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V2.1.82" } ] } }, { "product_name": "SIMATIC CP 1542SP-1 IRC (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V1.0.15" } ] } }, { "product_name": "SIMATIC CP 1543-1 (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V2.1" } ] } }, { "product_name": "SIMATIC CP 1543SP-1 (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V1.0.15" } ] } }, { "product_name": "SIMATIC CP 1604", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V2.7" } ] } }, { "product_name": "SIMATIC CP 1616", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V2.7" } ] } }, { "product_name": "SIMATIC CP 343-1 (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V3.1.3" } ] } }, { "product_name": "SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC CP 343-1 Lean (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V3.1.3" } ] } }, { "product_name": "SIMATIC CP 443-1 (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V3.2.17" } ] } }, { "product_name": "SIMATIC CP 443-1 Advanced (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V3.2.17" } ] } }, { "product_name": "SIMATIC CP 443-1 OPC UA", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC DK-16xx PN IO", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V2.7" } ] } }, { "product_name": "SIMATIC ET 200AL IM 157-1 PN", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V1.0.2" } ] } }, { "product_name": "SIMATIC ET 200M (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC ET 200MP IM 155-5 PN BA", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.0.1" } ] } }, { "product_name": "SIMATIC ET 200MP IM 155-5 PN HF", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.2.0" } ] } }, { "product_name": "SIMATIC ET 200MP IM 155-5 PN ST", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.1.0" } ] } }, { "product_name": "SIMATIC ET 200pro IM 154-3 PN HF", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "*" } ] } }, { "product_name": "SIMATIC ET 200pro IM 154-4 PN HF", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "*" } ] } }, { "product_name": "SIMATIC ET 200SP IM 155-6 PN BA", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "*" } ] } }, { "product_name": "SIMATIC ET 200SP IM 155-6 PN HF", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.2.0" } ] } }, { "product_name": "SIMATIC ET 200SP IM 155-6 PN HS", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.0.1" } ] } }, { "product_name": "SIMATIC ET 200SP IM 155-6 PN ST", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.1.0" } ] } }, { "product_name": "SIMATIC ET 200SP IM 155-6 PN ST BA", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.1.0" } ] } }, { "product_name": "SIMATIC ET200ecoPN, 16DI, DC24V, 8xM12", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC ET200ecoPN, 16DO DC24V/1,3A, 8xM12", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC ET200ecoPN, 4AO U/I 4xM12", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC ET200ecoPN, 8 DIO, DC24V/1,3A, 8xM12", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC ET200ecoPN, 8 DO, DC24V/2A, 8xM12", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC ET200ecoPN, 8AI RTD/TC 8xM12", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC ET200ecoPN, 8AI; 4 U/I; 4 RTD/TC 8xM12", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC ET200ecoPN, 8DI, DC24V, 4xM12", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC ET200ecoPN, 8DI, DC24V, 8xM12", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC ET200ecoPN, 8DO, DC24V/0,5A, 4xM12", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 4xM12", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 8xM12", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC ET200ecoPN: IO-Link Master", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC ET200S (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC HMI Comfort Panels, HMI Multi Panels, HMI Mobile Panels (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V15.1" } ] } }, { "product_name": "SIMATIC MV420 SR-B", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V7.0.6" } ] } }, { "product_name": "SIMATIC MV420 SR-B Body", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V7.0.6" } ] } }, { "product_name": "SIMATIC MV420 SR-P", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V7.0.6" } ] } }, { "product_name": "SIMATIC MV420 SR-P Body", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V7.0.6" } ] } }, { "product_name": "SIMATIC MV440 HR", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V7.0.6" } ] } }, { "product_name": "SIMATIC MV440 SR", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V7.0.6" } ] } }, { "product_name": "SIMATIC MV440 UR", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V7.0.6" } ] } }, { "product_name": "SIMATIC PN/PN Coupler (incl. SIPLUS NET variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.0" } ] } }, { "product_name": "SIMATIC RF650R", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V3.0" } ] } }, { "product_name": "SIMATIC RF680R", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V3.0" } ] } }, { "product_name": "SIMATIC RF685R", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V3.0" } ] } }, { "product_name": "SIMATIC S7-1200 CPU family (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.2.1" } ] } }, { "product_name": "SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V2.1" } ] } }, { "product_name": "SIMATIC S7-1500 Software Controller", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V2.1" } ] } }, { "product_name": "SIMATIC S7-200 SMART", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V2.3" } ] } }, { "product_name": "SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V3.X.14" } ] } }, { "product_name": "SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V6.0.7" } ] } }, { "product_name": "SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V6.0.6" } ] } }, { "product_name": "SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V7.0.2" } ] } }, { "product_name": "SIMATIC S7-410 CPU family (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V8.2" } ] } }, { "product_name": "SIMATIC TDC CP51M1", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V1.1.8" } ] } }, { "product_name": "SIMATIC TDC CPU555", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V1.1.1" } ] } }, { "product_name": "SIMATIC Teleservice Adapter IE Advanced", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC Teleservice Adapter IE Basic", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC Teleservice Adapter IE Standard", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIMATIC WinAC RTX 2010", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V2010 SP3" } ] } }, { "product_name": "SIMATIC WinAC RTX F 2010", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V2010 SP3" } ] } }, { "product_name": "SIMOCODE pro V PROFINET (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V2.0.0" } ] } }, { "product_name": "SIMOTION", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.5 HF1" } ] } }, { "product_name": "SINAMICS DCM w. PN", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V1.4 SP1 HF5" } ] } }, { "product_name": "SINAMICS DCP w. PN", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V1.2 HF1" } ] } }, { "product_name": "SINAMICS G110M w. PN", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.7 SP6 HF3" } ] } }, { "product_name": "SINAMICS G120(C/P/D) w. PN (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.7 SP6 HF3" } ] } }, { "product_name": "SINAMICS G130 V4.7 w. PN", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.7 HF27" } ] } }, { "product_name": "SINAMICS G130 V4.8 w. PN", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.8 HF4" } ] } }, { "product_name": "SINAMICS G150 V4.7 w. PN", "version": { "version_data": [ { "version_affected": "=", "version_value": "V4.7: All versions < V4.7 HF27" } ] } }, { "product_name": "SINAMICS G150 V4.8 w. PN", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.8 HF4" } ] } }, { "product_name": "SINAMICS S110 w. PN", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.4 SP3 HF5" } ] } }, { "product_name": "SINAMICS S120 prior to V4.7 w. PN (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.7" } ] } }, { "product_name": "SINAMICS S120 V4.7 SP1 w. PN (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SINAMICS S120 V4.7 w. PN (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.7 HF27" } ] } }, { "product_name": "SINAMICS S120 V4.8 w. PN (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.8 HF4" } ] } }, { "product_name": "SINAMICS S150 V4.7 w. PN", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.7 HF27" } ] } }, { "product_name": "SINAMICS S150 V4.8 w. PN", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.8 HF4" } ] } }, { "product_name": "SINAMICS V90 w. PN", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V1.01" } ] } }, { "product_name": "SINUMERIK 828D V4.5 and prior", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.5 SP6 HF2" } ] } }, { "product_name": "SINUMERIK 828D V4.7", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.7 SP4 HF1" } ] } }, { "product_name": "SINUMERIK 840D sl V4.5 and prior", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.5 SP6 HF2" } ] } }, { "product_name": "SINUMERIK 840D sl V4.7", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V4.7 SP4 HF1" } ] } }, { "product_name": "SIPLUS ET 200MP IM 155-5 PN HF", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.2.0" } ] } }, { "product_name": "SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.2.0" } ] } }, { "product_name": "SIPLUS ET 200MP IM 155-5 PN ST", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.1.0" } ] } }, { "product_name": "SIPLUS ET 200MP IM 155-5 PN ST TX RAIL", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.1.0" } ] } }, { "product_name": "SIPLUS ET 200SP IM 155-6 PN HF", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.2.0" } ] } }, { "product_name": "SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.2.0" } ] } }, { "product_name": "SIPLUS ET 200SP IM 155-6 PN ST", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.1.0" } ] } }, { "product_name": "SIPLUS ET 200SP IM 155-6 PN ST BA", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.1.0" } ] } }, { "product_name": "SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.1.0" } ] } }, { "product_name": "SIPLUS ET 200SP IM 155-6 PN ST TX RAIL", "version": { "version_data": [ { "version_affected": "<", "version_name": "0", "version_value": "V4.1.0" } ] } }, { "product_name": "SIRIUS ACT 3SU1 interface module PROFINET", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V1.1.0" } ] } }, { "product_name": "SIRIUS Motor Starter M200D PROFINET", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SIRIUS Soft Starter 3RW44 PN", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions" } ] } }, { "product_name": "SITOP PSU8600 PROFINET", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V1.2.0" } ] } }, { "product_name": "SITOP UPS1600 PROFINET (incl. SIPLUS variants)", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V2.2.0" } ] } }, { "product_name": "Softnet PROFINET IO for PC-based Windows systems", "version": { "version_data": [ { "version_affected": "=", "version_value": "All versions < V14 SP1" } ] } } ] } } ] } }, "references": { "reference_data": [ { "url": "http://www.securitytracker.com/id/1038463", "refsource": "MISC", "name": "http://www.securitytracker.com/id/1038463" }, { "url": "http://www.securityfocus.com/bid/98369", "refsource": "MISC", "name": "http://www.securityfocus.com/bid/98369" }, { "url": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-293562.pdf", "refsource": "MISC", "name": "https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-293562.pdf" }, { "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-293562.pdf", "refsource": "MISC", "name": "https://cert-portal.siemens.com/productcert/pdf/ssa-293562.pdf" }, { "url": "https://cert-portal.siemens.com/productcert/html/ssa-293562.html", "refsource": "MISC", "name": "https://cert-portal.siemens.com/productcert/html/ssa-293562.html" } ] }, "impact": { "cvss": [ { "version": "3.1", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "baseScore": 6.5, "baseSeverity": "MEDIUM" } ] } }