Sign-up

ID

VAR-201106-0301


TITLE

Siemens SIMATIC S7-1200 Controller Communication Replay Vulnerability

Trust: 0.8

sources: IVD: 5174ba36-1f92-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-2316

DESCRIPTION

The Siemens SIMATIC S7-1200 is a modular controller from Siemens. A security vulnerability exists in the Siemens SIMATIC S7-1200. The engine software sends unencrypted data to the programmable logic controller. The attacker can replay the replay commands sent by the engine software through a man-in-the-middle attack

Trust: 0.72

sources: CNVD: CNVD-2011-2316 // IVD: 5174ba36-1f92-11e6-abef-000c29c66e3d

IOT TAXONOMY

category:['ICS']sub_category: -

Trust: 0.8

sources: IVD: 5174ba36-1f92-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-2316

AFFECTED PRODUCTS

vendor:siemensmodel:simatic s7-1200scope:eqversion:2.x

Trust: 0.8

sources: IVD: 5174ba36-1f92-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-2316

CVSS

SEVERITY

CVSSV2

CVSSV3

IVD: 5174ba36-1f92-11e6-abef-000c29c66e3d
value: HIGH

Trust: 0.2

IVD: 5174ba36-1f92-11e6-abef-000c29c66e3d
severity: NONE
baseScore: NONE
vectorString: NONE
accessVector: NONE
accessComplexity: NONE
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: UNKNOWN

Trust: 0.2

sources: IVD: 5174ba36-1f92-11e6-abef-000c29c66e3d

TYPE

Open redirect

Trust: 0.2

sources: IVD: 5174ba36-1f92-11e6-abef-000c29c66e3d

PATCH

title:Patch for Siemens SIMATIC S7-1200 Controller Communication Replay Vulnerabilityurl:https://www.cnvd.org.cn/patchinfo/show/4152

Trust: 0.6

sources: CNVD: CNVD-2011-2316

EXTERNAL IDS

db:CNVDid:CNVD-2011-2316

Trust: 0.8

db:IVDid:5174BA36-1F92-11E6-ABEF-000C29C66E3D

Trust: 0.2

sources: IVD: 5174ba36-1f92-11e6-abef-000c29c66e3d // CNVD: CNVD-2011-2316

REFERENCES

url:http://news.infracritical.com/pipermail/scadasec/2011-may/019934.htmlhttp

Trust: 0.6

sources: CNVD: CNVD-2011-2316

SOURCES

db:IVDid:5174ba36-1f92-11e6-abef-000c29c66e3d
db:CNVDid:CNVD-2011-2316

LAST UPDATE DATE

2022-05-17T01:53:22.922000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2011-2316date:2011-06-17T00:00:00

SOURCES RELEASE DATE

db:IVDid:5174ba36-1f92-11e6-abef-000c29c66e3ddate:2011-06-17T00:00:00
db:CNVDid:CNVD-2011-2316date:2011-06-17T00:00:00