|CERT-In Vulnerability Note
Siemens SIMATIC S7-400 Denial of Service Vulnerability
Original Issue Date:June 13, 2018
Severity Rating: HIGH
- SIMATIC S7-400 CPU hardware version 4.0 and below: All versions
- SIMATIC S7-400 CPU hardware version 5.0: All firmware versions prior to V5.2
- SIMATIC S7-400H CPU hardware version 4.5 and below: All versions
A vulnerability has been reported in Siemens SIMATIC S7-400 CPUs which could allow a remote attacker to cause a Denial-of-Service condition of the PLC.
SIMATIC S7-400 is a family of programmable logic controllers (PLCs) designed for process control in industrial environments.
This vulnerability exists due to improper validation of S7 communication packets by the affected CPUs. A remote attacker could exploit this vulnerability by sending a specially crafted S7 communication packet to a communication interface (Ethernet, PROFIBUS, or Multi Point Interfaces (MPI)) of the CPU.
Successful exploitation of this vulnerability could allow the attacker to cause a denial-of-service (DoS) of the core functionality of the CPU thus compromising the availability of the system.
The affected SIMATIC S7-400 CPU hardware versions are in the product cancellation phase or already phased-out. Customers are recommended to either upgrading to a new version or implementing specific countermeasures.
The information provided herein is on "as is" basis, without warranty of any kind.
Email: firstname.lastname@example.org Phone: +91-11-24368572
Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
6, CGO Complex, Lodhi Road,
New Delhi - 110 003