Vulnerability Details CVE-2016-8562
A vulnerability has been identified in SIMATIC CP 1543-1 (All versions < V2.0.28), SIPLUS NET CP 1543-1 (All versions < V2.0.28). Under special conditions it was possible to write SNMP variables on port 161/udp which should be read-only and should only be configured with TIA-Portal. A write to these variables could reduce the availability or cause a denial-of-service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.146
EPSS Ranking 94.1%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 3.5
Proposed Action
An improper privilege management vulnerability exists within the Siemens SIMATIC Communication Processor (CP) that allows a privileged attacker to remotely cause a denial of service.
Ransomware Campaign
Unknown
References
- http://www.securityfocus.com/bid/94436
- http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-672373.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-672373.pdf
- https://ics-cert.us-cert.gov/advisories/ICSA-16-327-01
- http://www.securityfocus.com/bid/94436
- http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-672373.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-672373.pdf
- https://ics-cert.us-cert.gov/advisories/ICSA-16-327-01
Products affected by CVE-2016-8562
-
cpe:2.3:h:siemens:simatic_cp_1543-1:-
-
cpe:2.3:h:siemens:siplus_net_cp_1543-1:-
-
cpe:2.3:o:siemens:simatic_cp_1543-1_firmware:-
-
cpe:2.3:o:siemens:simatic_cp_1543-1_firmware:1.0.15
-
cpe:2.3:o:siemens:simatic_cp_1543-1_firmware:2.0
-
cpe:2.3:o:siemens:siplus_net_cp_1543-1_firmware:-