Vulnerability Details CVE-2017-9938
A vulnerability was discovered in Siemens SIMATIC Logon (All versions before V1.6) that could allow specially crafted packets sent to the SIMATIC Logon Remote Access service on port 16389/tcp to cause a Denial-of-Service condition. The service restarts automatically.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 75.5%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- http://www.securityfocus.com/bid/99539
- https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-804859.pdf
- https://www.tenable.com/security/research/tra-2017-34
- http://www.securityfocus.com/bid/99539
- https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-804859.pdf
- https://www.tenable.com/security/research/tra-2017-34
Products affected by CVE-2017-9938
-
cpe:2.3:a:siemens:simatic_logon:1.5