Shodan
Vulnerabilities
Vulnerable Software
Siemens:  >> Simatic S7-1500 Software Controller Firmware  Security Vulnerabilities
CVE-2023-46156
Affected devices improperly handle specially crafted packets sent to port 102/tcp. This could allow an attacker to create a denial of service condition. A restart is needed to restore normal operations.
CVSS Score
7.5
EPSS Score
0.0
Published
2023-12-12
CVE-2023-28831
The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation. This could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate.
CVSS Score
7.5
EPSS Score
0.005
Published
2023-09-12
CVE-2021-40365
Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-12-13
CVE-2021-44693
Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.
CVSS Score
4.9
EPSS Score
0.001
Published
2022-12-13
CVE-2021-44694
Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-12-13
CVE-2021-44695
Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.
CVSS Score
4.9
EPSS Score
0.001
Published
2022-12-13
CVE-2020-15796
A vulnerability has been identified in SIMATIC ET 200SP Open Controller (incl. SIPLUS variants) (V20.8), SIMATIC S7-1500 Software Controller (V20.8). The web server of the affected products contains a vulnerability that could allow a remote attacker to trigger a denial-of-service condition by sending a specially crafted HTTP request.
CVSS Score
7.5
EPSS Score
0.012
Published
2020-12-14
CVE-2017-2680
Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment (Layer 2). Human interaction is required to recover the systems. PROFIBUS interfaces are not affected.
CVSS Score
6.5
EPSS Score
0.023
Published
2017-05-11


Products
Pricing
Contact Us

Shodan ® - All rights reserved