CVE-2017-6865 in SIMATICinfo

Summary

Siemens SIMATIC WinCC (TIA Portal) (V13 all versions before SP2 and V14 before SP1), SIMATIC STEP 7 (TIA Portal) (V13 all versions before SP2 and V14 before SP1), SIMATIC STEP 7 V5.X (All versions), STEP 7 - Micro/WIN SMART (All versions), SMART PC Access V2.0, SIMATIC Automation Tool (All versions), SIMATIC WinCC (All versions), SIMATIC PCS 7 (All versions), SIMATIC NET PC-Software (All versions), Primary Setup Tool (PST) (All versions), Security Configuration Tool (SCT) (All versions), SINEMA Server (All versions), SINAUT ST7CC (All versions), SIMATIC WinAC RTX 2010 SP2 (All versions), SIMATIC WinAC RTX F 2010 SP2 (All versions), SINUMERIK 808D Programming Tool (All versions), SIMATIC WinCC flexible 2008 (All versions) could be affected by a Denial-of-Service condition induced by a specially crafted PROFINET DCP broadcast (Layer 2 - Ethernet) packet.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservation

03/13/2017

Disclosure

05/11/2017

Moderation

VulDB entry created

Entries

VDB-101085 (1)

CPE

ready

CWE

CWE-20 (Confirmed)

CVSS

5.9

EPSS

0.00084

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-6865
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-6865
CVE Details	https://www.cvedetails.com/cve/CVE-2017-6865/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!