CVE-2019-19281 | ByteOS Network

Vulnerability Details :

CVE-2019-19281

Assigner-siemens

Assigner Org ID-cec7a2ec-15b4-4faf-bd53-b40f371f3a77

Published At-10 Mar, 2020 | 19:16

Updated At-05 Aug, 2024 | 02:09

A vulnerability has been identified in SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions >= V2.5 and < V20.8), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions >= V2.5 and < V2.8), SIMATIC S7-1500 Software Controller (All versions >= V2.5 and < V20.8). Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a Denial-of-Service condition. The vulnerability can be triggered if specially crafted UDP packets are sent to the device. The security vulnerability could be exploited by an attacker with network access to the affected systems. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise the device availability.

EPSS History

Score

Latest Score

-

N/A

Percentile

Latest Percentile

-

N/A

▼Common Vulnerabilities and Exposures (CVE)

Assigner:siemens

Assigner Org ID:cec7a2ec-15b4-4faf-bd53-b40f371f3a77

Published At:10 Mar, 2020 | 19:16

Updated At:05 Aug, 2024 | 02:09

▼CVE Numbering Authority (CNA)

A vulnerability has been identified in SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions >= V2.5 and < V20.8), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions >= V2.5 and < V2.8), SIMATIC S7-1500 Software Controller (All versions >= V2.5 and < V20.8). Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a Denial-of-Service condition. The vulnerability can be triggered if specially crafted UDP packets are sent to the device. The security vulnerability could be exploited by an attacker with network access to the affected systems. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise the device availability.

Affected Products

Vendor

Product

SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants)

Versions

Affected

All versions >= V2.5 and < V20.8

Vendor

Product

SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)

Versions

Affected

All versions >= V2.5 and < V2.8

Vendor

Product

SIMATIC S7-1500 Software Controller

Versions

Affected

All versions >= V2.5 and < V20.8

Problem Types

Type	CWE ID	Description
CWE	CWE-400	CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')

Type: CWE

CWE ID: CWE-400

Description: CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion')

References

Hyperlink	Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-750824.pdf	x_refsource_MISC
https://www.us-cert.gov/ics/advisories/icsa-20-042-11	x_refsource_MISC

Hyperlink: https://cert-portal.siemens.com/productcert/pdf/ssa-750824.pdf

Resource:

x_refsource_MISC

Hyperlink: https://www.us-cert.gov/ics/advisories/icsa-20-042-11

Resource:

x_refsource_MISC

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-750824.pdf	x_refsource_MISC x_transferred
https://www.us-cert.gov/ics/advisories/icsa-20-042-11	x_refsource_MISC x_transferred

Hyperlink: https://cert-portal.siemens.com/productcert/pdf/ssa-750824.pdf

Resource:

x_refsource_MISC

x_transferred

Hyperlink: https://www.us-cert.gov/ics/advisories/icsa-20-042-11

Resource:

x_refsource_MISC

x_transferred

▼National Vulnerability Database (NVD)

Source:productcert@siemens.com

Published At:10 Mar, 2020 | 20:15

Updated At:02 Apr, 2020 | 22:15

A vulnerability has been identified in SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions >= V2.5 and < V20.8), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions >= V2.5 and < V2.8), SIMATIC S7-1500 Software Controller (All versions >= V2.5 and < V20.8). Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a Denial-of-Service condition. The vulnerability can be triggered if specially crafted UDP packets are sent to the device. The security vulnerability could be exploited by an attacker with network access to the affected systems. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise the device availability.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary	2.0	7.8	HIGH	AV:N/AC:L/Au:N/C:N/I:N/A:C

Type: Primary

Version: 3.1

Base score: 7.5

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Type: Primary

Version: 2.0

Base score: 7.8

Base severity: HIGH

Vector:

AV:N/AC:L/Au:N/C:N/I:N/A:C

CPE Matches

>>simatic_et_200sp_open_controller_cpu_1515sp_pc2_firmware>>Versions from 2.5(inclusive) to 20.8(exclusive)

cpe:2.3:o:siemens:simatic_et_200sp_open_controller_cpu_1515sp_pc2_firmware:*:*:*:*:*:*:*:*

>>simatic_et_200sp_open_controller_cpu_1515sp_pc2>>-

cpe:2.3:h:siemens:simatic_et_200sp_open_controller_cpu_1515sp_pc2:-:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1511-1_pn_firmware>>Versions from 2.5(inclusive) to 2.8(exclusive)

cpe:2.3:o:siemens:simatic_s7-1500_cpu_1511-1_pn_firmware:*:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1511-1_pn>>-

cpe:2.3:h:siemens:simatic_s7-1500_cpu_1511-1_pn:-:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1513-1_pn_firmware>>Versions from 2.5(inclusive) to 2.8(exclusive)

cpe:2.3:o:siemens:simatic_s7-1500_cpu_1513-1_pn_firmware:*:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1513-1_pn>>-

cpe:2.3:h:siemens:simatic_s7-1500_cpu_1513-1_pn:-:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1515-2_pn_firmware>>Versions from 2.5(inclusive) to 2.8(exclusive)

cpe:2.3:o:siemens:simatic_s7-1500_cpu_1515-2_pn_firmware:*:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1515-2_pn>>-

cpe:2.3:h:siemens:simatic_s7-1500_cpu_1515-2_pn:-:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1516-3_pn_firmware>>Versions from 2.5(inclusive) to 2.8(exclusive)

cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516-3_pn_firmware:*:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1516-3_pn>>-

cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516-3_pn:-:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1516-3_dp_firmware>>Versions from 2.5(inclusive) to 2.8(exclusive)

cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516-3_dp_firmware:*:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1516-3_dp>>-

cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516-3_dp:-:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1517-3_pn_firmware>>Versions from 2.5(inclusive) to 2.8(exclusive)

cpe:2.3:o:siemens:simatic_s7-1500_cpu_1517-3_pn_firmware:*:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1517-3_pn>>-

cpe:2.3:h:siemens:simatic_s7-1500_cpu_1517-3_pn:-:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1517-3_dp_firmware>>Versions from 2.5(inclusive) to 2.8(exclusive)

cpe:2.3:o:siemens:simatic_s7-1500_cpu_1517-3_dp_firmware:*:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1517-3_dp>>-

cpe:2.3:h:siemens:simatic_s7-1500_cpu_1517-3_dp:-:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1518-4_pn_firmware>>Versions from 2.5(inclusive) to 2.8(exclusive)

cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518-4_pn_firmware:*:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1518-4_pn>>-

cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518-4_pn:-:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1518-4_dp_firmware>>Versions from 2.5(inclusive) to 2.8(exclusive)

cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518-4_dp_firmware:*:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1518-4_dp>>-

cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518-4_dp:-:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1507s_firmware>>Versions from 2.5(inclusive) to 20.8(exclusive)

cpe:2.3:o:siemens:simatic_s7-1500_cpu_1507s_firmware:*:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1507s>>-

cpe:2.3:h:siemens:simatic_s7-1500_cpu_1507s:-:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1508s_firmware>>Versions from 2.5(inclusive) to 20.8(exclusive)

cpe:2.3:o:siemens:simatic_s7-1500_cpu_1508s_firmware:*:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1508s>>-

cpe:2.3:h:siemens:simatic_s7-1500_cpu_1508s:-:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1507s_f_firmware>>Versions from 2.5(inclusive) to 20.8(exclusive)

cpe:2.3:o:siemens:simatic_s7-1500_cpu_1507s_f_firmware:*:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1507s_f>>-

cpe:2.3:h:siemens:simatic_s7-1500_cpu_1507s_f:-:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1508s_f_firmware>>Versions from 2.5(inclusive) to 20.8(exclusive)

cpe:2.3:o:siemens:simatic_s7-1500_cpu_1508s_f_firmware:*:*:*:*:*:*:*:*

>>simatic_s7-1500_cpu_1508s_f>>-

cpe:2.3:h:siemens:simatic_s7-1500_cpu_1508s_f:-:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-400	Primary	nvd@nist.gov
CWE-400	Secondary	productcert@siemens.com

CWE ID: CWE-400

Type: Primary

Source: nvd@nist.gov

CWE ID: CWE-400

Type: Secondary

Source: productcert@siemens.com

References

Hyperlink	Source	Resource
https://cert-portal.siemens.com/productcert/pdf/ssa-750824.pdf	productcert@siemens.com	Vendor Advisory
https://www.us-cert.gov/ics/advisories/icsa-20-042-11	productcert@siemens.com	N/A

Hyperlink: https://cert-portal.siemens.com/productcert/pdf/ssa-750824.pdf

Source: productcert@siemens.com

Resource:

Vendor Advisory

Hyperlink: https://www.us-cert.gov/ics/advisories/icsa-20-042-11

Source: productcert@siemens.com

Resource: N/A