PT-2019-2034 · Siemens · Simatic Et 200Sp Open Controller Cpu 1515Sp Pc2+16
Published
2019-04-09
·
Updated
2022-10-06
·
CVE-2019-6575
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
SIMATIC CP 443-1 OPC UA versions prior to the fixed version
SIMATIC ET 200SP Open Controller CPU 1515SP PC2 versions prior to V2.7
SIMATIC HMI Comfort Outdoor Panels 7" & 15" versions prior to V15.1 Upd 4
SIMATIC HMI Comfort Panels 4" - 22" versions prior to V15.1 Upd 4
SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 and KTP900F versions prior to V15.1 Upd 4
SIMATIC IPC DiagMonitor versions prior to V5.1.3
SIMATIC NET PC Software V13 all versions
SIMATIC NET PC Software V14 versions prior to V14 SP1 Update 14
SIMATIC NET PC Software V15 all versions
SIMATIC RF188C versions prior to V1.1.0
SIMATIC RF600R family versions prior to V3.2.1
SIMATIC S7-1500 CPU family versions between V2.5 and V2.6.1
SIMATIC S7-1500 Software Controller versions between V2.5 and V2.7
SIMATIC WinCC OA versions prior to V3.15 P018
SIMATIC WinCC Runtime Advanced versions prior to V15.1 Upd 4
SINEC NMS versions prior to V1.0 SP1
SINEMA Server versions prior to V14 SP2
SINUMERIK OPC UA Server versions prior to V2.1
TeleControl Server Basic versions prior to V3.1.1
Description
The issue is related to insufficient input validation, allowing an unauthenticated remote attacker to cause a denial of service condition or crash the device by sending specially crafted network packets to affected devices on port 4840/tcp. Successful exploitation requires no system privileges and no user interaction, and could compromise the availability of the OPC communication.
Recommendations
For SIMATIC CP 443-1 OPC UA, update to a version that includes the fix for this issue.
For SIMATIC ET 200SP Open Controller CPU 1515SP PC2, update to version V2.7 or later.
For SIMATIC HMI Comfort Outdoor Panels 7" & 15", update to version V15.1 Upd 4 or later.
For SIMATIC HMI Comfort Panels 4" - 22", update to version V15.1 Upd 4 or later.
For SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 and KTP900F, update to version V15.1 Upd 4 or later.
For SIMATIC IPC DiagMonitor, update to version V5.1.3 or later.
For SIMATIC NET PC Software V13, there is no information about a newer version that contains a fix for this issue.
For SIMATIC NET PC Software V14, update to version V14 SP1 Update 14 or later.
For SIMATIC NET PC Software V15, there is no information about a newer version that contains a fix for this issue.
For SIMATIC RF188C, update to version V1.1.0 or later.
For SIMATIC RF600R family, update to version V3.2.1 or later.
For SIMATIC S7-1500 CPU family, update to version V2.6.1 or later.
For SIMATIC S7-1500 Software Controller, update to version V2.7 or later.
For SIMATIC WinCC OA, update to version V3.15 P018 or later.
For SIMATIC WinCC Runtime Advanced, update to version V15.1 Upd 4 or later.
For SINEC NMS, update to version V1.0 SP1 or later.
For SINEMA Server, update to version V14 SP2 or later.
For SINUMERIK OPC UA Server, update to version V2.1 or later.
For TeleControl Server Basic, update to version V3.1.1 or later.
As a temporary workaround, consider restricting access to port 4840/tcp to minimize the risk of exploitation.
Fix
Improper Handling of Exceptional Conditions
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Simatic Cp 443-1 Opc Ua
Simatic Et 200Sp Open Controller Cpu 1515Sp Pc2
Simatic Hmi Comfort Outdoor Panels 7" & 15"
Simatic Hmi Comfort Panels 4" - 22"
Simatic Hmi Ktp Mobile Panels Ktp400F
Simatic Ipc Diagmonitor
Simatic Net Pc
Simatic Rf188C
Simatic Rf600R Family
Simatic S7-1500 Cpu Family
Simatic S7-1500 Software Controller
Simatic Wincc
Simatic Wincc Runtime Advanced
Sinec Nms
Sinema Server
Sinumerik Opc Ua Server
Telecontrol Server Basic