PT-2020-19638 · Siemens · Simatic S7-200 Smart Cpu

Published

2020-07-14

Updated

2020-07-17

CVE-2020-7584

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions SIMATIC S7-200 SMART CPU family versions V2.2 through V2.5.0

Description A vulnerability has been identified that affects the handling of large numbers of new incoming connections, potentially causing the device to crash under certain circumstances. This could be leveraged by an attacker to cause a Denial-of-Service situation.

Recommendations For SIMATIC S7-200 SMART CPU family versions V2.2 through V2.5.0, update to version V2.5.1 or later to resolve the issue.

Fix

Resource Exhaustion

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400

Related Identifiers

CVE-2020-7584

Affected Products

Simatic S7-200 Smart Cpu

PT-2020-19638 · Siemens · Simatic S7-200 Smart Cpu

CVE-2020-7584

Weakness Enumeration

Related Identifiers

Affected Products

References · 3