CVE-2021-37185

Name of the Vulnerable Software and Affected Versions SIMATIC Drive Controller family versions 2.9.2 through 2.9.4 SIMATIC ET 200SP Open Controller CPU 1515SP PC2 versions 21.9 through 21.9.4 SIMATIC S7-1200 CPU family versions 4.5.0 through 4.5.2 SIMATIC S7-1500 CPU family versions 2.9.2 through 2.9.4 SIMATIC S7-1500 Software Controller versions 21.9 through 21.9.4 SIMATIC S7-PLCSIM Advanced versions 4.0 through 4.0 SP1 SIPLUS TIM 1531 IRC versions prior to 2.3.6 TIM 1531 IRC versions prior to 2.3.6

Description The issue is related to operations with a resource after its expiration. An unauthenticated attacker could cause a denial-of-service condition in a PLC by sending specially prepared packets over port 102/tcp. A restart of the affected device is needed to restore normal operations.

Recommendations For SIMATIC Drive Controller family versions 2.9.2 through 2.9.4, update to a version outside of this range to resolve the issue. For SIMATIC ET 200SP Open Controller CPU 1515SP PC2 versions 21.9 through 21.9.4, update to a version outside of this range to resolve the issue. For SIMATIC S7-1200 CPU family versions 4.5.0 through 4.5.2, update to a version outside of this range to resolve the issue. For SIMATIC S7-1500 CPU family versions 2.9.2 through 2.9.4, update to a version outside of this range to resolve the issue. For SIMATIC S7-1500 Software Controller versions 21.9 through 21.9.4, update to a version outside of this range to resolve the issue. For SIMATIC S7-PLCSIM Advanced versions 4.0 through 4.0 SP1, update to a version outside of this range to resolve the issue. For SIPLUS TIM 1531 IRC versions prior to 2.3.6, update to version 2.3.6 or later to resolve the issue. For TIM 1531 IRC versions prior to 2.3.6, update to version 2.3.6 or later to resolve the issue. As a temporary workaround, consider restricting access to port 102/tcp to minimize the risk of exploitation.