CVE-2024-35292

Name of the Vulnerable Software and Affected Versions SIMATIC S7-200 SMART CPU CR40 versions All SIMATIC S7-200 SMART CPU CR60 versions All SIMATIC S7-200 SMART CPU SR20 versions All SIMATIC S7-200 SMART CPU SR30 versions All SIMATIC S7-200 SMART CPU SR40 versions All SIMATIC S7-200 SMART CPU SR60 versions All SIMATIC S7-200 SMART CPU ST20 versions All SIMATIC S7-200 SMART CPU ST30 versions All SIMATIC S7-200 SMART CPU ST40 versions All SIMATIC S7-200 SMART CPU ST60 versions All

Description A vulnerability has been identified in the SIMATIC S7-200 SMART programmable logic controller, which is related to the use of predictable IP ID sequence numbers. This makes the system susceptible to attacks that rely on predictable IP ID sequence numbers, potentially allowing an attacker to create a denial of service condition. The vulnerability can be exploited by a remote attacker to predict IP ID sequence numbers.

Recommendations For SIMATIC S7-200 SMART CPU CR40, consider implementing measures to randomize IP ID sequence numbers until a patch is available. For SIMATIC S7-200 SMART CPU CR60, consider implementing measures to randomize IP ID sequence numbers until a patch is available. For SIMATIC S7-200 SMART CPU SR20, consider implementing measures to randomize IP ID sequence numbers until a patch is available. For SIMATIC S7-200 SMART CPU SR30, consider implementing measures to randomize IP ID sequence numbers until a patch is available. For SIMATIC S7-200 SMART CPU SR40, consider implementing measures to randomize IP ID sequence numbers until a patch is available. For SIMATIC S7-200 SMART CPU SR60, consider implementing measures to randomize IP ID sequence numbers until a patch is available. For SIMATIC S7-200 SMART CPU ST20, consider implementing measures to randomize IP ID sequence numbers until a patch is available. For SIMATIC S7-200 SMART CPU ST30, consider implementing measures to randomize IP ID sequence numbers until a patch is available. For SIMATIC S7-200 SMART CPU ST40, consider implementing measures to randomize IP ID sequence numbers until a patch is available. For SIMATIC S7-200 SMART CPU ST60, consider implementing measures to randomize IP ID sequence numbers until a patch is available. As a temporary workaround, consider restricting access to the system to minimize the risk of exploitation.