CNVD-2021-37944 — Vulnetix

CNVD-2021-37944 PUBLISHED

Siemens SIMATIC S7-1200和S7-1500 CPU系列产品设计用于工业环境中的离散和连续控制，如全球制造业、食品和饮料以及化学工业。 Siemens SIMATIC S7-1200和S7-1500 CPU系列存在安全漏洞。未经验证的远程攻击者可利用漏洞将任意数据和代码写入受保护的内存区域，或读取敏感数据以发起进一步的攻击。

Affected Products

Vendor	Product	Versions
	Siemens SIMATIC Drive Controller family < V2.9.2
	Siemens SIMATIC S7-PLCSIM Advanced
	Siemens SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants)
	Siemens SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) < V2.9.2
	Siemens SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants)
	Siemens SIMATIC S7-1500 Software Controller
	Siemens SIMATIC S7-1200 CPU family (incl. SIPLUS variants) < V4.5.0

Timeline

May 31, 2021 CVE ID Reserved
May 31, 2021 CVE Published

References

https://cert-portal.siemens.com/productcert/pdf/ssa-434534.pdf url

Open in Interactive Console →

$ Console Community · 100/wk Open console ›