Risk Scores
CVSS v3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.15%
35.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| siemens | simatic_pcs_7 | |
| Siemens | SIMATIC STEP 7 V5.X | All versions < V5.6 SP2 HF3 |
| siemens | simatic_process_device_manager | |
| siemens | simatic_step_7 | 5.6, 5.6, 5.6 |
| Siemens | SIMATIC PDM | All versions < V9.2 |
| siemens | sinamics_starter | 5.4, 0 |
| Siemens | SIMATIC PCS 7 V8.2 and earlier | All versions |
| Siemens | SIMATIC PCS 7 V9.0 | All versions < V9.0 SP3 |
| Siemens | SINAMICS STARTER (containing STEP 7 OEM version) | All versions < V5.4 HF2 |
Timeline
- Jun 9, 2020 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 22, 2021 EPSS Score
- Aug 23, 2021 EPSS Score
- Oct 24, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 25, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- Apr 28, 2022 EPSS Score
- Jun 29, 2022 EPSS Score
- Aug 31, 2022 EPSS Score
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-817401.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-312271.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-689942.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-927095.pdf advisory
- https://www.us-cert.gov/ics/advisories/icsa-20-161-05 url
- https://us-cert.cisa.gov/ics/advisories/icsa-20-161-05 url
- https://nvd.nist.gov/vuln/detail/CVE-2020-7586 advisory