VDB
ICSA-26-015-04
ICSA-26-015-04
PUBLISHED
CVSS 7.5 HIGH
Siemens ET 200 devices contain a denial-of-service vulnerability that could be triggered by sending a valid S7 protocol Disconnect Request (COTP DR TPDU), causing the device to become unresponsive and require a power cycle to recover. Siemens has released new versions for several affected products and recommends to update to the latest versions. Siemens is preparing further fix versions and recommends specific countermeasures for products where fixes are not, or not yet available.
Risk Scores
CVSS v3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SIMATIC PN/MF Coupler (6ES7158-3MU10-0XA0) | ||
| SIMATIC ET 200SP IM 155-6 PN/3 HF (6ES7155-6AU30-0CN0) | ||
| SIMATIC ET 200MP IM 155-5 PN HF (6ES7155-5AA00-0AC0) | ||
| SIMATIC ET 200SP IM 155-6 MF HF (6ES7155-6MU00-0CN0) | ||
| SIPLUS ET 200MP IM 155-5 PN HF (6AG1155-5AA00-7AC0) | ||
| SIMATIC ET 200SP IM 155-6 PN/2 HF (6ES7155-6AU01-0CN0) | ||
| SIPLUS ET 200SP IM 155-6 PN HF TX RAIL (6AG2155-6AU01-4CN0) | ||
| SIPLUS ET 200MP IM 155-5 PN HF (6AG1155-5AA00-2AC0) | ||
| SIPLUS ET 200SP IM 155-6 PN HF (6AG1155-6AU01-2CN0) | ||
| SIMATIC ET 200AL IM 157-1 PN (6ES7157-1AB00-0AB0) | ||
| SIPLUS NET PN/PN Coupler (6AG2158-3AD10-4XA0) | ||
| SIPLUS ET 200SP IM 155-6 PN HF (6AG1155-6AU01-7CN0) | ||
| SIMATIC PN/PN Coupler (6ES7158-3AD10-0XA0) | ||
| SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL (6AG2155-5AA00-1AC0) | ||
| SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL (6AG2155-6AU01-1CN0) | ||
| SIMATIC ET 200SP IM 155-6 PN HA (incl. SIPLUS variants) | ||
| SIMATIC ET 200SP IM 155-6 PN R1 (6ES7155-6AU00-0HM0) |
Timeline
- Jan 13, 2026 CVE Published
- Feb 12, 2026 CVE Updated
References
- https://cert-portal.siemens.com/productcert/csaf/ssa-674753.json advisory
- https://cert-portal.siemens.com/productcert/html/ssa-674753.html advisory
- https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2026/icsa-26-015-04.json advisory
- https://www.cisa.gov/news-events/ics-advisories/icsa-26-015-04 advisory
- https://www.cisa.gov/news-events/ics-alerts/ics-alert-10-301-01 url
- https://www.cisa.gov/resources-tools/resources/ics-recommended-practices url
- https://www.cisa.gov/topics/industrial-control-systems url
- https://www.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf url
- https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf url
- https://www.cisa.gov/news-events/news/targeted-cyber-intrusion-detection-and-mitigation-strategies-update-b url
- https://support.industry.siemens.com/cs/ww/en/view/109987451/ fix
- https://support.industry.siemens.com/cs/ww/en/view/109769419/ fix
- https://support.industry.siemens.com/cs/ww/en/view/109760973/ fix
- https://support.industry.siemens.com/cs/ww/en/view/109816000/ fix