Siemens Simatic S7-1200 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Siemens Simatic S7-1200 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2013-0700 — CVSS 7.8 (high): Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage)…
CVE-2013-2780 — CVSS 7.8 (high): Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage)…
CVE-2020-28400 — CVSS 7.5 (high): Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a denial of service condition. The…
CVE-2018-13815 — CVSS 7.5 (high): A vulnerability has been identified in SIMATIC S7-1200 (All versions), SIMATIC S7-1500 (All Versions < V2.6). An attacker could exhaust the…
CVE-2017-12741 — CVSS 7.5 (high): Specially crafted packets sent to port 161/udp could cause a denial of service condition. The affected devices must be restarted manually.
CVE-2019-13945 — CVSS 6.8 (medium): A vulnerability has been identified in SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions), SIMATIC S7-1200 CPU family < V4.x…
CVE-2017-2680 — CVSS 6.5 (medium): Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment…
CVE-2017-2681 — CVSS 6.5 (medium): Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service…
CVE-2012-3037 — CVSS 4.3 (medium): The Siemens SIMATIC S7-1200 2.x PLC does not properly protect the private key of the SIMATIC CONTROLLER Certification Authority…
CVE-2012-3040 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the web server on Siemens SIMATIC S7-1200 PLCs 2.x through 3.0.1 allows remote attackers to…