Siemens Simatic S7-1500 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Siemens Simatic S7-1500 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2020-8744 — CVSS 7.8 (high): Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE…
CVE-2017-12741 — CVSS 7.5 (high): Specially crafted packets sent to port 161/udp could cause a denial of service condition. The affected devices must be restarted manually.
CVE-2018-16558 — CVSS 7.5 (high): A vulnerability has been identified in SIMATIC S7-1500 CPU (All versions >= V2.0 and < V2.5), SIMATIC S7-1500 CPU (All versions <= V1.8.5)…
CVE-2018-16559 — CVSS 7.5 (high): A vulnerability has been identified in SIMATIC S7-1500 CPU (All versions >= V2.0 and < V2.5), SIMATIC S7-1500 CPU (All versions <= V1.8.5)…
CVE-2019-6568 — CVSS 7.5 (high): The webserver of the affected devices contains a vulnerability that may lead to a denial of service condition. An attacker may cause a…
CVE-2019-6575 — CVSS 7.5 (high): A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl…
CVE-2018-13805 — CVSS 7.5 (high): A vulnerability has been identified in SIMATIC ET 200SP Open Controller (All versions >= V2.0 and < V2.1.6), SIMATIC S7-1500 Software…
CVE-2018-13815 — CVSS 7.5 (high): A vulnerability has been identified in SIMATIC S7-1200 (All versions), SIMATIC S7-1500 (All Versions < V2.6). An attacker could exhaust the…
CVE-2017-2681 — CVSS 6.5 (medium): Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service…
CVE-2017-2680 — CVSS 6.5 (medium): Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment…
CVE-2018-4843 — CVSS 6.5 (medium): A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All…
CVE-2018-3639 — CVSS 5.5 (medium): Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior…