Siemens Simatic S7-400h V6 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Siemens Simatic S7-400h V6 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2017-12741 — CVSS 7.5 (high): Specially crafted packets sent to port 161/udp could cause a denial of service condition. The affected devices must be restarted manually.
CVE-2018-16556 — CVSS 7.5 (high): A vulnerability has been identified in SIMATIC S7-400 CPU 412-1 DP V7 (All versions), SIMATIC S7-400 CPU 412-2 DP V7 (All versions)…
CVE-2019-10936 — CVSS 7.5 (high): Affected devices improperly handle large amounts of specially crafted UDP packets. This could allow an unauthenticated remote attacker to…
CVE-2021-40368 — CVSS 7.5 (high): A vulnerability has been identified in SIMATIC S7-400 CPU 412-1 DP V7 (All versions), SIMATIC S7-400 CPU 412-2 DP V7 (All versions)…
CVE-2022-25622 — CVSS 5.3 (medium): The PROFINET (PNIO) stack, when integrated with the Interniche IP stack, improperly handles internal resources for TCP segments where the…