CVE-2020-15783 : A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related

A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions), SIMATIC TDC CPU555 (All versions), SINUMERIK 840D sl (All versions). Sending multiple specially crafted packets to the affected devices could cause a Denial-of-Service on port 102. A cold restart is required to recover the service.

Published 2020-11-12 20:15:16

Updated 2022-12-06 21:18:31

Source Siemens AG

View at NVD, CVE.org

Vulnerability category: Denial of service

Products affected by CVE-2020-15783

Siemens » Sinumerik 840d Sl Firmware
cpe:2.3:o:siemens:sinumerik_840d_sl_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Sinumerik 840d Sl » Version: N/A
Siemens » Simatic S7-300 Cpu 314 Firmware
cpe:2.3:o:siemens:simatic_s7-300_cpu_314_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic S7-300 Cpu 314 » Version: N/A
Siemens » Simatic S7-300 Cpu 315-2 Dp Firmware
cpe:2.3:o:siemens:simatic_s7-300_cpu_315-2_dp_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic S7-300 Cpu 315-2 Dp » Version: N/A
Siemens » Simatic Tdc Cpu555 Firmware
cpe:2.3:o:siemens:simatic_tdc_cpu555_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic Tdc Cpu555 » Version: N/A
Siemens » Simatic S7-300 Cpu 317-2 Dp Firmware
cpe:2.3:o:siemens:simatic_s7-300_cpu_317-2_dp_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic S7-300 Cpu 317-2 Dp » Version: N/A
Siemens » Simatic S7-300 Cpu 312 Firmware
cpe:2.3:o:siemens:simatic_s7-300_cpu_312_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic S7-300 Cpu 312 » Version: N/A
Siemens » Simatic S7-300 Cpu 315-2 Pn Firmware
cpe:2.3:o:siemens:simatic_s7-300_cpu_315-2_pn_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic S7-300 Cpu 315-2 Pn » Version: N/A
Siemens » Simatic S7-300 Cpu 317-2 Pn Firmware
cpe:2.3:o:siemens:simatic_s7-300_cpu_317-2_pn_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic S7-300 Cpu 317-2 Pn » Version: N/A
Siemens » Simatic S7-300 Cpu 315f-2 Dp Firmware
cpe:2.3:o:siemens:simatic_s7-300_cpu_315f-2_dp_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic S7-300 Cpu 315f-2 Dp » Version: N/A
Siemens » Simatic S7-300 Cpu 315f-2 Pn Firmware
cpe:2.3:o:siemens:simatic_s7-300_cpu_315f-2_pn_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic S7-300 Cpu 315f-2 Pn » Version: N/A
Siemens » Simatic S7-300 Cpu 317f-2 Pn Firmware
cpe:2.3:o:siemens:simatic_s7-300_cpu_317f-2_pn_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic S7-300 Cpu 317f-2 Pn » Version: N/A
Siemens » Simatic S7-300 Cpu 317f-2 Dp Firmware
cpe:2.3:o:siemens:simatic_s7-300_cpu_317f-2_dp_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Siemens » Simatic S7-300 Cpu 317f-2 Dp » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2020-15783

EPSS FAQ

0.15%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 33 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-15783

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.8	HIGH	AV:N/AC:L/Au:N/C:N/I:N/A:C	10.0	6.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Complete
7.5	HIGH	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: None Integrity: None Availability: High

CWE ids for CVE-2020-15783

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource.
Assigned by:
- nvd@nist.gov (Secondary)
- productcert@siemens.com (Primary)

References for CVE-2020-15783

https://cert-portal.siemens.com/productcert/pdf/ssa-492828.pdf

Mitigation;Vendor Advisory

Jump to

Vulnerability Details : CVE-2020-15783

Products affected by CVE-2020-15783

Exploit prediction scoring system (EPSS) score for CVE-2020-15783

CVSS scores for CVE-2020-15783

CWE ids for CVE-2020-15783

References for CVE-2020-15783