Siemens (CVE-2021-37204)

high Tenable.ot Plugin ID 500614

Synopsis

The remote OT asset is affected by a vulnerability.

Description

A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions >= V4.5.0 < V4.5.2), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions >= V2.9.2 < V2.9.4), SIMATIC S7-1500 Software Controller (All versions), SIMATIC S7-PLCSIM Advanced (All versions < V4.0 SP1), TIM 1531 IRC (incl. SIPLUS NET variants) (All versions >= V2.2). An unauthenticated attacker could cause a denial-of-service condition in a PLC when sending specially prepared packet over port 102/tcp. A restart of the affected device is needed to restore normal operations. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information.

Solution

Refer to the vendor advisory.

See Also

https://cert-portal.siemens.com/productcert/pdf/ssa-838121.pdf

Plugin Details

Severity: High

ID: 500614

Version: 1.2

Type: remote

Family: Tenable.ot

Published: 3/21/2022

Updated: 7/15/2022

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: High

Base Score: 7.1

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C

CVSS Score Source: CVE-2021-37204

CVSS v3

Risk Factor: High

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Vulnerability Information

CPE: cpe:/o:siemens:simatic_et_200sp_open_controller_cpu_1515sp_pc2_firmware, cpe:/a:siemens:simatic_s7-1500_software_controller, cpe:/o:siemens:simatic_s7-1200_cpu_1211c_firmware, cpe:/o:siemens:simatic_s7-1200_cpu_1212c_firmware, cpe:/o:siemens:simatic_s7-1200_cpu_1212fc_firmware, cpe:/o:siemens:simatic_s7-1200_cpu_1214fc_firmware, cpe:/o:siemens:simatic_s7-1200_cpu_1214c_firmware, cpe:/o:siemens:simatic_s7-1200_cpu_1215fc_firmware, cpe:/o:siemens:simatic_s7-1200_cpu_1215c_firmware, cpe:/o:siemens:simatic_s7-1200_cpu_1217c_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1510sp-1_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1510sp_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1511-1_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1511c-1_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1511f-1_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1511t-1_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1511tf-1_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1512c-1_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1512sp-1_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1512spf-1_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1513-1_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1513f-1_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1513r-1_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_cpu_1513prof-2_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_cpu_1513pro-2_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1515-2_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1515f-2_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1515r-2_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1515t-2_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1515tf-2_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1516pro_f_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1516pro-2_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1516-3_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1516f-3_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1516t-3_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1516tf-3_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1517-3_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1517f-3_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1517tf-3_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1518-4_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1518f-4_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1518hf-4_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1518t-4_firmware, cpe:/o:siemens:simatic_s7-1500_cpu_1518tf-4_firmware

Required KB Items: Tenable.ot/Siemens

Exploit Ease: No known exploits are available

Patch Publication Date: 2/9/2022

Vulnerability Publication Date: 2/9/2022

Reference Information

CVE: CVE-2021-37204