CVE-2017-12741
Summary
| CVE | CVE-2017-12741 |
|---|---|
| State | PUBLISHED |
| Assigner | siemens |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2017-12-26 04:29:13 UTC |
| Updated | 2025-04-20 01:37:25 UTC |
| Description | Specially crafted packets sent to port 161/udp could cause a denial of service condition. The affected devices must be restarted manually. |
Risk And Classification
Primary CVSS: v4.0 8.7 HIGH from [email protected]
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Problem Types: CWE-400 | NVD-CWE-noinfo | CWE-400 CWE-400: Uncontrolled Resource Consumption
| Version | Source | Type | Score | Severity | Vector |
|---|---|---|---|---|---|
| 4.0 | [email protected] | Secondary | 8.7 | HIGH | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/C... |
| 4.0 | CNA | DECLARED | 8.7 | HIGH | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N |
| 3.1 | [email protected] | Secondary | 7.5 | HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
| 3.1 | CNA | DECLARED | 7.5 | HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
| 3.0 | [email protected] | Primary | 7.5 | HIGH | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
| 2.0 | [email protected] | Primary | 7.8 | AV:N/AC:L/Au:N/C:N/I:N/A:C |
CVSS v4.0 Breakdown
Attack Vector
NetworkAttack Complexity
LowAttack Requirements
NonePrivileges Required
NoneUser Interaction
NoneConfidentiality
NoneIntegrity
NoneAvailability
HighSub Conf.
NoneSub Integrity
NoneSub Availability
NoneCVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
CVSS v3.1 Breakdown
Attack Vector
NetworkAttack Complexity
LowPrivileges Required
NoneUser Interaction
NoneScope
UnchangedConfidentiality
NoneIntegrity
NoneAvailability
HighCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS v3.0 Breakdown
Attack Vector
NetworkAttack Complexity
LowPrivileges Required
NoneUser Interaction
NoneScope
UnchangedConfidentiality
NoneIntegrity
NoneAvailability
HighCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Siemens | Dk Standard Ethernet Controller | - | All | All | All |
| Operating System | Siemens | Dk Standard Ethernet Controller Firmware | - | All | All | All |
| Hardware | Siemens | Ek-ertec 200p | - | All | All | All |
| Hardware | Siemens | Ek-ertec 200pn Io | - | All | All | All |
| Operating System | Siemens | Ek-ertec 200pn Io Firmware | - | All | All | All |
| Operating System | Siemens | Ek-ertec 200p Firmware | All | All | All | All |
| Hardware | Siemens | Simatic Compact Field Unit | - | All | All | All |
| Operating System | Siemens | Simatic Compact Field Unit Firmware | - | All | All | All |
| Hardware | Siemens | Simatic Et 200al | - | All | All | All |
| Operating System | Siemens | Simatic Et 200al Firmware | - | All | All | All |
| Hardware | Siemens | Simatic Et 200ecopn | - | All | All | All |
| Operating System | Siemens | Simatic Et 200ecopn Firmware | - | All | All | All |
| Hardware | Siemens | Simatic Et 200m | - | All | All | All |
| Hardware | Siemens | Simatic Et 200mp | - | All | All | All |
| Operating System | Siemens | Simatic Et 200mp Firmware | - | All | All | All |
| Operating System | Siemens | Simatic Et 200m Firmware | - | All | All | All |
| Hardware | Siemens | Simatic Et 200pro | - | All | All | All |
| Operating System | Siemens | Simatic Et 200pro Firmware | - | All | All | All |
| Hardware | Siemens | Simatic Et 200s | - | All | All | All |
| Hardware | Siemens | Simatic Et 200sp | - | All | All | All |
| Operating System | Siemens | Simatic Et 200sp Firmware | - | All | All | All |
| Operating System | Siemens | Simatic Et 200s Firmware | - | All | All | All |
| Hardware | Siemens | Simatic Pn/pn Coupler | - | All | All | All |
| Operating System | Siemens | Simatic Pn/pn Coupler Firmware | - | All | All | All |
| Hardware | Siemens | Simatic S7-1200 | - | All | All | All |
| Operating System | Siemens | Simatic S7-1200 Firmware | - | All | All | All |
| Hardware | Siemens | Simatic S7-1500 | - | All | All | All |
| Hardware | Siemens | Simatic S7-1500 Controller | - | All | All | All |
| Operating System | Siemens | Simatic S7-1500 Controller Firmware | 2.0 | All | All | All |
| Operating System | Siemens | Simatic S7-1500 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic S7-200 | - | All | All | All |
| Operating System | Siemens | Simatic S7-200 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic S7-300 | - | All | All | All |
| Operating System | Siemens | Simatic S7-300 Firmware | - | All | All | All |
| Hardware | Siemens | Simatic S7-400h V6 | - | All | All | All |
| Operating System | Siemens | Simatic S7-400h V6 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic S7-400pn/dp V7 | - | All | All | All |
| Operating System | Siemens | Simatic S7-400pn/dp V7 Firmware | - | All | All | All |
| Hardware | Siemens | Simatic S7-400pn V6 | - | All | All | All |
| Operating System | Siemens | Simatic S7-400pn V6 Firmware | All | All | All | All |
| Hardware | Siemens | Simatic S7-410 V8 | - | All | All | All |
| Operating System | Siemens | Simatic S7-410 V8 Firmware | - | All | All | All |
| Hardware | Siemens | Simatic Winac Rtx F 2010 | - | All | All | All |
| Operating System | Siemens | Simatic Winac Rtx F 2010 Firmware | - | All | All | All |
| Hardware | Siemens | Simocode Pro V Profinet | - | All | All | All |
| Operating System | Siemens | Simocode Pro V Profinet Firmware | - | All | All | All |
| Hardware | Siemens | Simotion C | - | All | All | All |
| Operating System | Siemens | Simotion C Firmware | All | All | All | All |
| Hardware | Siemens | Simotion D | - | All | All | All |
| Operating System | Siemens | Simotion D Firmware | All | All | All | All |
| Hardware | Siemens | Simotion P | - | All | All | All |
| Operating System | Siemens | Simotion P Firmware | All | All | All | All |
| Hardware | Siemens | Sinamics Dcm | - | All | All | All |
| Operating System | Siemens | Sinamics Dcm Firmware | - | All | All | All |
| Hardware | Siemens | Sinamics Dcp | - | All | All | All |
| Operating System | Siemens | Sinamics Dcp Firmware | - | All | All | All |
| Hardware | Siemens | Sinamics G110m/g120pn | - | All | All | All |
| Operating System | Siemens | Sinamics G110m/g120pn Firmware | All | All | All | All |
| Hardware | Siemens | Sinamics G130 | - | All | All | All |
| Operating System | Siemens | Sinamics G130 Firmware | - | All | All | All |
| Hardware | Siemens | Sinamics G150 | - | All | All | All |
| Operating System | Siemens | Sinamics G150 Firmware | - | All | All | All |
| Hardware | Siemens | Sinamics S110pn | - | All | All | All |
| Operating System | Siemens | Sinamics S110pn Firmware | - | All | All | All |
| Hardware | Siemens | Sinamics S120 | - | All | All | All |
| Operating System | Siemens | Sinamics S120 Firmware | - | All | All | All |
| Hardware | Siemens | Sinamics S150 V4.7 | - | All | All | All |
| Operating System | Siemens | Sinamics S150 V4.7 Firmware | - | All | All | All |
| Hardware | Siemens | Sinamics S150 V4.8 | - | All | All | All |
| Operating System | Siemens | Sinamics S150 V4.8 Firmware | - | All | All | All |
| Hardware | Siemens | Sinamics V90pn | - | All | All | All |
| Operating System | Siemens | Sinamics V90pn Firmware | - | All | All | All |
| Hardware | Siemens | Sinumerik 840d Sl | - | All | All | All |
| Operating System | Siemens | Sinumerik 840d Sl Firmware | - | All | All | All |
| Hardware | Siemens | Sirius Soft Starter 3rw44pn | - | All | All | All |
| Operating System | Siemens | Sirius Soft Starter 3rw44pn Firmware | - | All | All | All |
Vendor Declared Affected Products
| Source | Vendor | Product | Version | Platforms |
|---|---|---|---|---|
| CNA | Siemens | Development/Evaluation Kits For PROFINET IO DK Standard Ethernet Controller | affected All versions < V4.1.1 Patch 05 | Not specified |
| CNA | Siemens | Development/Evaluation Kits For PROFINET IO EK-ERTEC 200 | affected All versions < V4.5 | Not specified |
| CNA | Siemens | Development/Evaluation Kits For PROFINET IO EK-ERTEC 200P | affected All versions < V4.5 | Not specified |
| CNA | Siemens | SIMATIC Compact Field Unit | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET 200AL IM 157-1 PN | affected V1.0.2 custom | Not specified |
| CNA | Siemens | SIMATIC ET 200M Incl. SIPLUS Variants | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET 200MP IM 155-5 PN BA | affected V4.0.2 custom | Not specified |
| CNA | Siemens | SIMATIC ET 200MP IM 155-5 PN HF | affected V4.2.0 custom | Not specified |
| CNA | Siemens | SIMATIC ET 200MP IM 155-5 PN ST | affected V4.1.0 custom | Not specified |
| CNA | Siemens | SIMATIC ET 200pro IM 154-3 PN HF | affected * custom | Not specified |
| CNA | Siemens | SIMATIC ET 200pro IM 154-4 PN HF | affected * custom | Not specified |
| CNA | Siemens | SIMATIC ET 200SP IM 155-6 PN BA | affected * custom | Not specified |
| CNA | Siemens | SIMATIC ET 200SP IM 155-6 PN HA Incl. SIPLUS Variants | affected All versions < V1.1.0 | Not specified |
| CNA | Siemens | SIMATIC ET 200SP IM 155-6 PN HF | affected V4.2.0 custom | Not specified |
| CNA | Siemens | SIMATIC ET 200SP IM 155-6 PN HS | affected V4.0.1 custom | Not specified |
| CNA | Siemens | SIMATIC ET 200SP IM 155-6 PN ST | affected * custom | Not specified |
| CNA | Siemens | SIMATIC ET 200SP IM 155-6 PN ST | affected * custom | Not specified |
| CNA | Siemens | SIMATIC ET 200SP IM 155-6 PN ST BA | affected * custom | Not specified |
| CNA | Siemens | SIMATIC ET 200SP IM 155-6 PN ST BA | affected * custom | Not specified |
| CNA | Siemens | SIMATIC ET200ecoPN 16DI DC24V 8xM12 | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET200ecoPN 16DO DC24V/13A 8xM12 | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET200ecoPN 4AO U/I 4xM12 | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET200ecoPN 8 DIO DC24V/13A 8xM12 | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET200ecoPN 8 DO DC24V/2A 8xM12 | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET200ecoPN 8AI RTD/TC 8xM12 | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET200ecoPN 8AI 4 U/I 4 RTD/TC 8xM12 | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET200ecoPN 8DI DC24V 4xM12 | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET200ecoPN 8DI DC24V 8xM12 | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET200ecoPN 8DO DC24V/05A 4xM12 | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET200ecoPN 8DO DC24V/13A 4xM12 | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET200ecoPN 8DO DC24V/13A 8xM12 | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET200ecoPN IO-Link Master | affected All versions | Not specified |
| CNA | Siemens | SIMATIC ET200S Incl. SIPLUS Variants | affected All versions | Not specified |
| CNA | Siemens | SIMATIC PN/PN Coupler Incl. SIPLUS NET Variants | affected All versions < V4.2.0 | Not specified |
| CNA | Siemens | SIMATIC S7-1200 CPU Family Incl. SIPLUS Variants | affected All versions < V4.2.3 | Not specified |
| CNA | Siemens | SIMATIC S7-1500 CPU Family Incl. Related ET200 CPUs And SIPLUS Variants | affected All versions < V2.0 | Not specified |
| CNA | Siemens | SIMATIC S7-1500 Software Controller | affected All versions < V2.0 | Not specified |
| CNA | Siemens | SIMATIC S7-200 SMART | affected All versions < V2.03.01 | Not specified |
| CNA | Siemens | SIMATIC S7-300 CPU Family Incl. Related ET200 CPUs And SIPLUS Variants | affected V3.X.16 custom | Not specified |
| CNA | Siemens | SIMATIC S7-400 H V6and BelowCPU Family Incl. SIPLUS Variants | affected V6.0.8 custom | Not specified |
| CNA | Siemens | SIMATIC S7-400 PN/DP V6 And Below CPU Family Incl. SIPLUS Variants | affected V6.0.6 custom | Not specified |
| CNA | Siemens | SIMATIC S7-400 PN/DP V7 CPU Family Incl. SIPLUS Variants | affected V7.0.2 custom | Not specified |
| CNA | Siemens | SIMATIC S7-410 V8 CPU Family Incl. SIPLUS Variants | affected All versions < V8.2.1 | Not specified |
| CNA | Siemens | SIMATIC TDC CP51M1 | affected V1.1.8 custom | Not specified |
| CNA | Siemens | SIMATIC TDC CPU555 | affected V1.1.1 custom | Not specified |
| CNA | Siemens | SIMATIC WinAC RTX 2010 | affected All versions < V2010 SP3 | Not specified |
| CNA | Siemens | SIMATIC WinAC RTX F 2010 | affected All versions < V2010 SP3 | Not specified |
| CNA | Siemens | SIMOCODE Pro V PROFINET Incl. SIPLUS Variants | affected All versions < V2.1.1 | Not specified |
| CNA | Siemens | SIMOTION C | affected All versions < V5.1 HF1 | Not specified |
| CNA | Siemens | SIMOTION D | affected All versions < V5.1 HF1 | Not specified |
| CNA | Siemens | SIMOTION D4xx V4.4 For SINAMICS SM150i-2 W. PROFINET Incl. SIPLUS Variants | affected All versions < V4.4 HF26 | Not specified |
| CNA | Siemens | SIMOTION P V4.4 And V4.5 | affected All versions < V4.5 HF5 | Not specified |
| CNA | Siemens | SIMOTION P V5 | affected All versions < V5.1 HF1 | Not specified |
| CNA | Siemens | SINAMICS DCM W. PN | affected All versions < V1.4 SP1 HF6 | Not specified |
| CNA | Siemens | SINAMICS DCP W. PN | affected All versions < V1.2 HF2 | Not specified |
| CNA | Siemens | SINAMICS G110M W. PN | affected All versions < V4.7 SP9 HF1 | Not specified |
| CNA | Siemens | SINAMICS G120C/P/D W. PN Incl. SIPLUS Variants | affected All versions < V4.7 SP9 HF1 | Not specified |
| CNA | Siemens | SINAMICS G130 V4.7 W. PN | affected All versions < V4.7 HF29 | Not specified |
| CNA | Siemens | SINAMICS G130 V4.8 W. PN | affected All versions < V4.8 HF4 | Not specified |
| CNA | Siemens | SINAMICS G150 V4.7 W. PN | affected All versions < V4.7 HF29 | Not specified |
| CNA | Siemens | SINAMICS G150 V4.8 W. PN | affected All versions < V4.8 HF4 | Not specified |
| CNA | Siemens | SINAMICS GH150 V4.7 W. PROFINET | affected All versions < V4.7 SP5 HF7 | Not specified |
| CNA | Siemens | SINAMICS GL150 V4.7 W. PROFINET | affected All versions < V4.8 SP2 | Not specified |
| CNA | Siemens | SINAMICS GM150 V4.7 W. PROFINET | affected All versions < V4.7 HF31 | Not specified |
| CNA | Siemens | SINAMICS S110 W. PN | affected All versions < V4.4 SP3 HF6 | Not specified |
| CNA | Siemens | SINAMICS S120 Prior To V4.7 W. PN Incl. SIPLUS Variants | affected All versions < V4.7 | Not specified |
| CNA | Siemens | SINAMICS S120 V4.7 SP1 W. PN Incl. SIPLUS Variants | affected All versions | Not specified |
| CNA | Siemens | SINAMICS S120 V4.7 W. PN Incl. SIPLUS Variants | affected All versions < V4.7 HF29 | Not specified |
| CNA | Siemens | SINAMICS S120 V4.8 W. PN Incl. SIPLUS Variants | affected All versions < V4.8 HF5 | Not specified |
| CNA | Siemens | SINAMICS S150 V4.7 W. PN | affected All versions < V4.7 HF29 | Not specified |
| CNA | Siemens | SINAMICS S150 V4.8 W. PN | affected All versions < V4.8 HF4 | Not specified |
| CNA | Siemens | SINAMICS SL150 V4.7.0 W. PROFINET | affected All versions < V4.7 HF30 | Not specified |
| CNA | Siemens | SINAMICS SL150 V4.7.4 W. PROFINET | affected All versions < V4.8 SP2 | Not specified |
| CNA | Siemens | SINAMICS SL150 V4.7.5 W. PROFINET | affected All versions < V4.8 SP2 | Not specified |
| CNA | Siemens | SINAMICS SM120 V4.7 W. PROFINET | affected All versions < V4.8 SP2 | Not specified |
| CNA | Siemens | SINAMICS V90 W. PN | affected All versions < V1.02 | Not specified |
| CNA | Siemens | SINUMERIK 840D Sl | affected All versions < V4.8 SP3 | Not specified |
| CNA | Siemens | SIPLUS ET 200MP IM 155-5 PN HF | affected V4.2.0 custom | Not specified |
| CNA | Siemens | SIPLUS ET 200MP IM 155-5 PN HF | affected V4.2.0 custom | Not specified |
| CNA | Siemens | SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL | affected V4.2.0 custom | Not specified |
| CNA | Siemens | SIPLUS ET 200MP IM 155-5 PN ST | affected V4.1.0 custom | Not specified |
| CNA | Siemens | SIPLUS ET 200MP IM 155-5 PN ST TX RAIL | affected V4.1.0 custom | Not specified |
| CNA | Siemens | SIPLUS ET 200SP IM 155-6 PN HF | affected V4.2.0 custom | Not specified |
| CNA | Siemens | SIPLUS ET 200SP IM 155-6 PN HF | affected V4.2.0 custom | Not specified |
| CNA | Siemens | SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL | affected V4.2.0 custom | Not specified |
| CNA | Siemens | SIPLUS ET 200SP IM 155-6 PN ST | affected * custom | Not specified |
| CNA | Siemens | SIPLUS ET 200SP IM 155-6 PN ST | affected * custom | Not specified |
| CNA | Siemens | SIPLUS ET 200SP IM 155-6 PN ST BA | affected * custom | Not specified |
| CNA | Siemens | SIPLUS ET 200SP IM 155-6 PN ST BA | affected * custom | Not specified |
| CNA | Siemens | SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL | affected * custom | Not specified |
| CNA | Siemens | SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL | affected * custom | Not specified |
| CNA | Siemens | SIPLUS ET 200SP IM 155-6 PN ST TX RAIL | affected * custom | Not specified |
| CNA | Siemens | SIPLUS ET 200SP IM 155-6 PN ST TX RAIL | affected * custom | Not specified |
| CNA | Siemens | SIRIUS Soft Starter 3RW44 PN | affected All versions | Not specified |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| cert-portal.siemens.com/productcert/pdf/ssa-346262.pdf | af854a3a-2127-422b-91ae-364da2661108 | cert-portal.siemens.com | |
| cert-portal.siemens.com/productcert/pdf/ssa-141614.pdf | af854a3a-2127-422b-91ae-364da2661108 | cert-portal.siemens.com | |
| cert-portal.siemens.com/productcert/pdf/ssa-546832.pdf | af854a3a-2127-422b-91ae-364da2661108 | cert-portal.siemens.com | |
| cert-portal.siemens.com/productcert/html/ssa-546832.html | af854a3a-2127-422b-91ae-364da2661108 | cert-portal.siemens.com | |
| Multiple Siemens Products CVE-2017-12741 Denial of Service Vulnerability | af854a3a-2127-422b-91ae-364da2661108 | www.securityfocus.com | |
| cert-portal.siemens.com/productcert/html/ssa-346262.html | af854a3a-2127-422b-91ae-364da2661108 | cert-portal.siemens.com | |
| cert-portal.siemens.com/productcert/html/ssa-141614.html | af854a3a-2127-422b-91ae-364da2661108 | cert-portal.siemens.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.