CVE-2019-19281

Summary

CVE	CVE-2019-19281
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2020-03-10 20:15:00 UTC
Updated	2020-04-02 22:15:00 UTC
Description	A vulnerability has been identified in SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions >= V2.5 and < V20.8), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions >= V2.5 and < V2.8), SIMATIC S7-1500 Software Controller (All versions >= V2.5 and < V20.8). Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a Denial-of-Service condition. The vulnerability can be triggered if specially crafted UDP packets are sent to the device. The security vulnerability could be exploited by an attacker with network access to the affected systems. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise the device availability.

Risk And Classification

Problem Types: CWE-400

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Hardware	Siemens	Simatic Et 200sp Open Controller Cpu 1515sp Pc2	-	All	All	All
Hardware	Siemens	Simatic Et 200sp Open Controller Cpu 1515sp Pc2	-	All	All	All
Operating System	Siemens	Simatic Et 200sp Open Controller Cpu 1515sp Pc2 Firmware	All	All	All	All
Operating System	Siemens	Simatic Et 200sp Open Controller Cpu 1515sp Pc2 Firmware	All	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1507s	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1507s	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1507s F	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1507s F	-	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1507s Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1507s Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1507s F Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1507s F Firmware	All	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1508s	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1508s	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1508s F	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1508s F	-	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1508s Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1508s Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1508s F Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1508s F Firmware	All	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1511-1 Pn	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1511-1 Pn	-	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1511-1 Pn Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1511-1 Pn Firmware	All	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1513-1 Pn	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1513-1 Pn	-	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1513-1 Pn Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1513-1 Pn Firmware	All	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1515-2 Pn	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1515-2 Pn	-	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1515-2 Pn Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1515-2 Pn Firmware	All	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1516-3 Dp	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1516-3 Dp	-	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1516-3 Dp Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1516-3 Dp Firmware	All	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1516-3 Pn	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1516-3 Pn	-	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1516-3 Pn Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1516-3 Pn Firmware	All	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1517-3 Dp	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1517-3 Dp	-	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1517-3 Dp Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1517-3 Dp Firmware	All	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1517-3 Pn	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1517-3 Pn	-	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1517-3 Pn Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1517-3 Pn Firmware	All	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1518-4 Dp	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1518-4 Dp	-	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1518-4 Dp Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1518-4 Dp Firmware	All	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1518-4 Pn	-	All	All	All
Hardware	Siemens	Simatic S7-1500 Cpu 1518-4 Pn	-	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1518-4 Pn Firmware	All	All	All	All
Operating System	Siemens	Simatic S7-1500 Cpu 1518-4 Pn Firmware	All	All	All	All

References

Reference	Source	Link	Tags
Siemens SIMATIC S7-1500 (Update A) \| CISA	MISC	www.us-cert.gov
cert-portal.siemens.com/productcert/pdf/ssa-750824.pdf	MISC	cert-portal.siemens.com	Vendor Advisory
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.