QID 591307
Date Published: 2023-02-03
QID 591307: Siemens S7-1500 CPU devices Missing Immutable Root of Trust in Hardware Vulnerability (ICSA-23-012-08, SSA-482757)
AFFECTED PRODUCTS
All versions of following SIMATIC Drive Controller CPU are affected:
SIMATIC Drive Controller CPU 1504D TF
SIMATIC Drive Controller CPU 1507D TF
All versions of following SIMATIC S7-1500 Controller CPU are affected:
CPU 1510SP F-1 PN
CPU 1510SP F-1 PN
CPU 1510SP-1 PN
CPU 1510SP-1 PN
CPU 1511-1 PN
CPU 1511-1 PN
CPU 1511-1 PN
CPU 1511C-1 PN
CPU 1511C-1 PN
CPU 1511F-1 PN
CPU 1511F-1 PN
CPU 1511F-1 PN
CPU 1511T-1 PN
CPU 1511TF-1 PN
CPU 1512C-1 PN
CPU 1512C-1 PN
CPU 1512SP F-1 PN
CPU 1512SP F-1 PN
CPU 1512SP-1 PN
CPU 1512SP-1 PN
CPU 1513-1 PN
CPU 1513-1 PN
CPU 1513-1 PN
CPU 1513F-1 PN
CPU 1513F-1 PN
CPU 1513F-1 PN
CPU 1513R-1 PN
CPU 1515-2 PN
CPU 1515-2 PN
CPU 1515-2 PN
CPU 1515F-2 PN
CPU 1515F-2 PN
CPU 1515F-2 PN
CPU 1515R-2 PN
CPU 1515T-2 PN
CPU 1515TF-2 PN
CPU 1516-3 PN/DP
CPU 1516-3 PN/DP
CPU 1516-3 PN/DP
CPU 1516F-3 PN/DP
CPU 1516F-3 PN/DP
CPU 1516F-3 PN/DP
CPU 1516T-3 PN/DP
CPU 1516TF-3 PN/DP
CPU 1517-3 PN/DP
CPU 1517F-3 PN/DP
CPU 1517H-3 PN
CPU 1517T-3 PN/DP
CPU 1517TF-3 PN/DP
CPU 1518-4 PN/DP
CPU 1518-4 PN/DP MFP
CPU 1518-4F PN/DP
CPU 1518F-4 PN/DP MFP
CPU 1518HF-4 PN
CPU 1518T-4 PN/DP
CPU 1518TF-4 PN/DP
CPU S7-1518-4 PN/DP ODK
CPU S7-1518F-4 PN/DP ODK
ET 200pro: CPU 1513PRO F-2 PN
ET 200pro: CPU 1513PRO-2 PN
ET 200pro: CPU 1516PRO F-2 PN
ET 200pro: CPU 1516PRO-2 PN
All versions of following SIPLUS S7-1500 Controller CPU are affected:
ET 200SP CPU 1510SP F-1 PN
ET 200SP CPU 1510SP F-1 PN RAIL
ET 200SP CPU 1510SP-1 PN
ET 200SP CPU 1510SP-1 PN
ET 200SP CPU 1510SP-1 PN RAIL
ET 200SP CPU 1510SP-1 PN RAIL
ET 200SP CPU 1512SP F-1 PN
ET 200SP CPU 1512SP F-1 PN
ET 200SP CPU 1512SP F-1 PN
ET 200SP CPU 1512SP F-1 PN RAIL
ET 200SP CPU 1512SP F-1 PN RAIL
ET 200SP CPU 1512SP-1 PN
ET 200SP CPU 1512SP-1 PN
ET 200SP CPU 1512SP-1 PN RAIL
ET 200SP CPU 1512SP-1 PN RAIL
CPU 1511-1 PN
CPU 1511-1 PN
CPU 1511-1 PN
CPU 1511-1 PN
CPU 1511-1 PN
CPU 1511-1 PN T1 RAIL
CPU 1511-1 PN T1 RAIL
CPU 1511-1 PN TX RAIL
CPU 1511-1 PN TX RAIL
CPU 1511F-1 PN
CPU 1511F-1 PN
CPU 1511F-1 PN
CPU 1513-1 PN
CPU 1513-1 PN
CPU 1513-1 PN
CPU 1513-1 PN
CPU 1513-1 PN
CPU 1513F-1 PN
CPU 1513F-1 PN
CPU 1513F-1 PN
CPU 1515F-2 PN
CPU 1515F-2 PN
CPU 1515F-2 PN RAIL
CPU 1515F-2 PN T2 RAIL
CPU 1515R-2 PN
CPU 1515R-2 PN TX RAIL
CPU 1516-3 PN/DP
CPU 1516-3 PN/DP
CPU 1516-3 PN/DP
CPU 1516-3 PN/DP
CPU 1516-3 PN/DP
CPU 1516-3 PN/DP
CPU 1516-3 PN/DP RAIL
CPU 1516-3 PN/DP TX RAIL
CPU 1516F-3 PN/DP
CPU 1516F-3 PN/DP
CPU 1516F-3 PN/DP
CPU 1516F-3 PN/DP RAIL
CPU 1516F-3 PN/DP RAIL
CPU 1517H-3 PN
CPU 1518-4 PN/DP
CPU 1518-4 PN/DP MFP
CPU 1518F-4 PN/DP
QID Detection Logic:
This QID checks for the Vulnerable version of Siemens S7-1500 CPU devices using passive scanning
Successful exploitation of this vulnerability could allow an attacker with physical access to the device to replace the boot image of the device and execute arbitrary code.
Customers are advised to refer to CERT MITIGATIONS section ICSA-23-012-08 or Siemens MITIGATIONS section SSA-482757 for affected packages and patching details.
- ICSA-23-012-08 -
www.cisa.gov/uscert/ics/advisories/icsa-23-012-08
CVEs related to QID 591307
| Advisory ID | Software | Component | Link |
|---|