SSA-113131 (Last Update: 2020-02-10): Denial-of-Service Vulnerabilities in SIMATIC S7-400 CPUs


2020-02-10 00:00:00 UTC


Two vulnerabilities have been identified in the SIMATIC S7-400 CPU family that could allow an attacker to cause a Denial-of-Service condition. In order to exploit the vulnerability, an attacker must have access to the affected devices on port 102/tcp via Ethernet, PROFIBUS or Multi Point Interfaces (MPI).

Siemens provides updates to address the vulnerability, and recommends specific mitigations.