SSA-914382 (Last Update: 2018-09-11): Denial-of-Service Vulnerability in SIMATIC S7-400

Published

2018-09-11 00:00:00

Summary

SIMATIC S7-400 CPUs are affected by a security vulnerability which could lead to a Denial-of-Service condition of the PLC if specially crafted packets are received and processed.

The affected SIMATIC S7-400 CPU hardware versions are in the product cancellation phase or already phased-out. Siemens recommends customers either upgrading to a new version or implementing specific countermeasures.

Source

https://cert-portal.siemens.com/productcert/pdf/ssa-914382.pdf