1. Home
  2. CVE Database
  3. CVE-2020-15783
HIGH · 7.5

CVE-2020-15783

A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions), SIMATIC TDC CPU555 (All versions), SINUMERIK 840D sl (All versions). Sen...

Vulnerability Description

A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions), SIMATIC TDC CPU555 (All versions), SINUMERIK 840D sl (All versions). Sending multiple specially crafted packets to the affected devices could cause a Denial-of-Service on port 102. A cold restart is required to recover the service.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
SiemensSinumerik 840D Sl FirmwareAll versions
SiemensSinumerik 840D Sl-
SiemensSimatic S7-300 Cpu 312 FirmwareAll versions
SiemensSimatic S7-300 Cpu 312-
SiemensSimatic S7-300 Cpu 314 FirmwareAll versions
SiemensSimatic S7-300 Cpu 314-
SiemensSimatic S7-300 Cpu 315-2 Dp FirmwareAll versions
SiemensSimatic S7-300 Cpu 315-2 Dp-
SiemensSimatic S7-300 Cpu 315-2 Pn FirmwareAll versions
SiemensSimatic S7-300 Cpu 315-2 Pn-
SiemensSimatic S7-300 Cpu 317-2 Pn FirmwareAll versions
SiemensSimatic S7-300 Cpu 317-2 Pn-
SiemensSimatic S7-300 Cpu 317-2 Dp FirmwareAll versions
SiemensSimatic S7-300 Cpu 317-2 Dp-
SiemensSimatic S7-300 Cpu 315F-2 Dp FirmwareAll versions
SiemensSimatic S7-300 Cpu 315F-2 Dp-
SiemensSimatic S7-300 Cpu 315F-2 Pn FirmwareAll versions
SiemensSimatic S7-300 Cpu 315F-2 Pn-
SiemensSimatic S7-300 Cpu 317F-2 Pn FirmwareAll versions
SiemensSimatic S7-300 Cpu 317F-2 Pn-

Related Weaknesses (CWE)

CWE-400

References

FAQ

What is CVE-2020-15783?

CVE-2020-15783 is a vulnerability with a CVSS score of 7.5 (HIGH). A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions), SIMATIC TDC CPU555 (All versions), SINUMERIK 840D sl (All versions). Sen...

How severe is CVE-2020-15783?

CVE-2020-15783 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2020-15783?

Check the references section above for vendor advisories and patch information. Affected products include: Siemens Sinumerik 840D Sl Firmware, Siemens Sinumerik 840D Sl, Siemens Simatic S7-300 Cpu 312 Firmware, Siemens Simatic S7-300 Cpu 312, Siemens Simatic S7-300 Cpu 314 Firmware.