Vulnerability Description
A vulnerability has been identified in SIMATIC MV400 family (All Versions < V7.0.6). The underlying TCP stack of the affected products does not correctly validate the sequence number for incoming TCP RST packages. An attacker could exploit this to terminate arbitrary TCP sessions.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Simatic Mv440 Sr Firmware | < 7.0.6 |
| Siemens | Simatic Mv440 Sr | - |
| Siemens | Simatic Mv440 Hr Firmware | < 7.0.6 |
| Siemens | Simatic Mv440 Hr | - |
| Siemens | Simatic Mv440 Ur Firmware | < 7.0.6 |
| Siemens | Simatic Mv440 Ur | - |
| Siemens | Simatic Mv420 Sr-B Firmware | < 7.0.6 |
| Siemens | Simatic Mv420 Sr-B | - |
| Siemens | Simatic Mv420 Sr-P Firmware | < 7.0.6 |
| Siemens | Simatic Mv420 Sr-P | - |
| Siemens | Simatic Mv420 Sr-B Body Firmware | < 7.0.6 |
| Siemens | Simatic Mv420 Sr-B Body | - |
| Siemens | Simatic Mv420 Sr-P Body Firmware | < 7.0.6 |
| Siemens | Simatic Mv420 Sr-P Body | - |
Related Weaknesses (CWE)
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-599268.pdfVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-599268.pdfVendor Advisory
FAQ
What is CVE-2020-25241?
CVE-2020-25241 is a vulnerability with a CVSS score of 7.5 (HIGH). A vulnerability has been identified in SIMATIC MV400 family (All Versions < V7.0.6). The underlying TCP stack of the affected products does not correctly validate the sequence number for incoming TCP ...
How severe is CVE-2020-25241?
CVE-2020-25241 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-25241?
Check the references section above for vendor advisories and patch information. Affected products include: Siemens Simatic Mv440 Sr Firmware, Siemens Simatic Mv440 Sr, Siemens Simatic Mv440 Hr Firmware, Siemens Simatic Mv440 Hr, Siemens Simatic Mv440 Ur Firmware.