CVE-2016-4784: Infoleak
First published: Tue May 31 2016(Updated: )
A vulnerability has been identified in firmware variant PROFINET IO for EN100 Ethernet module : All versions < V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions < V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions < V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions < V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions < 1.02.02; SIPROTEC 7SJ686 : All versions < V 4.83; SIPROTEC 7UT686 : All versions < V 4.01; SIPROTEC 7SD686 : All versions < V 4.03; SIPROTEC 7SJ66 : All versions < V 4.20. The integrated web server (port 80/tcp) of the affected devices could allow remote attackers to obtain sensitive device information if network access was obtained.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens SIPROTEC firmware | ||
| siemens SIPROTEC compact model 7rw80 | ||
| siemens SIPROTEC compact model 7sd80 | ||
| Siemens SIPROTEC Compact 7SJ80 | ||
| Siemens SIPROTEC compact model 7SK81 | ||
| Siemens SIPROTEC compact model 7SK81 | ||
| Siemens SIPROTEC compact model 7SK81 | ||
| Siemens SIPROTEC 4 | ||
| Siemens SIPROTEC Compact EN100 | ||
| Siemens SIPROTEC firmware | =4.26 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/90773
- http://www.securityfocus.com/bid/99471
- http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-547990.pdf
- https://ics-cert.us-cert.gov/advisories/ICSA-16-140-02
- https://ics-cert.us-cert.gov/advisories/ICSA-17-187-03
- https://www.siemens.com/cert/pool/cert/siemens_security_advisory_SSA-323211.pdf
Frequently Asked Questions
What is the severity of CVE-2016-4784?
CVE-2016-4784 has a medium severity rating due to its potential impact on the affected devices.
How do I fix CVE-2016-4784?
To fix CVE-2016-4784, update the firmware of the affected EN100 Ethernet module to a version >= V1.04.01 for PROFINET IO, >= V1.11.00 for Modbus TCP, or >= V1.03 for DNP3 TCP.
Which versions are affected by CVE-2016-4784?
CVE-2016-4784 affects all firmware versions of PROFINET IO for EN100 Ethernet module below V1.04.01, Modbus TCP below V1.11.00, and DNP3 TCP below V1.03.
What devices are impacted by CVE-2016-4784?
CVE-2016-4784 impacts firmware variants of the Siemens SIPROTEC series, particularly the EN100 Ethernet module.
Is my Siemens SIPROTEC Compact model vulnerable to CVE-2016-4784?
The Siemens SIPROTEC Compact models 7RW80, 7SD80, 7SJ80, 7SK81, and others are not vulnerable to CVE-2016-4784.
- agent/references
- agent/type
- agent/severity
- agent/weakness
- agent/author
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/siemens
- canonical/siemens siprotec firmware
- canonical/siemens siprotec compact model 7rw80
- canonical/siemens siprotec compact model 7sd80
- canonical/siemens siprotec compact 7sj80
- canonical/siemens siprotec compact model 7sk81
- canonical/siemens siprotec 4
- canonical/siemens siprotec compact en100
- version/siemens siprotec firmware/4.26