CVE-2020-15782: Buffer Overflow
First published: Fri May 28 2021(Updated: )
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V21.9), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions < V4.5.0), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V2.9.2), SIMATIC S7-1500 Software Controller (All versions < V21.9), SIMATIC S7-PLCSIM Advanced (All versions < V4.0), SINAMICS PERFECT HARMONY GH180 Drives (Drives manufactured before 2021-08-13), SINUMERIK MC (All versions < V6.15), SINUMERIK ONE (All versions < V6.15). Affected devices are vulnerable to a memory protection bypass through a specific operation. A remote unauthenticated attacker with network access to port 102/tcp could potentially write arbitrary data and code to protected memory areas or read sensitive data to launch further attacks.
Credit: productcert@siemens.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens Simatic Driver Controller Firmware | <2.9.2 | |
| Siemens Cpu 1504d Tf | ||
| Siemens Cpu 1507d Tf | ||
| Siemens S7-1200 Cpu Firmware | <4.5.0 | |
| Siemens Cpu 1211c | ||
| Siemens Cpu 1212c | ||
| Siemens Cpu 1212fc | ||
| Siemens Cpu 1214c | ||
| Siemens Cpu 1214fc | ||
| Siemens Cpu 1215c | ||
| Siemens Cpu 1215fc | ||
| Siemens Cpu 1217c | ||
| Siemens S7-1500 Cpu Firmware | <2.9.2 | |
| Siemens 6es7510-1dj01-0ab0 | ||
| Siemens 6es7510-1sj01-0ab0 | ||
| Siemens 6es7511-1ak01-0ab0 | ||
| Siemens 6es7511-1ak02-0ab0 | ||
| Siemens 6es7511-1ck00-0ab0 | ||
| Siemens 6es7511-1ck01-0ab0 | ||
| Siemens 6es7511-1fk01-0ab0 | ||
| Siemens 6es7511-1fk02-0ab0 | ||
| Siemens 6es7511-1tk01-0ab0 | ||
| Siemens 6es7511-1uk01-0ab0 | ||
| Siemens 6es7512-1ck00-0ab0 | ||
| Siemens 6es7512-1ck01-0ab0 | ||
| Siemens 6es7512-1dk01-0ab0 | ||
| Siemens 6es7512-1sk01-0ab0 | ||
| Siemens 6es7513-1al01-0ab0 | ||
| Siemens 6es7513-1al02-0ab0 | ||
| Siemens 6es7513-1fl01-0ab0 | ||
| Siemens 6es7513-1fl02-0ab0 | ||
| Siemens 6es7513-1rl00-0ab0 | ||
| Siemens 6es7513-2gl00-0ab0 | ||
| Siemens 6es7513-2pl00-0ab0 | ||
| Siemens 6es7515-2am01-0ab0 | ||
| Siemens 6es7515-2am02-0ab0 | ||
| Siemens 6es7515-2fm01-0ab0 | ||
| Siemens 6es7515-2fm02-0ab0 | ||
| Siemens 6es7515-2rm00-0ab0 | ||
| Siemens 6es7515-2tm01-0ab0 | ||
| Siemens 6es7515-2um01-0ab0 | ||
| Siemens 6es7516-2gn00-0ab0 | ||
| Siemens 6es7516-2pn00-0ab0 | ||
| Siemens 6es7516-3an01-0ab0 | ||
| Siemens 6es7516-3an02-0ab0 | ||
| Siemens 6es7516-3fn01-0ab0 | ||
| Siemens 6es7516-3fn02-0ab0 | ||
| Siemens 6es7516-3tn00-0ab0 | ||
| Siemens 6es7516-3un00-0ab0 | ||
| Siemens 6es7517-3ap00-0ab0 | ||
| Siemens 6es7517-3fp00-0ab0 | ||
| Siemens 6es7517-3hp00-0ab0 | ||
| Siemens 6es7517-3tp00-0ab0 | ||
| Siemens 6es7517-3up00-0ab0 | ||
| Siemens 6es7518-4ap00-0ab0 | ||
| Siemens 6es7518-4ap00-3ab0 | ||
| Siemens 6es7518-4fp00-0ab0 | ||
| Siemens 6es7518-4fp00-3ab0 | ||
| Siemens Simatic S7-1500 Software Controller | ||
| Siemens Simatic S7-plcsim Advanced | <4.0 | |
| Siemens Et 200sp Open Controller Firmware | ||
| Siemens Cpu 1515sp Pc | ||
| Siemens Cpu 1515sp Pc2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/siemens
- canonical/siemens simatic driver controller firmware
- canonical/siemens cpu 1504d tf
- canonical/siemens cpu 1507d tf
- canonical/siemens s7-1200 cpu firmware
- canonical/siemens cpu 1211c
- canonical/siemens cpu 1212c
- canonical/siemens cpu 1212fc
- canonical/siemens cpu 1214c
- canonical/siemens cpu 1214fc
- canonical/siemens cpu 1215c
- canonical/siemens cpu 1215fc
- canonical/siemens cpu 1217c
- canonical/siemens s7-1500 cpu firmware
- canonical/siemens 6es7510-1dj01-0ab0
- canonical/siemens 6es7510-1sj01-0ab0
- canonical/siemens 6es7511-1ak01-0ab0
- canonical/siemens 6es7511-1ak02-0ab0
- canonical/siemens 6es7511-1ck00-0ab0
- canonical/siemens 6es7511-1ck01-0ab0
- canonical/siemens 6es7511-1fk01-0ab0
- canonical/siemens 6es7511-1fk02-0ab0
- canonical/siemens 6es7511-1tk01-0ab0
- canonical/siemens 6es7511-1uk01-0ab0
- canonical/siemens 6es7512-1ck00-0ab0
- canonical/siemens 6es7512-1ck01-0ab0
- canonical/siemens 6es7512-1dk01-0ab0
- canonical/siemens 6es7512-1sk01-0ab0
- canonical/siemens 6es7513-1al01-0ab0
- canonical/siemens 6es7513-1al02-0ab0
- canonical/siemens 6es7513-1fl01-0ab0
- canonical/siemens 6es7513-1fl02-0ab0
- canonical/siemens 6es7513-1rl00-0ab0
- canonical/siemens 6es7513-2gl00-0ab0
- canonical/siemens 6es7513-2pl00-0ab0
- canonical/siemens 6es7515-2am01-0ab0
- canonical/siemens 6es7515-2am02-0ab0
- canonical/siemens 6es7515-2fm01-0ab0
- canonical/siemens 6es7515-2fm02-0ab0
- canonical/siemens 6es7515-2rm00-0ab0
- canonical/siemens 6es7515-2tm01-0ab0
- canonical/siemens 6es7515-2um01-0ab0
- canonical/siemens 6es7516-2gn00-0ab0
- canonical/siemens 6es7516-2pn00-0ab0
- canonical/siemens 6es7516-3an01-0ab0
- canonical/siemens 6es7516-3an02-0ab0
- canonical/siemens 6es7516-3fn01-0ab0
- canonical/siemens 6es7516-3fn02-0ab0
- canonical/siemens 6es7516-3tn00-0ab0
- canonical/siemens 6es7516-3un00-0ab0
- canonical/siemens 6es7517-3ap00-0ab0
- canonical/siemens 6es7517-3fp00-0ab0
- canonical/siemens 6es7517-3hp00-0ab0
- canonical/siemens 6es7517-3tp00-0ab0
- canonical/siemens 6es7517-3up00-0ab0
- canonical/siemens 6es7518-4ap00-0ab0
- canonical/siemens 6es7518-4ap00-3ab0
- canonical/siemens 6es7518-4fp00-0ab0
- canonical/siemens 6es7518-4fp00-3ab0
- canonical/siemens simatic s7-1500 software controller
- canonical/siemens simatic s7-plcsim advanced
- canonical/siemens et 200sp open controller firmware
- canonical/siemens cpu 1515sp pc
- canonical/siemens cpu 1515sp pc2