V
Scaner-VS
HomeCatalogSourcesCWECAPECATT&CKMitigationsProductsVendorsDocs
CVE-2021-44695
CVE
High

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a den…

CVSS
7.5
High
EPSS
0.01
p48
Published
2021-01-01
Updated
2021-01-01
Description

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

Tags · CWE
Pre-auth
CWE-1286
CAPEC-66
CAPEC-676
Affected products
Simatic_et_200_sp_open_controller_cpu_1515sp_pc_firmwareSimatic_s7-1200_cpu_1211c_firmwareSimatic_s7-1200_cpu_1212c_firmwareSimatic_s7-1200_cpu_1212fc_firmwareSimatic_s7-1200_cpu_1214_fc_firmwareSimatic_s7-1200_cpu_1214c_firmwareSimatic_s7-1200_cpu_1214fc_firmwareSimatic_s7-1200_cpu_1215_fc_firmwareSimatic_s7-1200_cpu_1215c_firmwareSimatic_s7-1200_cpu_1215fc_firmwareSimatic_s7-1200_cpu_1217c_firmwareSimatic_s7-1200_cpu_12_1211c_firmwareSimatic_s7-1200_cpu_12_1212c_firmwareSimatic_s7-1200_cpu_12_1212fc_firmwareSimatic_s7-1200_cpu_12_1214c_firmwareSimatic_s7-1200_cpu_12_1214fc_firmwareSimatic_s7-1200_cpu_12_1215c_firmwareSimatic_s7-1200_cpu_12_1215fc_firmwareSimatic_s7-1200_cpu_12_1217c_firmwareSimatic_s7-1500_cpu_1507s_f_firmware
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Timeline
2021-01-01
Published
2021-01-01
Updated
CVSS 3.1 breakdown
Attack Vector
AV: N
Network (N)
Attack Complexity
AC: L
Low (L)
Privileges Required
PR: N
None (N)
User Interaction
UI: N
None (N)
Scope
S: U
Unchanged (U)
Confidentiality Impact
C: N
None (N)
Integrity Impact
I: N
None (N)
Availability Impact
A: H
High (H)
Exploit indicators
EPSS
0.007 · p48
Known exploited (KEV)
No
Known exploits — Сканер-ВС
No Сканер-ВС checks registered for this vulnerability yet.
Affected products
ProductVendorStatus
simatic_et_200_sp_open_controller_cpu_1515sp_pc_firmware*Tracked
simatic_s7-1200_cpu_1211c_firmware*Tracked
simatic_s7-1200_cpu_1212c_firmware*Tracked
simatic_s7-1200_cpu_1212fc_firmware*Tracked
simatic_s7-1200_cpu_1214_fc_firmware*Tracked
simatic_s7-1200_cpu_1214c_firmware*Tracked
simatic_s7-1200_cpu_1214fc_firmware*Tracked
simatic_s7-1200_cpu_1215_fc_firmware*Tracked
simatic_s7-1200_cpu_1215c_firmware*Tracked
simatic_s7-1200_cpu_1215fc_firmware*Tracked
simatic_s7-1200_cpu_1217c_firmware*Tracked
simatic_s7-1200_cpu_12_1211c_firmware*Tracked
simatic_s7-1200_cpu_12_1212c_firmware*Tracked
simatic_s7-1200_cpu_12_1212fc_firmware*Tracked
simatic_s7-1200_cpu_12_1214c_firmware*Tracked
simatic_s7-1200_cpu_12_1214fc_firmware*Tracked
simatic_s7-1200_cpu_12_1215c_firmware*Tracked
simatic_s7-1200_cpu_12_1215fc_firmware*Tracked
simatic_s7-1200_cpu_12_1217c_firmware*Tracked
simatic_s7-1500_cpu_1507s_f_firmware*Tracked
Showing first 20 of 96
Source databases
CVE