CVE-2020-15782 Information

Description

A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2) SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions) SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V21.9) SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions < V4.5.0) SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V2.9.2) SIMATIC S7-1500 Software Controller (All versions < V21.9) SIMATIC S7-PLCSIM Advanced (All versions < V4.0) SINAMICS PERFECT HARMONY GH180 Drives (Drives manufactured before 2021-08-13) SINUMERIK MC (All versions < V6.15) SINUMERIK ONE (All versions < V6.15). Affected devices are vulnerable to a memory protection bypass through a specific operation. A remote unauthenticated attacker with network access to port 102/tcp could potentially write arbitrary data and code to protected memory areas or read sensitive data to launch further attacks.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Reference

https://cert-portal.siemens.com/productcert/pdf/ssa-434534.pdf https://cert-portal.siemens.com/productcert/pdf/ssa-434536.pdf https://cert-portal.siemens.com/productcert/pdf/ssa-434535.pdf

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

9.8