Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2017-2681
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款Siemens产品资源管理错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Siemens Simatic Hmi是德国西门子(Siemens)公司的一个为工业自动化设备提供人机交互功能的设备。 多款Siemens产品中存在资源管理错误漏洞。攻击者可通过向受影响的产品发送特制的PROFINET DCP数据包利用该漏洞造成拒绝服务。以下产品和版本受到影响:Siemens SIMATIC NET CP 343-1 Std(包括: SIPLUS variants)V3.1.3之前版本;SIMATIC NET CP 343-1 Lean (包括:SIPLUS variants)V3.1.
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
SiemensDevelopment/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller All versions < V4.1.1 Patch04 -
SiemensDevelopment/Evaluation Kits for PROFINET IO: EK-ERTEC 200 All versions < V4.2.1 Patch03 -
SiemensDevelopment/Evaluation Kits for PROFINET IO: EK-ERTEC 200P All versions < V4.4.0 Patch01 -
SiemensIE/AS-i Link PN IO All versions -
SiemensIE/PB-Link (incl. SIPLUS NET variants) All versions < V3.0 -
SiemensSCALANCE M-800 family (incl. S615, MUM-800 and RM1224) All versions < V4.03 -
SiemensSCALANCE W-700 IEEE 802.11n family All versions < V6.1 -
SiemensSCALANCE X-200 family (incl. SIPLUS NET variants) All versions < V5.2.2 -
SiemensSCALANCE X-200IRT family (incl. SIPLUS NET variants) All versions < V5.4.0 -
SiemensSCALANCE X-300 family (incl. X408 and SIPLUS NET variants) All versions < V4.1.0 -
SiemensSCALANCE X408 family All versions < V4.1.0 -
SiemensSCALANCE X414 All versions < V3.10.2 -
SiemensSCALANCE XM-400 family All versions < V6.1 -
SiemensSCALANCE XR-500 family All versions < V6.1 -
SiemensSIMATIC CM 1542-1 All versions < V2.0 -
SiemensSIMATIC CM 1542SP-1 All versions < V1.0.15 -
SiemensSIMATIC CP 1243-1 (incl. SIPLUS variants) All versions < V2.1.82 -
SiemensSIMATIC CP 1243-1 DNP3 (incl. SIPLUS variants) 0 ~ * -
SiemensSIMATIC CP 1243-1 IEC (incl. SIPLUS variants) All versions -
SiemensSIMATIC CP 1243-8 IRC All versions < V2.1.82 -
SiemensSIMATIC CP 1542SP-1 IRC (incl. SIPLUS variants) All versions < V1.0.15 -
SiemensSIMATIC CP 1543-1 (incl. SIPLUS variants) All versions < V2.1 -
SiemensSIMATIC CP 1543SP-1 (incl. SIPLUS variants) All versions < V1.0.15 -
SiemensSIMATIC CP 1604 All versions < V2.7 -
SiemensSIMATIC CP 1616 All versions < V2.7 -
SiemensSIMATIC CP 343-1 (incl. SIPLUS variants) All versions < V3.1.3 -
SiemensSIMATIC CP 343-1 Advanced (incl. SIPLUS variants) All versions -
SiemensSIMATIC CP 343-1 Lean (incl. SIPLUS variants) All versions < V3.1.3 -
SiemensSIMATIC CP 443-1 (incl. SIPLUS variants) All versions < V3.2.17 -
SiemensSIMATIC CP 443-1 Advanced (incl. SIPLUS variants) All versions < V3.2.17 -
SiemensSIMATIC CP 443-1 OPC UA All versions -
SiemensSIMATIC DK-16xx PN IO All versions < V2.7 -
SiemensSIMATIC ET 200AL IM 157-1 PN 0 ~ V1.0.2 -
SiemensSIMATIC ET 200M (incl. SIPLUS variants) All versions -
SiemensSIMATIC ET 200MP IM 155-5 PN BA 0 ~ V4.0.1 -
SiemensSIMATIC ET 200MP IM 155-5 PN HF 0 ~ V4.2.0 -
SiemensSIMATIC ET 200MP IM 155-5 PN ST 0 ~ V4.1.0 -
SiemensSIMATIC ET 200pro IM 154-3 PN HF 0 ~ * -
SiemensSIMATIC ET 200pro IM 154-4 PN HF 0 ~ * -
SiemensSIMATIC ET 200SP IM 155-6 PN BA 0 ~ * -
SiemensSIMATIC ET 200SP IM 155-6 PN HF 0 ~ V4.2.0 -
SiemensSIMATIC ET 200SP IM 155-6 PN HS 0 ~ V4.0.1 -
SiemensSIMATIC ET 200SP IM 155-6 PN ST 0 ~ V4.1.0 -
SiemensSIMATIC ET 200SP IM 155-6 PN ST BA 0 ~ V4.1.0 -
SiemensSIMATIC ET200ecoPN, 16DI, DC24V, 8xM12 All versions -
SiemensSIMATIC ET200ecoPN, 16DO DC24V/1,3A, 8xM12 All versions -
SiemensSIMATIC ET200ecoPN, 4AO U/I 4xM12 All versions -
SiemensSIMATIC ET200ecoPN, 8 DIO, DC24V/1,3A, 8xM12 All versions -
SiemensSIMATIC ET200ecoPN, 8 DO, DC24V/2A, 8xM12 All versions -
SiemensSIMATIC ET200ecoPN, 8AI RTD/TC 8xM12 All versions -
SiemensSIMATIC ET200ecoPN, 8AI; 4 U/I; 4 RTD/TC 8xM12 All versions -
SiemensSIMATIC ET200ecoPN, 8DI, DC24V, 4xM12 All versions -
SiemensSIMATIC ET200ecoPN, 8DI, DC24V, 8xM12 All versions -
SiemensSIMATIC ET200ecoPN, 8DO, DC24V/0,5A, 4xM12 All versions -
SiemensSIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 4xM12 All versions -
SiemensSIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 8xM12 All versions -
SiemensSIMATIC ET200ecoPN: IO-Link Master All versions -
SiemensSIMATIC ET200S (incl. SIPLUS variants) All versions -
SiemensSIMATIC HMI Comfort Panels, HMI Multi Panels, HMI Mobile Panels (incl. SIPLUS variants) All versions < V15.1 -
SiemensSIMATIC MV420 SR-B 0 ~ V7.0.6 -
SiemensSIMATIC MV420 SR-B Body 0 ~ V7.0.6 -
SiemensSIMATIC MV420 SR-P 0 ~ V7.0.6 -
SiemensSIMATIC MV420 SR-P Body 0 ~ V7.0.6 -
SiemensSIMATIC MV440 HR 0 ~ V7.0.6 -
SiemensSIMATIC MV440 SR 0 ~ V7.0.6 -
SiemensSIMATIC MV440 UR 0 ~ V7.0.6 -
SiemensSIMATIC PN/PN Coupler (incl. SIPLUS NET variants) All versions < V4.0 -
SiemensSIMATIC RF650R All versions < V3.0 -
SiemensSIMATIC RF680R All versions < V3.0 -
SiemensSIMATIC RF685R All versions < V3.0 -
SiemensSIMATIC S7-1200 CPU family (incl. SIPLUS variants) All versions < V4.2.1 -
SiemensSIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) All versions < V2.1 -
SiemensSIMATIC S7-1500 Software Controller All versions < V2.1 -
SiemensSIMATIC S7-200 SMART All versions < V2.3 -
SiemensSIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) 0 ~ V3.X.14 -
SiemensSIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) 0 ~ V6.0.7 -
SiemensSIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants) 0 ~ V6.0.6 -
SiemensSIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants) 0 ~ V7.0.2 -
SiemensSIMATIC S7-410 CPU family (incl. SIPLUS variants) All versions < V8.2 -
SiemensSIMATIC TDC CP51M1 0 ~ V1.1.8 -
SiemensSIMATIC TDC CPU555 0 ~ V1.1.1 -
SiemensSIMATIC Teleservice Adapter IE Advanced All versions -
SiemensSIMATIC Teleservice Adapter IE Basic All versions -
SiemensSIMATIC Teleservice Adapter IE Standard All versions -
SiemensSIMATIC WinAC RTX 2010 All versions < V2010 SP3 -
SiemensSIMATIC WinAC RTX F 2010 All versions < V2010 SP3 -
SiemensSIMOCODE pro V PROFINET (incl. SIPLUS variants) All versions < V2.0.0 -
SiemensSIMOTION All versions < V4.5 HF1 -
SiemensSINAMICS DCM w. PN All versions < V1.4 SP1 HF5 -
SiemensSINAMICS DCP w. PN All versions < V1.2 HF1 -
SiemensSINAMICS G110M w. PN All versions < V4.7 SP6 HF3 -
SiemensSINAMICS G120(C/P/D) w. PN (incl. SIPLUS variants) All versions < V4.7 SP6 HF3 -
SiemensSINAMICS G130 V4.7 w. PN All versions < V4.7 HF27 -
SiemensSINAMICS G130 V4.8 w. PN All versions < V4.8 HF4 -
SiemensSINAMICS G150 V4.7 w. PN V4.7: All versions < V4.7 HF27 -
SiemensSINAMICS G150 V4.8 w. PN All versions < V4.8 HF4 -
SiemensSINAMICS S110 w. PN All versions < V4.4 SP3 HF5 -
SiemensSINAMICS S120 prior to V4.7 w. PN (incl. SIPLUS variants) All versions < V4.7 -
SiemensSINAMICS S120 V4.7 SP1 w. PN (incl. SIPLUS variants) All versions -
SiemensSINAMICS S120 V4.7 w. PN (incl. SIPLUS variants) All versions < V4.7 HF27 -
SiemensSINAMICS S120 V4.8 w. PN (incl. SIPLUS variants) All versions < V4.8 HF4 -
SiemensSINAMICS S150 V4.7 w. PN All versions < V4.7 HF27 -
SiemensSINAMICS S150 V4.8 w. PN All versions < V4.8 HF4 -
SiemensSINAMICS V90 w. PN All versions < V1.01 -
SiemensSINUMERIK 828D V4.5 and prior All versions < V4.5 SP6 HF2 -
SiemensSINUMERIK 828D V4.7 All versions < V4.7 SP4 HF1 -
SiemensSINUMERIK 840D sl V4.5 and prior All versions < V4.5 SP6 HF2 -
SiemensSINUMERIK 840D sl V4.7 All versions < V4.7 SP4 HF1 -
SiemensSIPLUS ET 200MP IM 155-5 PN HF 0 ~ V4.2.0 -
SiemensSIPLUS ET 200MP IM 155-5 PN HF 0 ~ V4.2.0 -
SiemensSIPLUS ET 200MP IM 155-5 PN HF T1 RAIL 0 ~ V4.2.0 -
SiemensSIPLUS ET 200MP IM 155-5 PN ST 0 ~ V4.1.0 -
SiemensSIPLUS ET 200MP IM 155-5 PN ST TX RAIL 0 ~ V4.1.0 -
SiemensSIPLUS ET 200SP IM 155-6 PN HF 0 ~ V4.2.0 -
SiemensSIPLUS ET 200SP IM 155-6 PN HF 0 ~ V4.2.0 -
SiemensSIPLUS ET 200SP IM 155-6 PN HF T1 RAIL 0 ~ V4.2.0 -
SiemensSIPLUS ET 200SP IM 155-6 PN ST 0 ~ V4.1.0 -
SiemensSIPLUS ET 200SP IM 155-6 PN ST BA 0 ~ V4.1.0 -
SiemensSIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL 0 ~ V4.1.0 -
SiemensSIPLUS ET 200SP IM 155-6 PN ST TX RAIL 0 ~ V4.1.0 -
SiemensSIRIUS ACT 3SU1 interface module PROFINET All versions < V1.1.0 -
SiemensSIRIUS Motor Starter M200D PROFINET All versions -
SiemensSIRIUS Soft Starter 3RW44 PN All versions -
SiemensSITOP PSU8600 PROFINET All versions < V1.2.0 -
SiemensSITOP UPS1600 PROFINET (incl. SIPLUS variants) All versions < V2.2.0 -
SiemensSoftnet PROFINET IO for PC-based Windows systems All versions < V14 SP1 -
II. Public POCs for CVE-2017-2681
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2017-2681
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same product: Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller
Same vendor: Siemens
Same weakness: CWE-400
V. Comments for CVE-2017-2681

No comments yet

Leave a comment