Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2023-37482
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The login functionality of the web server in affected devices does not normalize the response times of login attempts. An unauthenticated remote attacker could exploit this side-channel information to distinguish between valid and invalid usernames.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
通过差异性导致的信息暴露
Source: NVD (National Vulnerability Database)
Vulnerability Title
Siemens SIMATIC S7-1200和SIMATIC S7-1500 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Siemens SIMATIC S7-1200和Siemens SIMATIC S7-1500都是德国西门子(Siemens)公司的产品。Siemens SIMATIC S7-1200是一款S7-1200系列PLC(可编程逻辑控制器)。Siemens SIMATIC S7-1500是一款可编程逻辑控制器。 Siemens SIMATIC S7-1200和SIMATIC S7-1500存在安全漏洞,该漏洞源于受影响设备中的 Web 服务器的登录功能不会规范登录尝试的响应时间。未经身份验证的远程攻击者可以利用
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
SiemensSIMATIC Drive Controller CPU 1504D TF V3.1.0 ~ V3.1.2 -
SiemensSIMATIC Drive Controller CPU 1507D TF V3.1.0 ~ V3.1.2 -
SiemensSIMATIC ET 200SP CPU 1510SP F-1 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC ET 200SP CPU 1510SP-1 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC ET 200SP CPU 1512SP F-1 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC ET 200SP CPU 1512SP-1 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC ET 200SP CPU 1514SP F-2 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC ET 200SP CPU 1514SP-2 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC ET 200SP CPU 1514SPT F-2 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC ET 200SP CPU 1514SPT-2 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) V30.1.0 ~ V31.1.4 -
SiemensSIMATIC S7-1200 CPU 1211C AC/DC/Rly 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1211C DC/DC/DC 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1211C DC/DC/Rly 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1212C AC/DC/Rly 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1212C DC/DC/DC 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1212C DC/DC/Rly 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1212FC DC/DC/DC 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1212FC DC/DC/Rly 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1214C AC/DC/Rly 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1214C DC/DC/DC 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1214C DC/DC/Rly 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1214FC DC/DC/DC 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1214FC DC/DC/Rly 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1215C AC/DC/Rly 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1215C DC/DC/DC 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1215C DC/DC/Rly 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1215FC DC/DC/DC 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1215FC DC/DC/Rly 0 ~ V4.7 -
SiemensSIMATIC S7-1200 CPU 1217C DC/DC/DC 0 ~ V4.7 -
SiemensSIMATIC S7-1500 CPU 1511-1 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1511C-1 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1511F-1 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1511T-1 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1511TF-1 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1512C-1 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1513-1 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1513F-1 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1513pro F-2 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1513pro-2 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1513R-1 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1515-2 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1515F-2 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1515R-2 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1515T-2 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1515TF-2 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1516-3 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1516F-3 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1516pro F-2 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1516pro-2 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1516T-3 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1516TF-3 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1517-3 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1517F-3 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1517F-3 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1517H-3 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1517T-3 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1517TF-3 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1518-4 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1518-4 PN/DP MFP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1518-4 PN/DP MFP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1518F-4 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1518F-4 PN/DP MFP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1518F-4 PN/DP MFP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1518HF-4 PN V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1518T-4 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 CPU 1518TF-4 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIMATIC S7-1500 Software Controller CPU 1507S F V3 V30.1.0 ~ V31.1.4 -
SiemensSIMATIC S7-1500 Software Controller CPU 1507S V3 V30.1.0 ~ V31.1.4 -
SiemensSIMATIC S7-1500 Software Controller CPU 1508S F V3 V30.1.0 ~ V31.1.4 -
SiemensSIMATIC S7-1500 Software Controller CPU 1508S T V3 V30.1.0 ~ V31.1.4 -
SiemensSIMATIC S7-1500 Software Controller CPU 1508S TF V3 V30.1.0 ~ V31.1.4 -
SiemensSIMATIC S7-1500 Software Controller CPU 1508S V3 V30.1.0 ~ V31.1.4 -
SiemensSIMATIC S7-1500 Software Controller Linux V3 V30.1.0 ~ V31.1.4 -
SiemensSIMATIC S7-PLCSIM Advanced V6.0 ~ V7.0 -
SiemensSIPLUS S7-1200 CPU 1212 AC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1212 AC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1212 DC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1212 DC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1212C DC/DC/DC 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1212C DC/DC/DC 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1214 AC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1214 AC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1214 AC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1214 DC/DC/DC 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1214 DC/DC/DC 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1214 DC/DC/DC 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1214 DC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1214 DC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1214 DC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1214FC DC/DC/DC 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1214FC DC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1215 AC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1215 AC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1215 AC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1215 DC/DC/DC 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1215 DC/DC/DC 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1215 DC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1215 DC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1215 DC/DC/RLY 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1215C DC/DC/DC 0 ~ V4.7 -
SiemensSIPLUS S7-1200 CPU 1215FC DC/DC/DC 0 ~ V4.7 -
SiemensSIPLUS S7-1500 CPU 1517H-3 PN V3.1.0 ~ V3.1.2 -
SiemensSIPLUS S7-1500 CPU 1518-4 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIPLUS S7-1500 CPU 1518-4 PN/DP MFP V3.1.0 ~ V3.1.2 -
SiemensSIPLUS S7-1500 CPU 1518F-4 PN/DP V3.1.0 ~ V3.1.2 -
SiemensSIPLUS S7-1500 CPU 1518HF-4 PN V3.1.0 ~ V3.1.2 -
II. Public POCs for CVE-2023-37482
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2023-37482
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same product: SIMATIC Drive Controller CPU 1504D TF
Same vendor: Siemens
Same weakness: CWE-203
V. Comments for CVE-2023-37482

No comments yet

Leave a comment