QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2016-9158

Back to search

CVE-2016-9158

Published: Dec 17, 2016

Modified: Jun 2, 2026

PUBLISHED

Description

A vulnerability has been identified in SIMATIC S7-300 CPU family (All versions), SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions), SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants) (All versions), SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants) (All versions), SIMATIC S7-400 V6 and earlier CPU family (All versions), SIMATIC S7-400 V7 CPU family (All versions). Specially crafted packets sent to port 80/tcp could cause the affected devices to go into defect mode. A cold restart is required to recover the system.

VendorProductVersions

Siemens AG

SIMATIC S7-300 CPU family

affected
All versions

Siemens AG

SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants)

affected
All versions

Siemens AG

SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants)

affected
All versions

Siemens AG

SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)

affected
All versions

Siemens AG

SIMATIC S7-400 V6 and earlier CPU family

affected
All versions

Siemens AG

SIMATIC S7-400 V7 CPU family

affected
All versions

Weaknesses (CWE)

CWE-20

References

94820
vdb-entry
x_refsource_BID
1037434
vdb-entry
x_refsource_SECTRACK

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now