CVE-2018-13815
Published: Dec 13, 2018
Modified: Aug 5, 2024
Description
A vulnerability has been identified in SIMATIC S7-1200 (All versions), SIMATIC S7-1500 (All Versions < V2.6). An attacker could exhaust the available connection pool of an affected device by opening a sufficient number of connections to the device. Successful exploitation requires an attacker to be able to send packets to port 102/tcp of the affected device. No user interaction and no user privileges are required to exploit the vulnerability. The vulnerability, if exploited, could cause a Denial-of-Service condition impacting the availability of the system. At the time of advisory publication no public exploitation of this vulnerability was known.
| Vendor | Product | Versions |
|---|---|---|
Siemens AG | SIMATIC S7-1200, SIMATIC S7-1500 | affected SIMATIC S7-1200 : All versionsaffected SIMATIC S7-1500 : All Versions < V2.6 |
Weaknesses (CWE)
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now