CVE-2018-4850
Published: May 16, 2018
Modified: Sep 16, 2024
Description
A vulnerability has been identified in SIMATIC S7-400 (incl. F) CPU hardware version 4.0 and below (All versions), SIMATIC S7-400 (incl. F) CPU hardware version 5.0 (All firmware versions < V5.2), SIMATIC S7-400H CPU hardware version 4.5 and below (All versions). The affected CPUs improperly validate S7 communication packets which could cause a Denial-of-Service condition of the CPU. The CPU will remain in DEFECT mode until manual restart.
| Vendor | Product | Versions |
|---|---|---|
Siemens AG | SIMATIC S7-400 (incl. F) CPU hardware version 4.0 and below, SIMATIC S7-400 (incl. F) CPU hardware version 5.0, SIMATIC S7-400H CPU hardware version 4.5 and below | affected SIMATIC S7-400 (incl. F) CPU hardware version 4.0 and below : All versionsaffected SIMATIC S7-400 (incl. F) CPU hardware version 5.0 : All firmware versions < V5.2affected SIMATIC S7-400H CPU hardware version 4.5 and below : All versions |
Weaknesses (CWE)
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now