siemens simatic-s7-1500 CVE-2019-10929 vulnerability in Siemens Products
Published on August 13, 2019

A vulnerability has been identified in SIMATIC CP 1626 (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V20.8), SIMATIC HMI Panel (incl. SIPLUS variants) (All versions), SIMATIC NET PC Software V14 (All versions < V14 SP1 Update 14), SIMATIC NET PC Software V15 (All versions), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions < V4.4.0), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V2.8.1), SIMATIC S7-1500 Software Controller (All versions < V20.8), SIMATIC S7-PLCSIM Advanced (All versions < V3.0), SIMATIC STEP 7 (TIA Portal) (All versions < V16), SIMATIC WinCC (TIA Portal) (All versions < V16), SIMATIC WinCC OA (All versions < V3.16 P013), SIMATIC WinCC Runtime Advanced (All versions < V16), SIMATIC WinCC Runtime Professional (All versions < V16), TIM 1531 IRC (incl. SIPLUS NET variants) (All versions < V2.1). Affected devices contain a message protection bypass vulnerability due to certain properties in the calculation used for integrity protection. This could allow an attacker in a Man-in-the-Middle position to modify network traffic sent on port 102/tcp to the affected devices.

NVD

Weakness Type

Use of a Broken or Risky Cryptographic Algorithm

The use of a broken or risky cryptographic algorithm is an unnecessary risk that may result in the exposure of sensitive information. The use of a non-standard algorithm is dangerous because a determined attacker may be able to break the algorithm and compromise whatever data has been protected. Well-known techniques may exist to break the algorithm.


Products Associated with CVE-2019-10929

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2019-10929 are published in these products:

Siemens Simatic S7 1500
 
Siemens Simatic S7 Plcsim Advanced
 
Siemens Simatic Net Pc
 
Siemens Simatic Step 7
 
Siemens Simatic Wincc
 
Siemens Simatic Wincc Open Architecture
 
Siemens Simatic Wincc Runtime
 

Affected Versions

Siemens SIMATIC CP 1626: Siemens SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants): Siemens SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants): Siemens SIMATIC HMI Panel (incl. SIPLUS variants): Siemens SIMATIC NET PC Software V14: Siemens SIMATIC NET PC Software V15: Siemens SIMATIC S7-1200 CPU family (incl. SIPLUS variants): Siemens SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants): Siemens SIMATIC S7-1500 Software Controller: Siemens SIMATIC S7-PLCSIM Advanced: Siemens SIMATIC STEP 7 (TIA Portal): Siemens SIMATIC WinCC (TIA Portal): Siemens SIMATIC WinCC OA: Siemens SIMATIC WinCC Runtime Advanced: Siemens SIMATIC WinCC Runtime Professional: Siemens TIM 1531 IRC (incl. SIPLUS NET variants):

Exploit Probability

EPSS
0.14%
Percentile
33.91%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.