CVE-2018-4843

MEDIUM

Published 2018-03-20T14:00:00

Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2018-4843. We'll provide specific mitigation strategies based on your environment and risk profile.

CVSS Score

V3.1

6.5

/10

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C

Base Score Metrics

Exploitability: N/A Impact: N/A

EPSS Score

v2023.03.01

0.001

probability

of exploitation in the wild

There is a 0.1% chance that this vulnerability will be exploited in the wild within the next 30 days.

Updated: 2025-01-25

Exploit Probability

Percentile: 0.329

Higher than 32.9% of all CVEs

Attack Vector Metrics

Attack Vector

Not Available

Attack Complexity

Not Available

Privileges Required

Not Available

User Interaction

Not Available

Scope

Not Available

Impact Metrics

Confidentiality

Not Available

Integrity

Not Available

Availability

Not Available

Description

A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 416-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 416F-3 PN/DP V7 (All versions < V7.0.3), SIMATIC CP 343-1 (incl. SIPLUS variants) (All versions), SIMATIC CP 343-1 Advanced (incl. SIPLUS variants) (All versions), SIMATIC CP 443-1 (All versions < V3.3), SIMATIC CP 443-1 (All versions < V3.3), SIMATIC CP 443-1 Advanced (All versions < V3.3), SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200pro IM154-8FX PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200S IM151-8 PN/DP CPU (All versions < V3.2.16), SIMATIC ET 200S IM151-8F PN/DP CPU (All versions < V3.2.16), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V1.7.0), SIMATIC S7-1500 Software Controller (All versions < V1.7.0), SIMATIC S7-300 CPU 314C-2 PN/DP (All versions < V3.3.16), SIMATIC S7-300 CPU 315-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 315F-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 315T-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317F-2 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317T-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 317TF-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 319-3 PN/DP (All versions < V3.2.16), SIMATIC S7-300 CPU 319F-3 PN/DP (All versions < V3.2.16), SIMATIC S7-400 CPU 412-2 PN V7 (All versions < V7.0.3), SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) (All versions < V6.0.9), SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants) (All versions < V6.0.7), SIMATIC S7-410 CPU family (incl. SIPLUS variants) (All versions < V8.1), SIMATIC WinAC RTX 2010 (All versions < V2010 SP3), SIMATIC WinAC RTX F 2010 (All versions < V2010 SP3), SINUMERIK 828D (All versions < V4.7 SP6 HF1), SIPLUS ET 200S IM151-8 PN/DP CPU (All versions < V3.2.16), SIPLUS ET 200S IM151-8F PN/DP CPU (All versions < V3.2.16), SIPLUS NET CP 443-1 (All versions < V3.3), SIPLUS NET CP 443-1 Advanced (All versions < V3.3), SIPLUS S7-300 CPU 314C-2 PN/DP (All versions < V3.3.16), SIPLUS S7-300 CPU 315-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 315F-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 317-2 PN/DP (All versions < V3.2.16), SIPLUS S7-300 CPU 317F-2 PN/DP (All versions < V3.2.16), SIPLUS S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIPLUS S7-400 CPU 416-3 PN/DP V7 (All versions < V7.0.3), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a denial of service condition of the requesting system.

The security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. A manual restart is required to recover the system.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Siemens

SIMATIC S7-400 CPU 414-3 PN/DP V7

Affected Versions:

All versions < V7.0.3

Siemens

SIMATIC S7-400 CPU 414F-3 PN/DP V7

Affected Versions:

All versions < V7.0.3

Siemens

SIMATIC S7-400 CPU 416-3 PN/DP V7

Affected Versions:

All versions < V7.0.3

Siemens

SIMATIC S7-400 CPU 416F-3 PN/DP V7

Affected Versions:

All versions < V7.0.3

Siemens

SIMATIC CP 343-1 (incl. SIPLUS variants)

Affected Versions:

All versions

Siemens

SIMATIC CP 343-1 Advanced (incl. SIPLUS variants)

Affected Versions:

All versions

Siemens

SIMATIC CP 443-1

Affected Versions:

All versions < V3.3

Siemens

SIMATIC CP 443-1

Affected Versions:

All versions < V3.3

Siemens

SIMATIC CP 443-1 Advanced

Affected Versions:

All versions < V3.3

Siemens

SIMATIC ET 200pro IM154-8 PN/DP CPU

Affected Versions:

All versions < V3.2.16

Siemens

SIMATIC ET 200pro IM154-8F PN/DP CPU

Affected Versions:

All versions < V3.2.16

Siemens

SIMATIC ET 200pro IM154-8FX PN/DP CPU

Affected Versions:

All versions < V3.2.16

Siemens

SIMATIC ET 200S IM151-8 PN/DP CPU

Affected Versions:

All versions < V3.2.16

Siemens

SIMATIC ET 200S IM151-8F PN/DP CPU

Affected Versions:

All versions < V3.2.16

Siemens

SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)

Affected Versions:

All versions < V1.7.0

Siemens

SIMATIC S7-1500 Software Controller

Affected Versions:

All versions < V1.7.0

Siemens

SIMATIC S7-300 CPU 314C-2 PN/DP

Affected Versions:

All versions < V3.3.16

Siemens

SIMATIC S7-300 CPU 315-2 PN/DP

Affected Versions:

All versions < V3.2.16

Siemens

SIMATIC S7-300 CPU 315F-2 PN/DP

Affected Versions:

All versions < V3.2.16

Siemens

SIMATIC S7-300 CPU 315T-3 PN/DP

Affected Versions:

All versions < V3.2.16

Siemens

SIMATIC S7-300 CPU 317-2 PN/DP

Affected Versions:

All versions < V3.2.16

Siemens

SIMATIC S7-300 CPU 317F-2 PN/DP

Affected Versions:

All versions < V3.2.16

Siemens

SIMATIC S7-300 CPU 317T-3 PN/DP

Affected Versions:

All versions < V3.2.16

Siemens

SIMATIC S7-300 CPU 317TF-3 PN/DP

Affected Versions:

All versions < V3.2.16

Siemens

SIMATIC S7-300 CPU 319-3 PN/DP

Affected Versions:

All versions < V3.2.16

Siemens

SIMATIC S7-300 CPU 319F-3 PN/DP

Affected Versions:

All versions < V3.2.16

Siemens

SIMATIC S7-400 CPU 412-2 PN V7

Affected Versions:

All versions < V7.0.3

Siemens

SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants)

Affected Versions:

All versions < V6.0.9

Siemens

SIMATIC S7-400 PN/DP V6 CPU family (incl. SIPLUS variants)

Affected Versions:

All versions < V6.0.7

Siemens

SIMATIC S7-410 CPU family (incl. SIPLUS variants)

Affected Versions:

All versions < V8.1

Siemens

SIMATIC WinAC RTX 2010

Affected Versions:

All versions < V2010 SP3

Siemens

SIMATIC WinAC RTX F 2010

Affected Versions:

All versions < V2010 SP3

Siemens

SINUMERIK 828D

Affected Versions:

All versions < V4.7 SP6 HF1

Siemens

SIPLUS ET 200S IM151-8 PN/DP CPU

Affected Versions:

All versions < V3.2.16

Siemens

SIPLUS ET 200S IM151-8F PN/DP CPU

Affected Versions:

All versions < V3.2.16

Siemens

SIPLUS NET CP 443-1

Affected Versions:

All versions < V3.3

Siemens

SIPLUS NET CP 443-1 Advanced

Affected Versions:

All versions < V3.3

Siemens

SIPLUS S7-300 CPU 314C-2 PN/DP

Affected Versions:

All versions < V3.3.16

Siemens

SIPLUS S7-300 CPU 315-2 PN/DP

Affected Versions:

All versions < V3.2.16

Siemens

SIPLUS S7-300 CPU 315F-2 PN/DP

Affected Versions:

All versions < V3.2.16

Siemens

SIPLUS S7-300 CPU 317-2 PN/DP

Affected Versions:

All versions < V3.2.16

Siemens

SIPLUS S7-300 CPU 317F-2 PN/DP

Affected Versions:

All versions < V3.2.16

Siemens

SIPLUS S7-400 CPU 414-3 PN/DP V7

Affected Versions:

All versions < V7.0.3

Siemens

SIPLUS S7-400 CPU 416-3 PN/DP V7

Affected Versions:

All versions < V7.0.3

Siemens

Softnet PROFINET IO for PC-based Windows systems

Affected Versions:

All versions

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed MODERATE

GHSA-2cg6-w8mm-22rg

Advisory Details

A vulnerability has been identified in SIMATIC CP 343-1 Advanced (All versions), SIMATIC CP 343-1 Standard (All versions), SIMATIC CP 443-1 Advanced (All versions), SIMATIC CP 443-1 Standard (All versions), SIMATIC S7-1500 Software Controller incl. F (All versions < V1.7.0), SIMATIC S7-1500 incl. F (All versions < V1.7.0), SIMATIC S7-300 incl. F and T (All versions < V3.X.16), SIMATIC S7-400 H V6 (All versions < V6.0.9), SIMATIC S7-400 PN/DP V6 Incl. F (All versions < V6.0.7), SIMATIC S7-400 PN/DP V7 Incl. F (All versions), SIMATIC S7-410 (All versions < V8.1), SIMATIC WinAC RTX (F) 2010 (All versions < SIMATIC WinAC RTX 2010 SP3), SINUMERIK 828D (All versions < V4.7 SP6 HF1), Softnet PROFINET IO for PC-based Windows systems (All versions). Responding to a PROFINET DCP request with a specially crafted PROFINET DCP packet could cause a Denial-of-Service condition of the requesting system. The security vulnerability could be exploited by an attacker located on the same Ethernet segment (OSI Layer 2) as the targeted device. Successful exploitation requires no user interaction or privileges and impacts the availability of core functionality of the affected device. A manual restart is required to recover the system. At the time of advisory publication no public exploitation of this security vulnerability is known. Siemens provides mitigations to resolve the security issue. PROFIBUS interfaces are not affected.

CVSS Scoring

CVSS Score

5.0

CVSS Vector


                                    CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2018-4843

WEB https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf

Advisory provided by GitHub Security Advisory Database. Published: May 13, 2022, Modified: May 13, 2022

References

https://cert-portal.siemens.com/productcert/pdf/ssa-592007.pdf

Published: 2018-03-20T14:00:00

Last Modified: 2024-08-05T05:18:26.626Z

Copied to clipboard!

CVE-2018-4843

Expert Analysis

CVSS Score

EPSS Score

Attack Vector Metrics

Impact Metrics

Description

Available Exploits

Related News

Affected Products

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

Affected Versions:

GitHub Security Advisories

Advisory Details

CVSS Scoring

CVSS Score

CVSS Vector

References

References

Request Analysis

What to expect

Request Received!