← Back to home
ICSA-18-317-02  ·  Published 2023-05-09  ·  View on CISA ICS-CERT ↗

Siemens S7-400 CPUs (Update B)

CVSS 8.2 HIGH

CVEs (2)

Remediations

  • Restrict network access to affected devices; restrict network access to port 102/tcp for Ethernet interfaces
  • Activate Field Interface Security in PCS 7 V9.0, and use a SIMATIC/SIPLUS CP443-1 Adv. to communicate with ES/OS
  • Currently no fix is planned
  • Update to V7.0.3 or later version
  • Update to V6.0.9 or later version
  • Update to V8.2.1 or later version
  • CVE-2018-16557: Configure protection level 3 (read/write protection)

Affected Vendors

Siemens

Affected Products (21)

Siemens · SIMATIC S7-400 CPU 412-1 DP V7 (6ES7412-1XJ07-0AB0) vers:all/*
Siemens · SIMATIC S7-400 CPU 412-2 DP V7 (6ES7412-2XK07-0AB0) vers:all/*
Siemens · SIMATIC S7-400 CPU 414-2 DP V7 (6ES7414-2XL07-0AB0) vers:all/*
Siemens · SIMATIC S7-400 CPU 414-3 DP V7 (6ES7414-3XM07-0AB0) vers:all/*
Siemens · SIMATIC S7-400 CPU 414-3 PN/DP V7 (6ES7414-3EM07-0AB0) vers:all/<V7.0.3
Siemens · SIMATIC S7-400 CPU 414F-3 PN/DP V7 (6ES7414-3FM07-0AB0) vers:all/<V7.0.3
Siemens · SIMATIC S7-400 CPU 416-2 DP V7 (6ES7416-2XP07-0AB0) vers:all/*
Siemens · SIMATIC S7-400 CPU 416-3 DP V7 (6ES7416-3XS07-0AB0) vers:all/*
Siemens · SIMATIC S7-400 CPU 416-3 PN/DP V7 (6ES7416-3ES07-0AB0) vers:all/<V7.0.3
Siemens · SIMATIC S7-400 CPU 416F-2 DP V7 (6ES7416-2FP07-0AB0) vers:all/*
Siemens · SIMATIC S7-400 CPU 416F-3 PN/DP V7 (6ES7416-3FS07-0AB0) vers:all/<V7.0.3
Siemens · SIMATIC S7-400 CPU 417-4 DP V7 (6ES7417-4XT07-0AB0) vers:all/*
Siemens · SIMATIC S7-400 CPU 412-2 PN V7 (6ES7412-2EK07-0AB0) vers:all/<V7.0.3
Siemens · SIMATIC S7-400 H V4.5 and below CPU family (incl. SIPLUS variants) vers:all/*
Siemens · SIMATIC S7-400 H V6 CPU family (incl. SIPLUS variants) vers:all/<V6.0.9
Siemens · SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants) vers:all/*
Siemens · SIMATIC S7-410 CPU family (incl. SIPLUS variants) vers:all/<V8.2.1
Siemens · SIPLUS S7-400 CPU 414-3 PN/DP V7 (6AG1414-3EM07-7AB0) vers:all/<V7.0.3
Siemens · SIPLUS S7-400 CPU 416-3 PN/DP V7 (6AG1416-3ES07-7AB0) vers:all/<V7.0.3
Siemens · SIPLUS S7-400 CPU 416-3 V7 (6AG1416-3XS07-7AB0) vers:all/*
Siemens · SIPLUS S7-400 CPU 417-4 V7 (6AG1417-4XT07-7AB0) vers:all/*

Affected Sectors

Multiple

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more