CVE-2016-8562

HIGH KEV

SIMATIC CP 1543-1 and SIPLUS NET CP 1543-1 < 2.0.28 - Denial of Service via SNMP Variable Write

Title source: llm

Exploitation Summary

CVE-2016-8562 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added March 3, 2022.

Description

A vulnerability has been identified in SIMATIC CP 1543-1 (All versions < V2.0.28), SIPLUS NET CP 1543-1 (All versions < V2.0.28). Under special conditions it was possible to write SNMP variables on port 161/udp which should be read-only and should only be configured with TIA-Portal. A write to these variables could reduce the availability or cause a denial-of-service.

References (5)

Core 5

Core References

Broken Link, Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/94436

Third Party Advisory, US Government Resource x_refsource_misc

https://ics-cert.us-cert.gov/advisories/ICSA-16-327-01

Broken Link, Patch, Vendor Advisory x_refsource_confirm

http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-672373.pdf

Vendor Advisory x_refsource_confirm

https://cert-portal.siemens.com/productcert/pdf/ssa-672373.pdf

Third Party Advisory, US Government Resource

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2016-8562

Scores

CVSS v3 7.5

EPSS 0.1855

EPSS Percentile 95.4%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation active

Automatable no

Technical Impact total

Details

CISA KEV 2022-03-03

VulnCheck KEV 2022-03-03

InTheWild.io 2022-03-03

ENISA EUVD EUVD-2016-9410

Status published

Products (2)

siemens/simatic_cp_1543-1_firmware < 2.0.28

siemens/siplus_net_cp_1543-1_firmware < 2.0.28

Published Nov 18, 2016

KEV Added Mar 03, 2022

Tracked Since Feb 18, 2026