CVE-2017-12741

HIGH

SIMATIC S7-200 Firmware < 2.03.01 - Denial of Service via Crafted UDP Packets

Title source: llm
STIX 2.1

Description

Specially crafted packets sent to port 161/udp could cause a denial of service condition. The affected devices must be restarted manually.

References (7)

Core 7

Scores

CVSS v3 7.5
EPSS 0.0526
EPSS Percentile 90.1%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-400
Status published
Products (50)
Siemens/Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller All versions < V4.1.1 Patch 05
Siemens/Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 All versions < V4.5
Siemens/Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P All versions < V4.5
siemens/dk_standard_ethernet_controller_firmware
siemens/ek-ertec_200p_firmware < 4.5
siemens/ek-ertec_200pn_io_firmware
Siemens/SIMATIC Compact Field Unit All versions
Siemens/SIMATIC ET 200AL IM 157-1 PN < V1.0.2
Siemens/SIMATIC ET 200M (incl. SIPLUS variants) All versions
Siemens/SIMATIC ET 200MP IM 155-5 PN BA < V4.0.2
... and 40 more
Published Dec 26, 2017
Tracked Since Feb 18, 2026