Vulnerabilities > Siemens > Simatic S7 1500 CPU Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-04-12 CVE-2022-25622 Resource Exhaustion vulnerability in Siemens products
The PROFINET (PNIO) stack, when integrated with the Interniche IP stack, improperly handles internal resources for TCP segments where the minimum TCP-Header length is less than defined. This could allow an attacker to create a denial of service condition for TCP services on affected devices by sending specially crafted TCP segments.
network
low complexity
siemens CWE-400
7.5
7.5
2016-02-08 CVE-2016-2201 Improper Input Validation vulnerability in Siemens Simatic S7-1500 CPU Firmware 1.8.2
Siemens SIMATIC S7-1500 CPU devices before 1.8.3 allow remote attackers to bypass a replay protection mechanism via packets on TCP port 102.
network
low complexity
siemens CWE-20
5.3
5.3
2016-02-08 CVE-2016-2200 Improper Input Validation vulnerability in Siemens Simatic S7-1500 CPU Firmware 1.5.1/1.6/1.8.2
Siemens SIMATIC S7-1500 CPU devices before 1.8.3 allow remote attackers to cause a denial of service (STOP mode transition) via crafted packets on TCP port 102.
network
low complexity
siemens CWE-20
7.5
7.5