Simatic S7 1500 Firmware

DATE	CVE	VULNERABILITY TITLE	RISK
2017-05-11	CVE-2017-2681	Resource Exhaustion vulnerability in Siemens products Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. low complexity siemens CWE-400	6.5
2017-05-11	CVE-2017-2680	Resource Exhaustion vulnerability in Siemens products Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment (Layer 2). low complexity siemens CWE-400	6.5
2014-04-07	CVE-2014-0160	Out-of-bounds Read vulnerability in multiple products The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug. network low complexity openssl filezilla-project siemens intellian mitel opensuse canonical fedoraproject redhat debian ricon broadcom splunk CWE-125	7.5