Strix
26.1K

CVE-2021-37204

HIGHCVSS 7.5/10EPSS 2.15%

Last modified

CVE-2021-37204 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC Drive Controller family (All versions >= V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. EPSS estimates a 2.15% chance of exploitation in the next 30 days.

Description

A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC Drive Controller family (All versions >= V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V21.9), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions >= V21.9 < V21.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 Ready4Linux (All versions), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions < V4.5.0), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions >= V4.5.0 < V4.5.2), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V2.9.2), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions >= V2.9.2 < V2.9.4), SIMATIC S7-1500 Software Controller (All versions < V21.9), SIMATIC S7-1500 Software Controller (All versions >= V21.9 < V21.9.4), SIMATIC S7-PLCSIM Advanced (All versions < V4.0), SIMATIC S7-PLCSIM Advanced (All versions >= V4.0 < V4.0 SP1), SIPLUS TIM 1531 IRC (All versions < V2.3.6), TIM 1531 IRC (All versions < V2.3.6). An unauthenticated attacker could cause a denial-of-service condition in a PLC when sending specially prepared packet over port 102/tcp. A restart of the affected device is needed to restore normal operations.

Metrics

CVSS 3.1
7.5/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Probability
2.15%

79.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
SiemensSimatic Drive Controller Cpu 1504d Tf Firmware< 2.9.4
SiemensSimatic Drive Controller Cpu 1507d Tf Firmware< 2.9.4
SiemensSimatic Et 200sp Open Controller Cpu 1515sp Pc2 FirmwareAll versions
SiemensSimatic S7-Plcsim Advanced Firmware< 4.0
SiemensSimatic S7-Plcsim Advanced Firmware4.0
SiemensTim 1531 Irc Firmware>= 2.2
SiemensSimatic S7-1500 Software ControllerAll versions
SiemensSimatic S7-1200 Cpu 1211c Firmware>= 4.5.0, < 4.5.2
SiemensSimatic S7-1200 Cpu 1212c Firmware>= 4.5.0, < 4.5.2
SiemensSimatic S7-1200 Cpu 1212fc Firmware>= 4.5.0, < 4.5.2
SiemensSimatic S7-1200 Cpu 1214fc Firmware>= 4.5.0, < 4.5.2
SiemensSimatic S7-1200 Cpu 1214c Firmware>= 4.5.0, < 4.5.2
SiemensSimatic S7-1200 Cpu 1215fc Firmware>= 4.5.0, < 4.5.2
SiemensSimatic S7-1200 Cpu 1215c Firmware>= 4.5.0, < 4.5.2
SiemensSimatic S7-1200 Cpu 1217c Firmware>= 4.5.0, < 4.5.2
SiemensSimatic S7-1500 Cpu 1510sp-1 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1510sp Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1511-1 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1511c-1 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1511f-1 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1511t-1 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1511tf-1 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1512c-1 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1512sp-1 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1512spf-1 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1513-1 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1513f-1 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1513r-1 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu Cpu 1513prof-2 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu Cpu 1513pro-2 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1515-2 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1515f-2 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1515r-2 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1515t-2 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1515tf-2 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1516pro F Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1516pro-2 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1516-3 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1516f-3 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1516t-3 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1516tf-3 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1517-3 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1517f-3 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1517tf-3 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1518-4 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1518f-4 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1518hf-4 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1518t-4 Firmware>= 2.9.2, < 2.9.4
SiemensSimatic S7-1500 Cpu 1518tf-4 Firmware>= 2.9.2, < 2.9.4

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2021-37204?
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC Drive Controller family (All versions >= V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V21.9), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions >= V21.9 < V21.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 Ready4Linux (All versions), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions < V4.5.0), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions >= V4.5.0 < V4.5.2), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V2.9.2), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions >= V2.9.2 < V2.9.4), SIMATIC S7-1500 Software Controller (All versions < V21.9), SIMATIC S7-1500 Software Controller (All versions >= V21.9 < V21.9.4), SIMATIC S7-PLCSIM Advanced (All versions < V4.0), SIMATIC S7-PLCSIM Advanced (All versions >= V4.0 < V4.0 SP1), SIPLUS TIM 1531 IRC (All versions < V2.3.6), TIM 1531 IRC (All versions < V2.3.6). An unauthenticated attacker could cause a denial-of-service condition in a PLC when sending specially prepared packet over port 102/tcp. A restart of the affected device is needed to restore normal operations.
How severe is CVE-2021-37204?
CVE-2021-37204 has a CVSS score of 7.5/10 (HIGH severity). The EPSS model estimates a 2.15% probability of exploitation in the next 30 days.
How do I fix CVE-2021-37204?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2021-37204?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST