SiemensKTKSIMATIC和SINMICS不受控制资源耗用

高位可租OT安全插件ID 500363

简表

远程OT资产受脆弱性影响

描述性

PROFINETIO开发/评价包:EK-ERTEC200全版;PROFINETIO开发/评价包:EK-ERTEC200P全版;KTKAT530S全版;SIDORATD430W全版;SIDORATE530S全版;SIDOORATE531S全版;SIMATICET200SP开源CPUCCPU1515SPPCSIPLUS变异式)(所有版本 < V2.0,SIMATICET200SP开放控制器CPU1515SPPC2SIPLUS变式)(所有版本 < V2.0,SIMATICET200LIPN,CM8IO-Link,M12-LLLLLSIPLUS变异式所有版本++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++SIPLUS变异版SIMATIC ET200SPIM155-6PN高频SIPLUS变异式ss/simatic ET200SPIMATICIP155-6PN2HFSIPLUS变异版SIPLUS变异版(所有版本++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++SIPLUSNET变异式SIPLUS变量)(所有版本 < V4.4.0/SIMATICS7-1500CPU家族ET200CPUs和SIPLUS相关变异版数(所有版本 < V2.0/SIMATICS7-1500软件控制器(所有版本 < V2.0/SIMATICS7-300CPUet200CPUs和SIPLUS变量全版SIMATICS7-400HV6CPUSIPLUS变异版S7-400PN/DPV7CPUSIPLUS变异版SIMATICS7-410V10CPUSIPLUS变异版SIMATICS7-410V8CPUSIPLUS变异版(全版)、SIMITIC CP51M1版(全版)、SIMITIC TDCCPU555版(全版)、SIMATIC WinAC RTX2010版(全版)、SIMATIC WINAC RTX2010版(全版)、SINAMICS/G控制单元PROFINET(所有版本)Interniche基础TCP栈可被迫为每进包打费用非常昂贵的电话,可能导致拒绝服务

插件只对Tenable.ot工作
网站s/www.yyueer.com/products/tenable-ot获取更多信息

求解

下文原由网络安全基础设施安全局创建原创可见于CISA.gov

西门子推荐应用更新

SIMATICET200SP开关CPU 1515SPPCSIPLUS变量:更新至v2.1.7
SIMATICET200SP开关CPU 1515SPPC2SIPLUS变异式:更新至v20.8
SIMATICS7-1500CPU家族ET200相关CPUs和SIPLUS变异式:更新至v2.8
SIMATICS7-1500软件控制器:更新v20.8
SIMATICS7-1200CPU家族SIPLUS变异式:更新至v4.5.2或后

SIMATICS7-410CPU家庭SIPLUS变异式:更新至v10.1.1或后
用户应禁用epernet端口CPU并使用通信模块(像CP)代之以通信

西门子尚未发现任何具体的缓冲或变通方法,并推荐遵循他们的一般安全建议西门子强烈建议保护网络访问带适当机制的设备iemens建议环境配置, 按照Siemens工业安全操作指南并遵循产品手册中的建议

用户可参考HTML或CSAF格式Siemens安全咨询SSA-593272

并见

https://cert-portal.siemens.com/productcert/pdf/ssa-593272.pdf

https://www.cisa.gov/news-events/ics-advisories/icsa-20-105-08

插件细节

严重性 :高位

身份证 :500363

版本化 :1.4

类型 :远程

家庭问题 :可调用.ot

发布 :2/7/2022

更新 :7/24/2023

风险信息

VPR

风险因子 :低频

分数 :3.6

CVSS v2

风险因子 :中度

基础评分 :5

向量 :CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS评分源 :CVE2019-300

CVSSv3

风险因子 :高位

基础评分 :7.5

向量 :CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

漏洞信息

CPE系统 :cpe:/o:siemens:simatic_et200mp_im155-5_pn_hf_firmware,cpe:/o:siemens:simatic_et200sp_im155-6_mf_hf_firmware,cpe:/o:siemens:simatic_et200sp_im155-6_pn%2f2_hf_firmware:4,cpe:/o:siemens:simatic_et200sp_im155-6_pn_ha_firmware,cpe:/o:siemens:simatic_et200sp_im155-6_pn_hf_firmware,cpe:/o:siemens:simatic_et_200sp_open_controller_cpu_1515sp_pc2_firmware,cpe:/o:siemens:simatic_et_200sp_open_controller_cpu_1515sp_pc_firmware,cpe:/o:siemens:simatic_s7-1500_cpu_1511-1_pn_firmware,cpe:/o:siemens:simatic_s7-1500_cpu_1511f-1_pn_firmware,cpe:/o:siemens:simatic_s7-1500_cpu_1513-1_pn_firmware,cpe:/o:siemens:simatic_s7-1500_cpu_1513f-1_pn_firmware,cpe:/o:siemens:simatic_s7-1500_cpu_1515-2_pn_firmware,cpe:/o:siemens:simatic_s7-1500_cpu_1515f-2_pn_firmware,cpe:/o:siemens:simatic_s7-1500_cpu_1516-3_pn%2fdp_firmware,cpe:/o:siemens:simatic_s7-1500_cpu_1516f-3_pn%2fdp_firmware,cpe:/o:siemens:simatic_s7-1500_cpu_1517-3_pn%2fdp_firmware,cpe:/o:siemens:simatic_s7-1500_cpu_1517f-3_pn%2fdp_firmware,cpe:/o:siemens:simatic_s7-1500_cpu_1518-4_pn%2fdp_firmware,cpe:/o:siemens:simatic_s7-1500_cpu_1518f-4_pn%2fdp_firmware,cpe:/o:siemens:simatic_s7-300_cpu_firmware,cpe:/o:siemens:simatic_s7-400_pn%2fdp_firmware

需要kb项 :Tenable.ot/Siemens

开发易斯 :无已知利用

补丁发布日期 :4/14/2020

漏洞发布日期 :4/14/2020

参考信息

CVE系统 :CVE2019-300

CWE系统 :400