CVE-2017-12741

Description

Specially crafted packets sent to port 161/udp could cause a denial of service condition. The affected devices must be restarted manually.

Category

8.7
CVSS
Severity: High
CVSS 4.0 •
CVSS 3.1 •
CVSS 3.0 •
CVSS 2.0 •
EPSS 3.94% Top 15%
Affected: Siemens Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller
Affected: Siemens Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200
Affected: Siemens Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P
Affected: Siemens SIMATIC Compact Field Unit
Affected: Siemens SIMATIC ET 200AL IM 157-1 PN
Affected: Siemens SIMATIC ET 200M (incl. SIPLUS variants)
Affected: Siemens SIMATIC ET 200MP IM 155-5 PN BA
Affected: Siemens SIMATIC ET 200MP IM 155-5 PN HF
Affected: Siemens SIMATIC ET 200MP IM 155-5 PN ST
Affected: Siemens SIMATIC ET 200pro IM 154-3 PN HF
Affected: Siemens SIMATIC ET 200pro IM 154-4 PN HF
Affected: Siemens SIMATIC ET 200SP IM 155-6 PN BA
Affected: Siemens SIMATIC ET 200SP IM 155-6 PN HA (incl. SIPLUS variants)
Affected: Siemens SIMATIC ET 200SP IM 155-6 PN HF
Affected: Siemens SIMATIC ET 200SP IM 155-6 PN HS
Affected: Siemens SIMATIC ET 200SP IM 155-6 PN ST
Affected: Siemens SIMATIC ET 200SP IM 155-6 PN ST
Affected: Siemens SIMATIC ET 200SP IM 155-6 PN ST BA
Affected: Siemens SIMATIC ET 200SP IM 155-6 PN ST BA
Affected: Siemens SIMATIC ET200ecoPN, 16DI, DC24V, 8xM12
Affected: Siemens SIMATIC ET200ecoPN, 16DO DC24V/1,3A, 8xM12
Affected: Siemens SIMATIC ET200ecoPN, 4AO U/I 4xM12
Affected: Siemens SIMATIC ET200ecoPN, 8 DIO, DC24V/1,3A, 8xM12
Affected: Siemens SIMATIC ET200ecoPN, 8 DO, DC24V/2A, 8xM12
Affected: Siemens SIMATIC ET200ecoPN, 8AI RTD/TC 8xM12
Affected: Siemens SIMATIC ET200ecoPN, 8AI; 4 U/I; 4 RTD/TC 8xM12
Affected: Siemens SIMATIC ET200ecoPN, 8DI, DC24V, 4xM12
Affected: Siemens SIMATIC ET200ecoPN, 8DI, DC24V, 8xM12
Affected: Siemens SIMATIC ET200ecoPN, 8DO, DC24V/0,5A, 4xM12
Affected: Siemens SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 4xM12
Affected: Siemens SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 8xM12
Affected: Siemens SIMATIC ET200ecoPN: IO-Link Master
Affected: Siemens SIMATIC ET200S (incl. SIPLUS variants)
Affected: Siemens SIMATIC PN/PN Coupler (incl. SIPLUS NET variants)
Affected: Siemens SIMATIC S7-1200 CPU family (incl. SIPLUS variants)
Affected: Siemens SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants)
Affected: Siemens SIMATIC S7-1500 Software Controller
Affected: Siemens SIMATIC S7-200 SMART
Affected: Siemens SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants)
Affected: Siemens SIMATIC S7-400 H V6 and below CPU family (incl. SIPLUS variants)
Affected: Siemens SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants)
Affected: Siemens SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants)
Affected: Siemens SIMATIC S7-410 V8 CPU family (incl. SIPLUS variants)
Affected: Siemens SIMATIC TDC CP51M1
Affected: Siemens SIMATIC TDC CPU555
Affected: Siemens SIMATIC WinAC RTX 2010
Affected: Siemens SIMATIC WinAC RTX F 2010
Affected: Siemens SIMOCODE pro V PROFINET (incl. SIPLUS variants)
Affected: Siemens SIMOTION C
Affected: Siemens SIMOTION D
Affected: Siemens SIMOTION D4xx V4.4 for SINAMICS SM150i-2 w. PROFINET (incl. SIPLUS variants)
Affected: Siemens SIMOTION P V4.4 and V4.5
Affected: Siemens SIMOTION P V5
Affected: Siemens SINAMICS DCM w. PN
Affected: Siemens SINAMICS DCP w. PN
Affected: Siemens SINAMICS G110M w. PN
Affected: Siemens SINAMICS G120(C/P/D) w. PN (incl. SIPLUS variants)
Affected: Siemens SINAMICS G130 V4.7 w. PN
Affected: Siemens SINAMICS G130 V4.8 w. PN
Affected: Siemens SINAMICS G150 V4.7 w. PN
Affected: Siemens SINAMICS G150 V4.8 w. PN
Affected: Siemens SINAMICS GH150 V4.7 w. PROFINET
Affected: Siemens SINAMICS GL150 V4.7 w. PROFINET
Affected: Siemens SINAMICS GM150 V4.7 w. PROFINET
Affected: Siemens SINAMICS S110 w. PN
Affected: Siemens SINAMICS S120 prior to V4.7 w. PN (incl. SIPLUS variants)
Affected: Siemens SINAMICS S120 V4.7 SP1 w. PN (incl. SIPLUS variants)
Affected: Siemens SINAMICS S120 V4.7 w. PN (incl. SIPLUS variants)
Affected: Siemens SINAMICS S120 V4.8 w. PN (incl. SIPLUS variants)
Affected: Siemens SINAMICS S150 V4.7 w. PN
Affected: Siemens SINAMICS S150 V4.8 w. PN
Affected: Siemens SINAMICS SL150 V4.7.0 w. PROFINET
Affected: Siemens SINAMICS SL150 V4.7.4 w. PROFINET
Affected: Siemens SINAMICS SL150 V4.7.5 w. PROFINET
Affected: Siemens SINAMICS SM120 V4.7 w. PROFINET
Affected: Siemens SINAMICS V90 w. PN
Affected: Siemens SINUMERIK 840D sl
Affected: Siemens SIPLUS ET 200MP IM 155-5 PN HF
Affected: Siemens SIPLUS ET 200MP IM 155-5 PN HF
Affected: Siemens SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL
Affected: Siemens SIPLUS ET 200MP IM 155-5 PN ST
Affected: Siemens SIPLUS ET 200MP IM 155-5 PN ST TX RAIL
Affected: Siemens SIPLUS ET 200SP IM 155-6 PN HF
Affected: Siemens SIPLUS ET 200SP IM 155-6 PN HF
Affected: Siemens SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL
Affected: Siemens SIPLUS ET 200SP IM 155-6 PN ST
Affected: Siemens SIPLUS ET 200SP IM 155-6 PN ST
Affected: Siemens SIPLUS ET 200SP IM 155-6 PN ST BA
Affected: Siemens SIPLUS ET 200SP IM 155-6 PN ST BA
Affected: Siemens SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL
Affected: Siemens SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL
Affected: Siemens SIPLUS ET 200SP IM 155-6 PN ST TX RAIL
Affected: Siemens SIPLUS ET 200SP IM 155-6 PN ST TX RAIL
Affected: Siemens SIRIUS Soft Starter 3RW44 PN
Published at:
Updated at:

References

Link Tags
https://www.securityfocus.com/bid/101964 vdb entry
https://cert-portal.siemens.com/productcert/pdf/ssa-546832.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-346262.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-141614.pdf
https://cert-portal.siemens.com/productcert/html/ssa-346262.html
https://cert-portal.siemens.com/productcert/html/ssa-546832.html
https://cert-portal.siemens.com/productcert/html/ssa-141614.html

Frequently Asked Questions

What is the severity of CVE-2017-12741?
CVE-2017-12741 has been scored as a high severity vulnerability.
How to fix CVE-2017-12741?
To fix CVE-2017-12741, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2017-12741 being actively exploited in the wild?
It is possible that CVE-2017-12741 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~4% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2017-12741?
CVE-2017-12741 affects Siemens Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller, Siemens Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, Siemens Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P, Siemens SIMATIC Compact Field Unit, Siemens SIMATIC ET 200AL IM 157-1 PN, Siemens SIMATIC ET 200M (incl. SIPLUS variants), Siemens SIMATIC ET 200MP IM 155-5 PN BA, Siemens SIMATIC ET 200MP IM 155-5 PN HF, Siemens SIMATIC ET 200MP IM 155-5 PN ST, Siemens SIMATIC ET 200pro IM 154-3 PN HF, Siemens SIMATIC ET 200pro IM 154-4 PN HF, Siemens SIMATIC ET 200SP IM 155-6 PN BA, Siemens SIMATIC ET 200SP IM 155-6 PN HA (incl. SIPLUS variants), Siemens SIMATIC ET 200SP IM 155-6 PN HF, Siemens SIMATIC ET 200SP IM 155-6 PN HS, Siemens SIMATIC ET 200SP IM 155-6 PN ST, Siemens SIMATIC ET 200SP IM 155-6 PN ST, Siemens SIMATIC ET 200SP IM 155-6 PN ST BA, Siemens SIMATIC ET 200SP IM 155-6 PN ST BA, Siemens SIMATIC ET200ecoPN, 16DI, DC24V, 8xM12, Siemens SIMATIC ET200ecoPN, 16DO DC24V/1,3A, 8xM12, Siemens SIMATIC ET200ecoPN, 4AO U/I 4xM12, Siemens SIMATIC ET200ecoPN, 8 DIO, DC24V/1,3A, 8xM12, Siemens SIMATIC ET200ecoPN, 8 DO, DC24V/2A, 8xM12, Siemens SIMATIC ET200ecoPN, 8AI RTD/TC 8xM12, Siemens SIMATIC ET200ecoPN, 8AI; 4 U/I; 4 RTD/TC 8xM12, Siemens SIMATIC ET200ecoPN, 8DI, DC24V, 4xM12, Siemens SIMATIC ET200ecoPN, 8DI, DC24V, 8xM12, Siemens SIMATIC ET200ecoPN, 8DO, DC24V/0,5A, 4xM12, Siemens SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 4xM12, Siemens SIMATIC ET200ecoPN, 8DO, DC24V/1,3A, 8xM12, Siemens SIMATIC ET200ecoPN: IO-Link Master, Siemens SIMATIC ET200S (incl. SIPLUS variants), Siemens SIMATIC PN/PN Coupler (incl. SIPLUS NET variants), Siemens SIMATIC S7-1200 CPU family (incl. SIPLUS variants), Siemens SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants), Siemens SIMATIC S7-1500 Software Controller, Siemens SIMATIC S7-200 SMART, Siemens SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants), Siemens SIMATIC S7-400 H V6 and below CPU family (incl. SIPLUS variants), Siemens SIMATIC S7-400 PN/DP V6 and below CPU family (incl. SIPLUS variants), Siemens SIMATIC S7-400 PN/DP V7 CPU family (incl. SIPLUS variants), Siemens SIMATIC S7-410 V8 CPU family (incl. SIPLUS variants), Siemens SIMATIC TDC CP51M1, Siemens SIMATIC TDC CPU555, Siemens SIMATIC WinAC RTX 2010, Siemens SIMATIC WinAC RTX F 2010, Siemens SIMOCODE pro V PROFINET (incl. SIPLUS variants), Siemens SIMOTION C, Siemens SIMOTION D, Siemens SIMOTION D4xx V4.4 for SINAMICS SM150i-2 w. PROFINET (incl. SIPLUS variants), Siemens SIMOTION P V4.4 and V4.5, Siemens SIMOTION P V5, Siemens SINAMICS DCM w. PN, Siemens SINAMICS DCP w. PN, Siemens SINAMICS G110M w. PN, Siemens SINAMICS G120(C/P/D) w. PN (incl. SIPLUS variants), Siemens SINAMICS G130 V4.7 w. PN, Siemens SINAMICS G130 V4.8 w. PN, Siemens SINAMICS G150 V4.7 w. PN, Siemens SINAMICS G150 V4.8 w. PN, Siemens SINAMICS GH150 V4.7 w. PROFINET, Siemens SINAMICS GL150 V4.7 w. PROFINET, Siemens SINAMICS GM150 V4.7 w. PROFINET, Siemens SINAMICS S110 w. PN, Siemens SINAMICS S120 prior to V4.7 w. PN (incl. SIPLUS variants), Siemens SINAMICS S120 V4.7 SP1 w. PN (incl. SIPLUS variants), Siemens SINAMICS S120 V4.7 w. PN (incl. SIPLUS variants), Siemens SINAMICS S120 V4.8 w. PN (incl. SIPLUS variants), Siemens SINAMICS S150 V4.7 w. PN, Siemens SINAMICS S150 V4.8 w. PN, Siemens SINAMICS SL150 V4.7.0 w. PROFINET, Siemens SINAMICS SL150 V4.7.4 w. PROFINET, Siemens SINAMICS SL150 V4.7.5 w. PROFINET, Siemens SINAMICS SM120 V4.7 w. PROFINET, Siemens SINAMICS V90 w. PN, Siemens SINUMERIK 840D sl, Siemens SIPLUS ET 200MP IM 155-5 PN HF, Siemens SIPLUS ET 200MP IM 155-5 PN HF, Siemens SIPLUS ET 200MP IM 155-5 PN HF T1 RAIL, Siemens SIPLUS ET 200MP IM 155-5 PN ST, Siemens SIPLUS ET 200MP IM 155-5 PN ST TX RAIL, Siemens SIPLUS ET 200SP IM 155-6 PN HF, Siemens SIPLUS ET 200SP IM 155-6 PN HF, Siemens SIPLUS ET 200SP IM 155-6 PN HF T1 RAIL, Siemens SIPLUS ET 200SP IM 155-6 PN ST, Siemens SIPLUS ET 200SP IM 155-6 PN ST, Siemens SIPLUS ET 200SP IM 155-6 PN ST BA, Siemens SIPLUS ET 200SP IM 155-6 PN ST BA, Siemens SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL, Siemens SIPLUS ET 200SP IM 155-6 PN ST BA TX RAIL, Siemens SIPLUS ET 200SP IM 155-6 PN ST TX RAIL, Siemens SIPLUS ET 200SP IM 155-6 PN ST TX RAIL, Siemens SIRIUS Soft Starter 3RW44 PN.
This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.
© 2025 Under My Watch. All Rights Reserved.