Vulnerability in Siemens Simatic Drive Controller Family
CVE-2019-10943
A vulnerability has been identified in SIMATIC Drive Controller family (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS var…
EPSS: 0.001 (29.6th percentile) — read the EPSS interpretation.
Affected products
- Siemens Simatic Drive Controller Family — versions All versions
- Siemens Simatic Et 200sp Open Controller Cpu 1515sp Pc2 (Incl. Siplus Variants) — versions All versions >= V20.8, All versions < V20.8
- Siemens Simatic Et 200sp Open Controller Cpu 1515sp Pc (Incl. Siplus Variants) — versions All versions
- Siemens Simatic S7-1200 Cpu Family (Incl. Siplus Variants) — versions All versions >= V4.4.0, All versions < V4.4.0
- Siemens Simatic S7-1500 Cpu Family (Incl. Related Et200 Cpus And Siplus Variants) — versions All versions >= V2.8.1, All versions < V2.8.1
- Siemens Simatic S7-1500 Software Controller — versions All versions >= V20.8, All versions < V20.8
- Siemens Simatic S7-plcsim Advanced — versions All versions >= V3.0, All versions < V3.0
Weakness classification (CWE)
Public proof-of-concept exploits
References
- cert-portal.siemens.com/productcert/pdf/ssa-232418.pdf (x_refsource_MISC)
Frequently asked questions
- What is CVE-2019-10943?
- CVE-2019-10943 is a vulnerability in Siemens Simatic Drive Controller Family, classified under CWE-353. Published 2019-08-13.
- Is CVE-2019-10943 known to be exploited?
- 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.