CVE-2016-2846

Siemens SIMATIC S7-1200 CPU devices before 4.0 allow remote attackers to bypass a "user program block" protection mechanism via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 55%
VendorProductVersion
siemenssimatic_s7_cpu_1200_firmware
𝑥
≤ 3.0.2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-833048.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-833048.pdf
https://ics-cert.us-cert.gov/advisories/ICSA-16-075-01
http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-833048.pdf
https://cert-portal.siemens.com/productcert/pdf/ssa-833048.pdf
https://ics-cert.us-cert.gov/advisories/ICSA-16-075-01