CVE-2018-4850

CVE-2018-4850

Vendor Siemens Ag
Product SIMATIC S7-400 (incl. F) CPU hardware version 4.0 and below, SIMATIC S7-400 (incl. F) CPU hardware version 5.0, SIMATIC S7-400H CPU hardware version 4.5 and below
Weakness CWE-20 · Input validation
Published May 16, 2018
Last update September 16, 2024
View on NVD All CVEs

CVSS base score

What the vulnerability does

01Description

A vulnerability has been identified in SIMATIC S7-400 (incl. F) CPU hardware version 4.0 and below (All versions), SIMATIC S7-400 (incl. F) CPU hardware version 5.0 (All firmware versions < V5.2), SIMATIC S7-400H CPU hardware version 4.5 and below (All versions). The affected CPUs improperly validate S7 communication packets which could cause a Denial-of-Service condition of the CPU. The CPU will remain in DEFECT mode until manual restart.

Key dates

02Disclosure timeline

May 16, 2018 CVE published
September 16, 2024 Record updated