Multiple Siemens Products Vulnerable to Denial-of-Service

An improper input validation vulnerability, CVE-2017-12741, exists in several Siemens products. If exploited, this vulnerability could allow an unsophisticated, remote threat actor to cause a denial-of-service condition by sending specially-crafted packets to UDP port 161, requiring the affected system to be manually restarted. The affected products are used in the following sectors: Commercial Facilities, Critical Manufacturing, Energy, Food, and Agriculture, and Water and Wastewater Systems. The NJCCIC recommends administrators of the affected products review Siemen’s security advisory for additional details and a full list of affected products, and immediately apply the available firmware update or employ the provided mitigations for unpatched products until patches are available. Updates are currently available for the following products: SIMATIC S7-200 Smart, SIMATIC S7-400 PN V6, EK-ERTEC 200P, SIMOTION D, SIMOTION C, SIMOTION P320-4, and SINAMICS G110M/G120(C/P/D).