Back to KEVs

CVE-2016-8562

A vulnerability has been identified in SIMATIC CP 1543-1 (All versions < V2.0.28), SIPLUS NET CP 1543-1 (All versions < V2.0.28). Under special...

Basic Information

CVE State
PUBLISHED
Reserved Date
October 07, 2016
Published Date
November 18, 2016
Last Updated
February 04, 2025
Vendor
Siemens
Product
SIMATIC CP 1543-1, SIPLUS NET CP 1543-1
Description
A vulnerability has been identified in SIMATIC CP 1543-1 (All versions < V2.0.28), SIPLUS NET CP 1543-1 (All versions < V2.0.28). Under special conditions it was possible to write SNMP variables on port 161/udp which should be read-only and should only be configured with TIA-Portal. A write to these variables could reduce the availability or cause a denial-of-service.
Tags
cisa nessus_scanner

CVSS Scores

CVSS v3.1

7.5 - HIGH

Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2.0

3.5

Vector: AV:N/AC:M/Au:S/C:N/I:N/A:P

SSVC Information

Exploitation
active
Technical Impact
total

Exploit Status

Exploited in the Wild
Yes (2022-03-03 00:00:00 UTC) Source

References

http://www.securityfocus.com/bid/94436 https://ics-cert.us-cert.gov/advisories/ICSA-16-327-01 http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-672373.pdf https://cert-portal.siemens.com/productcert/pdf/ssa-672373.pdf

Known Exploited Vulnerability Information

Source Added Date
CISA 2022-03-03 00:00:00 UTC

Scanner Integrations

Scanner URL Date Detected
Nessus https://www.tenable.com/plugins/nessus/500605 2025-06-02 13:58:47 UTC

Timeline

  • CVE ID Reserved

  • CVE Published to Public

  • Added to KEVIntel

  • Detected by Nessus