CVE-2022-38465

{"id": "CVE-2022-38465", "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}, {"type": "Secondary", "source": "productcert@siemens.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.3, "attackVector": "LOCAL", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "impactScore": 6.0, "exploitabilityScore": 2.5}]}, "published": "2022-10-11T11:15:10.357", "references": [{"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-568427.pdf", "tags": ["Vendor Advisory"], "source": "productcert@siemens.com"}, {"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-568428.pdf", "source": "productcert@siemens.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "productcert@siemens.com", "description": [{"lang": "en", "value": "CWE-522"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V21.9), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions < V4.5.0), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions < V2.9.2), SIMATIC S7-1500 Software Controller (All versions < V21.9), SIMATIC S7-PLCSIM Advanced (All versions < V4.0), SINUMERIK MC (All versions < V6.21), SINUMERIK ONE (All versions < V6.21). Affected products protect the built-in global private key in a way that cannot be considered sufficient any longer. The key is used for the legacy protection of confidential configuration data and the legacy PG/PC and HMI communication.\r\n\r\nThis could allow attackers to discover the private key of a CPU product family by an offline attack against a single CPU of the family. Attackers could then use this knowledge to extract confidential configuration data from projects that are protected by that key or to perform attacks against legacy PG/PC and HMI communication."}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad en la familia de controladores de accionamiento SIMATIC (todas las versiones anteriores a V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. variantes SIPLUS) (todas las versiones), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. variantes SIPLUS) (todas las versiones anteriores a V21. 9), familia de CPUs SIMATIC S7-1200 (incl. variantes SIPLUS) (Todas las versiones anteriores a V4.5.0), familia de CPUs SIMATIC S7-1500 (incl. CPUs ET200 relacionadas y variantes SIPLUS) (Todas las versiones anteriores a V2.9.2), SIMATIC S7-1500 Software Controller (Todas las versiones anteriores a V21.9), SIMATIC S7-PLCSIM Advanced (Todas las versiones anteriores a V4.0). Los productos afectados protegen la clave privada global incorporada de un modo que ya no puede considerarse suficiente. La clave es usada para la protecci\u00f3n heredada de los datos de configuraci\u00f3n confidenciales y la comunicaci\u00f3n heredada PG/PC y HMI. Esto podr\u00eda permitir a atacantes detectar la clave privada de una familia de productos de CPU mediante un ataque fuera de l\u00ednea contra una sola CPU de la familia. Los atacantes podr\u00edan entonces usar este conocimiento para extraer datos de configuraci\u00f3n confidenciales de los proyectos que est\u00e1n protegidos por esa clave o para llevar a cabo ataques contra la comunicaci\u00f3n PG/PC y HMI heredada"}], "lastModified": "2023-11-07T03:50:08.877", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_et_200_sp_open_controller_cpu_1515sp_pc2_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0CD32994-47A3-4850-ABC7-FD80353E6063", "versionEndExcluding": "21.9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_et_200_open_controller_cpu_1515sp_pc2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AF0944C4-8FD7-4B00-85B7-6DB430EAA884"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_et_200_sp_open_controller_cpu_1515sp_pc_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B96409C7-3198-406D-9BC6-E8B729757A72"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_et_200_open_controller_cpu_1515sp_pc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1E9BE617-A91C-401C-A5CE-88FB06133AF7"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_drive_controller_cpu_1504d_tf_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "604B7AFC-6242-4273-A228-8F158F955058", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_drive_controller_cpu_1504d_tf:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D3A69023-E9FF-4947-81D2-5374F0D17E02"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_drive_controller_cpu_1507d_tf_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D95A4823-1E5E-44A5-9EED-3CB108B711BE", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_drive_controller_cpu_1507d_tf:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F6D49FAA-BB5E-4B55-9C11-B840676FEC97"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1211c_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F090EF99-203C-4411-B64F-B14EF05F7824", "versionEndExcluding": "4.5.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1211c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F3984C91-A38D-4498-9505-4C7894502617"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1212c_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7CAE3892-EFC5-467F-9A37-70AF97998BDD", "versionEndExcluding": "4.5.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1212c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F6708491-A3CD-4100-BF43-74FB421E7B03"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1212fc_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C8C8B48B-652A-40D0-8D88-CB91E5E85DA4", "versionEndExcluding": "4.5.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1212fc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1E75190A-198B-4A8D-9E16-27665A4168D8"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1214fc_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5EFD145F-F918-4C0D-B3F1-D9583229ED7E", "versionEndExcluding": "4.5.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1214fc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D89586C8-CD63-457B-8685-5C50D0592D64"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1214c_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A5008384-75BB-4A46-ACE0-7FA260E72C73", "versionEndExcluding": "4.5.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1214c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AAD6D800-87DE-4C8A-B60B-C5AD196D5F54"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1215fc_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "42D361D1-8B59-4003-9033-4C1425CC4104", "versionEndExcluding": "4.5.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1215fc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C0155A47-734B-4C2C-8A8A-D6B88507DFB3"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1215c_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84C133CD-6944-4B80-B2A9-F5F2B6BA9E79", "versionEndExcluding": "4.5.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1215c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F38719F3-6D7A-4200-9146-5C4AFABEB787"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1200_cpu_12_1217c_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "97E9A661-7AC3-43B9-A2A1-8508DAF15D6D", "versionEndExcluding": "4.5.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1200_cpu_12_1217c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5DE62DBA-6865-4D1B-8651-90056C089909"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1510sp-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A19F329-2F5C-4A4B-83DB-C12020378F6D", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1510sp-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "38232B80-9EDE-4BE4-BD4C-0E84B18EC39A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1510sp_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CBEAAD76-4CB4-4A05-A2B1-C489AD32E30A", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1510sp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9D7ECCF7-E3EE-46A0-BC03-51AAEBCD03EE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1511-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "553CB199-D592-4B87-A61C-9E903BE21250", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1511-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D8B9B76B-D790-44B9-AC2A-7E0719C4D56C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_151511c-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "34623019-4E1E-40F9-BC43-0008758BE35C", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_151511c-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DA60D4EE-EB60-4B06-B48A-0859999F9F83"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_151511f-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "153B1C68-9B90-4E76-B814-3307E57D86AF", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_151511f-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "448DD8BF-6DE3-4B05-A396-6EB1C4FE7968"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1511t-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "35ED6E18-CF9D-4CF7-A73F-A7B29147028E", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1511t-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DBA72709-BC38-425F-8EBD-FE16C5A86140"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1511tf-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D2262D53-B539-45EA-98E0-1E2B1C4B1A20", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1511tf-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6E76D7BD-0529-4A51-9866-8AF5241A5184"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1512c-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D7933577-8564-4DE4-AAED-62F87E3C3353"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1512c-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E32A61C-3119-4703-9BC4-8AFAF2DE2767", "versionEndExcluding": "2.9.2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1512sp-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A0E822C9-6983-4CC6-BC51-822563DF7BCE"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1512sp-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FA59BA8F-BC5B-4BE8-AF1F-D48E066E300B", "versionEndExcluding": "2.9.2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1512spf-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "77BD8110-76B4-4D5C-BFF7-E5F1D0EA9CD6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1512spf-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "029BDD36-31A2-4CCE-9CB1-1DB17987112F", "versionEndExcluding": "2.9.2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1513-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2E7889F5-D499-41A6-B1BB-264F988884D8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1513-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E6874DE-A6D8-47E1-8F1A-C1BA59464F04", "versionEndExcluding": "2.9.2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1513f-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F2962FF0-D865-4D15-B1A7-EFC0501972A6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1513f-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "469219FC-3F67-4AED-8EF1-5C3E46344173", "versionEndExcluding": "2.9.2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1513r-1:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7E2F34DF-3A55-49A4-9A9C-80C99B367079"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1513r-1_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7E2DB7B4-963D-40F6-A7CD-21B13365AAEC", "versionEndExcluding": "2.9.2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_15prof-2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FEBA7381-0C6B-4A47-94D7-0255EEF0CFA4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_15prof-2_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "332600B8-0F6E-4DC2-B0EB-BBC48E3581A9", "versionEndExcluding": "2.9.2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_15pro-2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E41F61DB-1A84-45AC-8A81-5D986065F45B"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_15pro-2_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EACD9C79-4F9F-443B-933D-BBC4CE035C74", "versionEndExcluding": "2.9.2"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1515-2_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "87A3783E-DFCB-4C97-90F4-7C1CA93F65F4", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1515-2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EB7605AF-2B00-49DD-BC32-37E6CF9ED625"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1515f-2_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "846D5EB8-2FFD-4E42-B6EB-FEB8E34F2250", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1515f-2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "21A4E04A-EB99-4AB2-9B30-C70DB11A6C8D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1515r-2_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "01CDF5DD-7232-469E-9D1D-D3AA789CAAC7", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1515r-2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EA0AEBFA-682F-4F5D-8FAA-D517AE3B3D0C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1515t-2_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0283BA76-C739-401B-AF67-2851B8DA4566", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1515t-2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D7BC3993-1CB0-4C1D-BC04-ED69BA814B24"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516pro_f_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2405AD13-B1B0-4111-B160-5A6B5DF9538B", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516pro_f:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "298EF297-949E-45E9-9A57-8D07986DED10"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516-3_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F20C4A59-E173-4DCF-AD53-377957FFE3E2", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516-3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B6D611B2-4D81-4838-B612-8D17196A5B78"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516f-3_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D7A24ABD-347F-49F4-A2A5-0C2D97B55497", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516f-3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "44C84DC4-1E8C-431B-AF23-AA86CE316928"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516t-3_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "46DDF83F-ED5A-4954-BFCF-DC3CA792386B", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516t-3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "27653C38-64A3-4DE2-8B65-BBC356A396AE"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1516tf-3_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9597869E-13BE-4245-8AAD-20DD83D583A2", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1516tf-3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A66C6524-9076-4C4E-B518-586BB1FF7107"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1517-3_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7871C856-52DC-485C-95F4-9AD1BAB6B8AB", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1517-3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C03BFBC2-E30D-4DAF-BDE0-06F97D1A0E92"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1517f-3_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "728919F4-7BEF-4248-B402-0533C724B35A", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1517f-3:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3F4C4030-4BFE-4EA0-9967-F77EEB5113E0"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518-4_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CECCEBBE-7A46-452D-B97C-3043218F0D9D", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518-4:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "836BC49A-F358-410D-A5CC-D62DAC7D624F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518f-4_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "807BE9DA-18AC-4965-99C5-6185C99D2AD7", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518f-4:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1F37885E-AC96-4043-892F-55AEFAFA675D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518hf-4_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "36B077A2-CAC7-4E0C-B035-B1A1C0C3FFA5", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518hf-4:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "914D507E-5C6E-4BA7-B5EA-549A01E0C34D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518t-4_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1F9FE195-4057-4615-8A03-B07899505B50", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518t-4:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7EF0A62F-8EC0-4EB8-821A-14B17D87DD8A"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518tf-4_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DDEFE3B3-1F50-4EBC-8CED-A8F8B3EB2E14", "versionEndExcluding": "2.9.2"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518tf-4:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "223AA9C0-89FA-459D-949F-FB9D3551C06F"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:siemens:simatic_s7-1500_software_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "957DEE17-0D31-4948-862D-153D33A770E9", "versionEndExcluding": "21.9"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_s7-plcsim_advanced_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5316C6A1-A9D6-4B03-B6D1-402803DE156C", "versionEndExcluding": "4.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_s7-plcsim_advanced:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "531A509E-97C9-4838-9E12-7D12DA36616F"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "productcert@siemens.com"}