Vulnerability: Unauthorized Write Access to SNMP Variables on SIMATIC CP 1543-1 and SIPLUS NET CP 1543-1

Vulnerability: Unauthorized Write Access to SNMP Variables on SIMATIC CP 1543-1 and SIPLUS NET CP 1543-1

CVE-2016-8562 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:N/A:P

A vulnerability has been identified in SIMATIC CP 1543-1 (All versions < V2.0.28), SIPLUS NET CP 1543-1 (All versions < V2.0.28). Under special conditions it was possible to write SNMP variables on port 161/udp which should be read-only and should only be configured with TIA-Portal. A write to these variables could reduce the availability or cause a denial-of-service.

Learn more about our Web Application Penetration Testing UK.