Denial-of-Service Vulnerability in Siemens 7KM PAC Switched Ethernet PROFINET Expansion Module

Denial-of-Service Vulnerability in Siemens 7KM PAC Switched Ethernet PROFINET Expansion Module

CVE-2017-9945 · MEDIUM Severity

AV:A/AC:L/AU:N/C:N/I:N/A:C

In the Siemens 7KM PAC Switched Ethernet PROFINET expansion module (All versions < V2.1.3), a Denial-of-Service condition could be induced by a specially crafted PROFINET DCP packet sent as a local Ethernet (Layer 2) broadcast. The affected component requires a manual restart via the main device to recover.

Learn more about our Web Application Penetration Testing UK.