CVE-2020-25241
CVE-2020-25241
In short
The SIMATIC MV400 devices before version 7.0.6 have a flaw in their network communication that allows an attacker to forcefully close any active internet connection by sending fake TCP reset messages. This can disrupt critical industrial operations.
Technical detail
The TCP stack in SIMATIC MV400 versions < 7.0.6 fails to properly validate sequence numbers in incoming TCP RST packets, allowing unauthenticated remote attackers to terminate arbitrary established TCP sessions through spoofed RST frames. This impacts availability of network-dependent operations.
Summary generated and translated by AI from the official description.
A vulnerability has been identified in SIMATIC MV400 family (All Versions < V7.0.6). The underlying TCP stack of the affected products does not correctly validate the sequence number for incoming TCP RST packages. An attacker could exploit this to terminate arbitrary TCP sessions.
Affected products
Siemens · SIMATIC MV400 familyWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →