Siemens SINUMERIK

Plan Patch7.5ICS-CERT ICSA-21-287-04Oct 12, 2021

Attack VectorNetwork

Auth RequiredNone

ComplexityLow

User InteractionNone needed

Summary

A denial-of-service vulnerability in Siemens SINUMERIK controllers (808D and 828D) allows an unauthenticated attacker with network access to crash the affected devices. An attacker could send a specially crafted packet to port 102/TCP, causing the controller to fail and stopping all machine operations. SINUMERIK 808D has no fix available; SINUMERIK 828D is fixed in version 4.95. The vulnerability requires only network connectivity and no valid credentials to exploit.

What this means

What could happen

An attacker could crash the SINUMERIK controller, stopping all machine operations until the device is manually restarted. This causes total loss of production and requires on-site intervention to recover.

Who's at risk

Machine tool operators and manufacturers using Siemens SINUMERIK 808D or 828D controllers in CNC machines and manufacturing cells. Any facility relying on these controllers for production operations is affected.

How it could be exploited

An attacker with network access to the controller sends a malicious network packet to port 102/TCP, triggering a denial-of-service condition that crashes the control system. No authentication or user interaction is required.

Prerequisites

Network access to port 102/TCP on the SINUMERIK controller
No credentials or authentication required

remotely exploitableno authentication requiredlow complexityhigh availability impactno patch available for 808D

Exploitability

Low exploit probability (EPSS 0.1%)

Affected products (2)

1 with fix1 EOL

ProductAffected VersionsFix Status

SINUMERIK 828D<V4.954.95

SINUMERIK 808DAll versionsNo fix (EOL)

Remediation & Mitigation

0/4

Do now

0/1

SINUMERIK 808D

WORKAROUNDRestrict network access to port 102/TCP on SINUMERIK 808D to trusted systems only using an external firewall

Schedule — requires maintenance window

0/1

Patching may require device reboot — plan for process interruption

SINUMERIK 828D

HOTFIXUpdate SINUMERIK 828D to version 4.95 or later

Mitigations - no patch available

0/2

SINUMERIK 808D has reached End of Life. The vendor will not release a patch. Apply the following compensating controls:

HARDENINGSegment SINUMERIK controllers from the business network and place behind a firewall to limit exposure

HARDENINGDisable or restrict network access to SINUMERIK devices from the Internet

CVEs (1)

CVE-2021-37199

View full CISA ICS-CERT advisory

↑↓ Navigate · Esc Close

API: /api/v1/advisories/06735e71-8213-459a-ac5a-48e5803ad9d1