CVE-2017-2680

Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment (Layer 2). Human interaction is required to recover the systems. PROFIBUS interfaces are not affected.

Published: May 11, 2017
Updated: Nov 9, 2025
CVE: CVE-2017-2680
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Medium
Score: 6.1
AV:A/AC:L/Au:N/C:N/I:N/A:C

CWEs:

CWE-400

Affected Software
References

Software	From	Fixed in
siemens / simatic_cp_343-1_std_firmware	-	3.1.3
siemens / simatic_cp_343-1_lean_firmware	-	3.1.3
siemens / simatic_cp_343-1_adv_firmware	-	-
siemens / simatic_cp_443-1_std_firmware	-	3.2.17
siemens / simatic_cp_443-1_adv_firmware	-	3.2.17
siemens / simatic_cp_443-1_opc-ua_firmware	-	-
siemens / simatic_cp_1243-1_firmware	-	2.1.82
siemens / simatic_cm_1542-1_firmware	-	2.0
siemens / simatic_cp_1542sp-1_firmware	-	1.0.15
siemens / simatic_cp_1542sp-1_irc_firmware	-	1.0.15
siemens / simatic_cp_1543sp-1_firmware	-	1.0.15
siemens / simatic_cp_1543-1_firmware	-	2.1
siemens / simatic_rf650r_firmware	-	3.0
siemens / simatic_rf680r_firmware	-	3.0
siemens / simatic_rf685r_firmware	-	3.0
siemens / simatic_cp_1616_firmware	-	2.7
siemens / simatic_cp_1604_firmware	-	2.7
siemens / simatic_dk-1616_pn_io_firmware	-	2.7
siemens / scalance_x200_firmware	-	5.2.2
siemens / scalance_x200_irt_firmware	-	5.4.0
siemens / scalance_x300_firmware	-	4.1.0
siemens / scalance_x408_firmware	-	4.1.0
siemens / scalance_x414_firmware	-	3.10.2
siemens / scalance_xm400_firmware	-	6.1
siemens / scalance_xr500_firmware	-	6.1
siemens / scalance_w700_firmware	-	6.1
siemens / scalance_m-800_firmware	-	4.03
siemens / scalance_s615_firmware	-	4.03
siemens / softnet_profinet_io_firmware	-	14
siemens / softnet_profinet_io_firmware	14	14.x
siemens / ie/pb-link_firmware	-	3.0
siemens / ie/as-i_link_pn_io_firmware	-	-
siemens / simatic_teleservice_adapter_ie_standard_firmware	-	-
siemens / simatic_teleservice_adapter_ie_basic_firmware	-	-
siemens / simatic_teleservice_adapter_ie_advanced_firmware	-	-
siemens / sitop_psu8600_firmware	-	1.2.0
siemens / ups1600_profinet_firmware	-	2.2.0
siemens / simatic_et_200al_firmware	-	1.0.2
siemens / simatic_et_200ecopn_firmware	-	-
siemens / simatic_et_200m_firmware	-	-
siemens / simatic_et_200mp_firmware	-	4.0.1
siemens / simatic_et_200pro_firmware	-	-
siemens / simatic_et_200s_firmware	-	-
siemens / simatic_et_200sp_firmware	-	4.1.0
siemens / pn/pn_coupler_firmware	-	4.0
siemens / dk_standard_ethernet_controller_firmware	-	4.1.1
siemens / dk_standard_ethernet_controller_firmware	4.1.1	4.1.1.x
siemens / ek-ertec_200p_pn_io_firmware	-	4.4.0
siemens / ek-ertec_200p_pn_io_firmware	4.4.0	4.4.0.x
siemens / ek-ertec_200_pn_io_firmware	-	4.2.1
siemens / ek-ertec_200_pn_io_firmware	4.2.1	4.2.1.x
siemens / simatic_s7-200_smart_firmware	-	2.3
siemens / simatic_s7-400_firmware	-	6.0.6
siemens / simatic_s7-1200_firmware	-	4.2.1
siemens / simatic_s7-1500_firmware	-	2.1
siemens / simatic_s7-1500_software_controller_firmware	-	2.1
siemens / simatic_winac_rtx_firmware	-	2010
siemens / simatic_winac_rtx_firmware	2010	2010.x
siemens / sirius_act_3su1_firmware	-	1.1.0
siemens / sirius_soft_starter_3rw44_pn_firmware	-	-
siemens / sirius_motor_starter_m200d_profinet_firmware	-	-
siemens / simocode_pro_v_profinet_firmware	-	2.0.0
siemens / sinamics_dcm_firmware	-	1.4
siemens / sinamics_dcm_firmware	1.4-sp1	1.4-sp1.x
siemens / sinamics_dcm_firmware	1.4	1.4.x
siemens / sinamics_dcp_firmware	-	1.2
siemens / sinamics_dcp_firmware	1.2	1.2.x
siemens / sinamics_g110m_firmware	-	4.7
siemens / sinamics_g110m_firmware	4.7	4.7.x
siemens / sinamics_g120(c/p/d)_w._pn_firmware	-	4.7
siemens / sinamics_g120(c/p/d)_w._pn_firmware	4.7	4.7.x
siemens / sinamics_g130_firmware	-	4.7
siemens / sinamics_g130_firmware	4.7	4.7.x
siemens / sinamics_g150_firmware	-	4.7
siemens / sinamics_g150_firmware	4.7	4.7.x
siemens / sinamics__s110_pn_firmware	-	4.4
siemens / sinamics__s110_pn_firmware	4.4	4.4.x
siemens / sinamics_s120_firmware	-	4.7
siemens / sinamics_s120_firmware	4.7	4.7.x
siemens / sinamics_s150_firmware	-	4.7
siemens / sinamics_s150_firmware	4.7	4.7.x
siemens / sinamics_v90_pn_firmware	-	1.01
siemens / simotion_firmware	-	4.5
siemens / simotion_firmware	4.5	4.5.x
siemens / sinumerik_828d_firmware	-	4.5
siemens / sinumerik_828d_firmware	4.5	4.5.x
siemens / sinumerik_840d_sl_firmware	-	4.5
siemens / sinumerik_840d_sl_firmware	4.5	4.5.x
siemens / simatic_hmi_comfort_panels	-	15.1
siemens / simatic_hmi_multi_panels	-	15.1
siemens / simatic_hmi_mobile_panels	-	15.1
siemens / simatic_cp_1243-1_irc_firmware	-	2.1.82
siemens / simatic_cp_1243-1_iec_firmware	-	-
siemens / simatic_cp_1243-1_dnp3_firmware	-	-
siemens / simatic_dk-1604_pn_io_firmware	-	2.7
siemens / simatic_tdc_cpu555_firmware	-	1.1.1
siemens / simatic_tdc_cp51m1_firmware	-	1.1.8
siemens / sinamics_gh150_firmware	-	4.7
siemens / sinamics_gh150_firmware	4.7	4.7.x
siemens / sinamics_gl150_firmware	-	4.8
siemens / sinamics_gl150_firmware	4.8	4.8.x
siemens / sinamics_gm150_firmware	-	4.7
siemens / sinamics_gm150_firmware	4.7	4.7.x
siemens / sinamics_sl150_firmware	-	4.8
siemens / sinamics_sl150_firmware	4.8	4.8.x
siemens / sinamics_sm120_firmware	-	4.8
siemens / sinamics_sm120_firmware	4.8	4.8.x
siemens / extension_unit_12_profinet_firmware	-	01.01.01
siemens / extension_unit_15_profinet_firmware	-	01.01.01
siemens / extension_unit_19_profinet_firmware	-	01.01.01
siemens / extension_unit_22_profinet_firmware	-	01.01.01
siemens / simatic_cp_1242-7_gprs_firmware	-	2.1.82
siemens / simatic_cp_1243-7_lte/us_firmware	-	2.1.82
siemens / simatic_cp_1243-8_firmware	-	2.1.82
siemens / simatic_cp_1626_firmware	-	1.1

Vulnerability Database

309,961

CVE-2017-2680

Deep Security Visibility Without the Complexity