CVE-2011-20001
BaseFortify
Publication date: 2025-10-14
Last updated on: 2025-10-14
Assigner: Siemens AG
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| siemens | s7-1200_cpu | 2.0 |
| siemens | s7-1200_cpu | 2.0.3 |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-20 | The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability affects the SIMATIC S7-1200 CPU V1 and V2 families (including SIPLUS variants) with versions below 2.0.3. The web server interface on these devices improperly handles a high rate of malformed HTTP traffic, which can allow an unauthenticated remote attacker to cause the device to enter a stop or defect state, resulting in a denial of service condition.
How can this vulnerability impact me? :
An attacker exploiting this vulnerability can remotely cause the affected SIMATIC S7-1200 devices to stop functioning properly by forcing them into a stop or defect state. This leads to a denial of service, potentially disrupting operations that rely on these devices.