{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-19T10:01:42.656","vulnerabilities":[{"cve":{"id":"CVE-2018-13815","sourceIdentifier":"productcert@siemens.com","published":"2018-12-13T16:29:00.383","lastModified":"2024-11-21T03:48:07.740","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability has been identified in SIMATIC S7-1200 (All versions), SIMATIC S7-1500 (All Versions < V2.6). An attacker could exhaust the available connection pool of an affected device by opening a sufficient number of connections to the device. Successful exploitation requires an attacker to be able to send packets to port 102/tcp of the affected device. No user interaction and no user privileges are required to exploit the vulnerability. The vulnerability, if exploited, could cause a Denial-of-Service condition impacting the availability of the system. At the time of advisory publication no public exploitation of this vulnerability was known."},{"lang":"es","value":"Se ha identificado una vulnerabilidad en SIMATIC S7-1200 (todas las versiones) y SIMATIC S7-1500 (todas las versiones anteriores a la V2.6). Un atacante podría agotar el grupo de conexiones disponibles de un dispositivo afectado abriendo un número suficiente de conexiones al dispositivo. Su explotación con éxito requiere que un atacante sea capaz de enviar paquetes al puerto 102/tcp del dispositivo afectado. No se requiere interacción o privilegios del usuario para explotar esta vulnerabilidad. Si se explota esta vulnerabilidad, se podría provocar una condición de denegación de servicio (DoS) que impacta sobre la disponibilidad del sistema. En el momento de la publicación del aviso, no se conoce ninguna explotación pública de la vulnerabilidad."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":7.5,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":3.6}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:P","baseScore":5.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":10.0,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"productcert@siemens.com","type":"Secondary","description":[{"lang":"en","value":"CWE-410"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-400"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_s7-1200_firmware:-:*:*:*:*:*:*:*","matchCriteriaId":"5187EF42-3E86-4C73-A435-E5D5710B6999"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_s7-1200:-:*:*:*:*:*:*:*","matchCriteriaId":"EC545350-FD53-4B2E-886F-E20F12260C9B"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:siemens:simatic_s7-1500_firmware:*:*:*:*:*:*:*:*","versionEndExcluding":"2.6","matchCriteriaId":"8F81F41D-480F-4443-927E-00607DD40BF5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:siemens:simatic_s7-1500:-:*:*:*:*:*:*:*","matchCriteriaId":"30DDEA9B-E1BF-4572-8E12-D13C54603E77"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/105928","source":"productcert@siemens.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-584286.pdf","source":"productcert@siemens.com","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/105928","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://cert-portal.siemens.com/productcert/pdf/ssa-584286.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}