What is the CVSS score of CVE-2015-5374?

CVE-2015-5374 has a CVSS 2.0 base score of 7.8 (High). CVSS vector: AV:N/AC:L/Au:N/C:N/I:N/A:C. EPSS exploitation probability: 84.7%.

Which versions of Firmware are affected by CVE-2015-5374?

Organizations using A vulnerability face notable risk from CVE-2015-5374 rated CVSS 7.8. Exploitation could compromise the security of affected deployments.. A patch is available.

Is there a public PoC exploit available for CVE-2015-5374?

Yes, a public proof-of-concept exploit is available for CVE-2015-5374. Prioritise patching immediately. EPSS: 84.7%.

How to fix or mitigate CVE-2015-5374?

Within 24 hours: Identify all affected systems and apply vendor patches immediately. Vendor patch is available.

Firmware CVE-2015-5374

HIGH

Data Processing Errors (CWE-19)

2015-07-18 cve@mitre.org

Information Disclosure

7.8

CVSS 2.0

CVSS VectorNVD

AV:N/AC:L/Au:N/C:N/I:N/A:C

Attack Vector

Network

Attack Complexity

Low

Confidentiality

None

Integrity

None

Availability

Lifecycle Timeline

Analysis Generated

Mar 26, 2026 - 11:18 vuln.today

PoC Detected

Apr 12, 2025 - 10:46 vuln.today

Public exploit code

Patch released

Apr 12, 2025 - 10:46 nvd

Patch available

CVE Published

Jul 18, 2015 - 10:59 nvd

HIGH 7.8

DescriptionNVD

A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions < V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions < V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions < V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions < V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions < 1.02.02. Specially crafted packets sent to port 50000/UDP could cause a denial-of-service of the affected device. A manual reboot may be required to recover the service of the device.

AnalysisAI

Siemens EN100 Ethernet module firmware across multiple protocol variants (PROFINET IO, Modbus TCP, DNP3 TCP, IEC 104) contains a vulnerability that allows remote attackers to cause a denial-of-service condition by sending specially crafted packets. The affected module crashes and requires a manual cold restart to recover, impacting industrial control system availability.

Technical ContextAI

The EN100 Ethernet module provides network connectivity for Siemens SIPROTEC protection relays used in electrical substations. Specially crafted packets sent to the module trigger a crash condition across all protocol variants (PROFINET IO, Modbus TCP, DNP3, IEC 104). The device cannot recover automatically and requires a manual power cycle, which in substation environments means physical access to the relay.

RemediationAI

Update EN100 firmware to the patched versions. Implement network segmentation isolating protection relay networks from corporate IT. Deploy IDS rules monitoring for malformed packets targeting EN100 modules. Maintain documented procedures for emergency cold restart of protection relays.

CVE-2015-5374 vulnerability details – vuln.today

Back