IM
IronMonkey Threat Research
‹ Back to ICS Advisories

SSA-828211: Denial of Service Vulnerability in SIMATIC S7-PLCSIM Advanced

HIGH
CVSS 7.4
Date 2026-07-14T00:00:00+00:00
Source siemens-productcert
Published by Siemens ProductCERT

// Description

SIMATIC S7-PLCSIM Advanced contains a vulnerability that could allow an attacker to cause a denial of service condition. Siemens is preparing fix versions and recommends specific countermeasures for products where fixes are not, or not yet available.

// Vulnerabilities (1)

CVE ID CVSS Score Severity Description
CVE-2026-54429 7.4 high
CVE-2026-54429. Affected devices do not properly handle high-volume multicast network traffic, which can exhaust available memory resources in the affected application. This could allow an unauthenticated attacker on the local network segment to cause a denial-of-service condition of the affected application. The affected application becomes inaccessible and requires a manual restart; no project data is lost. Successful exploitation requires a specific project configuration to be already active on the targeted instance.

// Affected Products (1)

Vendor Product Asset Type Purdue Level Firmware
Siemens Unknown plc
L1
--

// Remediations (3)

Mitigation: Use 'Softbus' / 'PLCSIM' network mode. This mode does not accept any packets from the network. This
Use 'Softbus' / 'PLCSIM' network mode. This mode does not accept any packets from the network. This mode is a default network mode. (see SIMATIC S7-PLCSIM Advanced Function Manual V8.0, 11/2025 Section 5.0 and Section 5.1; and SIMATIC S7-PLCSIM Advanced Function Manual API V8.0, 11/2025 Section 7.2)
Mitigation: Disable the S7-PLCSIM Virtual Switch binding on the network adapter used by the affected instance. T
Disable the S7-PLCSIM Virtual Switch binding on the network adapter used by the affected instance. This prevents the adapter from entering an external communication mode and removes the attack vector entirely. (see SIMATIC S7-PLCSIM Advanced Function Manual V8.0, 11/2025 Section 5.3 and Section 6.1.2.3; and SIMATIC S7-PLCSIM Advanced Function Manual API V8.0, 11/2025 Section 7.2)
Mitigation: Restrict multicast traffic on the network segment hosting the SIMATIC S7-PLCSIM Advanced host.
Restrict multicast traffic on the network segment hosting the SIMATIC S7-PLCSIM Advanced host.

// References