VYPR
Unrated severityNVD Advisory· Published Sep 25, 2012· Updated Jun 16, 2026

CVE-2012-3037

CVE-2012-3037

Description

The Siemens SIMATIC S7-1200 2.x PLC does not properly protect the private key of the SIMATIC CONTROLLER Certification Authority certificate, which allows remote attackers to spoof the S7-1200 web server by using this key to create a forged certificate.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • cpe:2.3:o:siemens:simatic_s7-1200_cpu_1211c_firmware:*:*:*:*:*:*:*:*+ 5 more
    • cpe:2.3:o:siemens:simatic_s7-1200_cpu_1211c_firmware:*:*:*:*:*:*:*:*range: >=2.0.0,<3.0.0
    • cpe:2.3:o:siemens:simatic_s7-1200_cpu_1212c_firmware:*:*:*:*:*:*:*:*range: >=2.0.0,<3.0.0
    • cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214_fc_firmware:*:*:*:*:*:*:*:*range: >=2.0.0,<3.0.0
    • cpe:2.3:o:siemens:simatic_s7-1200_cpu_1215_fc_firmware:*:*:*:*:*:*:*:*range: >=2.0.0,<3.0.0
    • cpe:2.3:o:siemens:simatic_s7-1200_cpu_1217c_firmware:*:*:*:*:*:*:*:*range: >=2.0.0,<3.0.0
    • cpe:2.3:o:siemens:simatic_s7-1200_firmware:*:*:*:*:*:*:*:*range: >=2.0.0,<3.0.0
  • cpe:2.3:o:siemens:simatic_s7-1200_cpu_1212fc_firmware:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:siemens:simatic_s7-1200_cpu_1212fc_firmware:*:*:*:*:*:*:*:*range: >=2.0.0,<3.0.0
    • cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214c_firmware:*:*:*:*:*:*:*:*range: >=2.0.0,<3.0.0
  • cpe:2.3:o:siemens:simatic_s7-1200_cpu_1215c_firmware:*:*:*:*:*:*:*:*
    Range: >=2.0.0,<3.0.0

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.