Siemens SIMATIC PCS 7 and SIMATIC WinCC Log Information Disclosure Vulnerability

Siemens SIMATIC PCS 7 and SIMATIC WinCC are both products of Siemens, a German company.SIMATIC PCS 7 is a process control system.SIMATIC WinCC is an automated data acquisition and monitoring (SCADA) system.Siemens SIMATIC PCS and A log information disclosure vulnerability exists in Siemens SIMATIC PCS and WinCC, which stems from the fact that the affected system stores sensitive information in log files. An attacker with access to the log files could exploit the vulnerability to publicly disclose the information or reuse the information to further attack the system.