Lucene search

[email protected]CVE-2011-4876

HistoryFeb 03, 2012 - 8:55 p.m.

CVE-2011-4876

2012-02-0320:55:01

CWE-22

[email protected]

web.nvd.nist.gov

cve-2011-4876

siemens

wincc flexible

wincc v11

directory traversal

remote code execution

security vulnerability

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.9 Medium

AI Score

Confidence

Low

0.032 Low

EPSS

Percentile

91.2%

JSON

Directory traversal vulnerability in HmiLoad in the runtime loader in Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 (aka TIA portal); the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime, when Transfer Mode is enabled, allows remote attackers to execute, read, create, modify, or delete arbitrary files via a … (dot dot) in a string.

Affected configurations

NVD

Node

siemenswincc_flexibleMatch2004

siemenswincc_flexibleMatch2005

siemenswincc_flexibleMatch2007

siemenswincc_flexibleMatch2008

Node

siemenswinccMatchv11

Node

siemenssimatic_hmi_panelsMatchcomfort_panels

siemenssimatic_hmi_panelsMatchmobile_panels

siemenssimatic_hmi_panelsMatchmp

siemenssimatic_hmi_panelsMatchop

siemenssimatic_hmi_panelsMatchtp

Node

siemenswincc_runtime_advancedMatchv11

Node

siemenswincc_flexible_runtime

CPENameOperatorVersion
siemens:wincc_flexiblesiemens wincc flexibleeq2004
siemens:wincc_flexiblesiemens wincc flexibleeq2005
siemens:wincc_flexiblesiemens wincc flexibleeq2007
siemens:wincc_flexiblesiemens wincc flexibleeq2008

CPE	Name	Operator	Version
siemens:wincc_flexible	siemens wincc flexible	eq	2004
siemens:wincc_flexible	siemens wincc flexible	eq	2005
siemens:wincc_flexible	siemens wincc flexible	eq	2007
siemens:wincc_flexible	siemens wincc flexible	eq	2008