Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2014-1697
HistoryFeb 07, 2014 - 4:52 a.m.

CVE-2014-1697

2014-02-0704:52:04
mitre
web.nvd.nist.gov
23
siemens
simatic
wincc oa
web server
remote code execution
tcp port 4999
cve-2014-1697

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.8

Confidence

Low

EPSS

0.026

Percentile

90.5%

JSON

The integrated web server in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to execute arbitrary code via crafted packets to TCP port 4999.

Affected configurations

Nvd
Node
siemenssimatic_wincc_open_architectureRange≀3.12
VendorProductVersionCPE
siemenssimatic_wincc_open_architecture*cpe:2.3:a:siemens:simatic_wincc_open_architecture:*:*:*:*:*:*:*:*

Related

seebug 1
prion 1
ptsecurity 1
cvelist 1
nvd 1
ics 1
seebug
seebug
SIEMENS SIMATIC WinCC Open Architectureδ»»ζ„δ»£η ζ‰§θ‘ŒζΌζ΄ž
2014-02-20 00:00:00
prion
prion
Code injection
2014-02-07 04:52:00
ptsecurity
ptsecurity
PT-2013-78: Buffer overflow in SIMATIC WinCC Open Architecture
2013-01-12 00:00:00
cvelist
cvelist
CVE-2014-1697
2014-02-07 02:00:00
nvd
nvd
CVE-2014-1697
2014-02-07 04:52:04
ics
ics
Siemens SIMATIC WinCC OA Multiple Vulnerabilities
2018-09-06 12:00:00

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.8

Confidence

Low

EPSS

0.026

Percentile

90.5%

JSON
Related for CVE-2014-1697
seebug1prion1ptsecurity1cvelist1nvd1ics1