Lucene search

[email protected]CVE-2014-4686

HistoryJul 24, 2014 - 2:55 p.m.

CVE-2014-4686

2014-07-2414:55:08

[email protected]

web.nvd.nist.gov

siemens

simatic wincc

pcs7

network security

encryption

cve-2014-4686

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

6.1 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

74.8%

JSON

The Project administration application in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, has a hardcoded encryption key, which allows remote attackers to obtain sensitive information by extracting this key from another product installation and then employing this key during the sniffing of network traffic on TCP port 1030.

Affected configurations

NVD

Node

siemenssimatic_pcs7Range≤8.0sp1

siemenssimatic_pcs7Match7.1sp3

siemenssimatic_pcs7Match8.0

siemenswinccRange≤7.2

siemenswinccMatch5.0

siemenswinccMatch5.0sp1

siemenswinccMatch6.0

siemenswinccMatch6.0sp2

siemenswinccMatch6.0sp3

siemenswinccMatch6.0sp4

siemenswinccMatch7.0

siemenswinccMatch7.0sp1

siemenswinccMatch7.0sp2

siemenswinccMatch7.0sp3

siemenswinccMatch7.1

siemenswinccMatch7.1sp1

CPENameOperatorVersion
siemens:simatic_pcs7siemens simatic pcs7le8.0
siemens:simatic_pcs7siemens simatic pcs7eq7.1
siemens:winccsiemens winccle7.2
siemens:winccsiemens wincceq5.0
siemens:winccsiemens wincceq6.0
siemens:winccsiemens wincceq7.0
siemens:winccsiemens wincceq7.1

CPE	Name	Operator	Version
siemens:simatic_pcs7	siemens simatic pcs7	le	8.0
siemens:simatic_pcs7	siemens simatic pcs7	eq	7.1
siemens:wincc	siemens wincc	le	7.2
siemens:wincc	siemens wincc	eq	5.0
siemens:wincc	siemens wincc	eq	6.0
siemens:wincc	siemens wincc	eq	7.0
siemens:wincc	siemens wincc	eq	7.1