CVE-2023-28829

🗓️ 13 Jun 2023 08:17:07Reported by siemensType

Vulnerability identified in SIMATIC NET PC Software V14, V15, SIMATIC PCS 7 V8.2, V9.0, V9.1, SIMATIC WinCC (< V8.0), SINAUT Software ST7sc

Reporter	Title	Published	Views	Family All 11
CNNVD	Siemens SIMATIC PCS 7 安全漏洞	13 Jun 202300:00	–	cnnvd
CNVD	Siemens SIMATIC WinCC using obsolete function vulnerability	14 Jun 202300:00	–	cnvd
Cvelist	CVE-2023-28829	13 Jun 202308:17	–	cvelist
EUVD	EUVD-2023-32461	3 Oct 202520:07	–	euvd
ICS	Siemens SIMATIC WinCC	13 Jun 202300:00	–	ics
NCSC	Vulnerabilities fixed in Siemens products	13 Jun 202300:00	–	ncsc
NVD	CVE-2023-28829	13 Jun 202309:15	–	nvd
Prion	Authentication flaw	13 Jun 202309:15	–	prion
Positive Technologies	PT-2023-3622 · Microsoft +1 · Windows +6	13 Jun 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-28829	23 May 202506:01	–	redhatcve

NVD

Node

siemens simatic_net_pc_softwareMatch14.0

siemens simatic_net_pc_softwareMatch15.0

siemens simatic_pcs_7Match8.2-

siemens simatic_pcs_7Match9.0-

siemens simatic_pcs_7Match9.1-

siemens simatic_winccRange<8.0

siemens sinaut_st7sc

[
  {
    "vendor": "Siemens",
    "product": "SIMATIC NET PC Software V14",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC NET PC Software V15",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC PCS 7 V8.2",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC PCS 7 V9.0",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC PCS 7 V9.1",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SIMATIC WinCC",
    "versions": [
      {
        "version": "All versions < V8.0",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  },
  {
    "vendor": "Siemens",
    "product": "SINAUT Software ST7sc",
    "versions": [
      {
        "version": "All versions",
        "status": "affected"
      }
    ],
    "defaultStatus": "unknown"
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-508677.pdf

21 Nov 2024 07:56Current

8.8High risk

Vulners AI Score8.8

CVSS 3.13.9 - 8.8

EPSS0.00106

SSVC

CWE-477