Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2018-13799
HistorySep 12, 2018 - 1:29 p.m.

Improper access control

2018-09-1213:29:00
PRIOn knowledge base
www.prio-n.com
3

9 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

62.1%

JSON

A vulnerability has been identified in SIMATIC WinCC OA V3.14 and prior (All versions < V3.14-P021). Improper access control to a data point of the affected product could allow an unauthenticated remote user to escalate its privileges in the context of SIMATIC WinCC OA V3.14. This vulnerability could be exploited by an attacker with network access to port 5678/TCP of the SIMATIC WinCC OA V3.14 server. Successful exploitation requires no user privileges and no user interaction. This vulnerability could allow an attacker to compromise integrity and availability of the SIMATIC WinCC OA system. At the time of advisory publication no public exploitation of this vulnerability was known.

CPENameOperatorVersion
simatic_wincc_open_architecturele3.14

Related

cve 1
cvelist 1
nvd 1
ics 1
cve
cve
CVE-2018-13799
2018-09-12 13:29:00
cvelist
cvelist
CVE-2018-13799
2018-09-11 00:00:00
nvd
nvd
CVE-2018-13799
2018-09-12 13:29:00
ics
ics
Siemens SIMATIC WinCC OA
2018-09-11 12:00:00

9 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

62.1%

JSON
Related for PRION:CVE-2018-13799
cve1cvelist1nvd1ics1