Siemens SIMATIC STEP 7 suffers from an information disclosure vulnerability (CNVD-2016-08768)
Siemens SIMATIC is an automation software with a single engineering environment. An information disclosure vulnerability exists in Siemens SIMATIC STEP 7 V12 and V13. A local attacker can exploit the vulnerability to read TIA project files by brute-force breaking the pre-shared key, resulting in...