40 matches found
CVE-2019-19282
CVE-2019-19282 describes an incorrect calculation of buffer size (CWE-131) that allows a remote attacker to cause a denial-of-service on Siemens industrial software when encrypted communication is enabled. Exploitation requires network access and no privileges/UI. Affected products span OpenPCS 7...
Siemens Industrial Products Local Privilege Escalation Vulnerability (Update I)
1. EXECUTIVE SUMMARY CVSS v3 6.4 ATTENTION: Exploitable locally Vendor: Siemens Equipment: Industrial Products Vulnerability: Improper privilege management 2. UPDATE INFORMATION This updated advisory is a follow-up to the updated advisory titled ICSA-16-313-02 Siemens Industrial Products Local...
PT-2019-2034 · Siemens · Simatic Hmi Comfort Outdoor Panels 7" & 15" +16
Name of the Vulnerable Software and Affected Versions: SIMATIC CP 443-1 OPC UA versions prior to the fixed version SIMATIC ET 200SP Open Controller CPU 1515SP PC2 versions prior to V2.7 SIMATIC HMI Comfort Outdoor Panels 7" & 15" versions prior to V15.1 Upd 4 SIMATIC HMI Comfort Panels 4" - 22"...
CBM - Car Backdoor Maker
A hardware-backdoor for CAN bus - by @UnaPibaGeek & @holesec For the first time, a hardware backdoor tool is presented having several advanced features, such as: remote control via SMS commands, automated launch of attack payloads at a GPS location or when a specific car status is reached; and a...
Eaton ELCSoft Out-of-Bounds Write Remote Code Execution Vulnerability
The Eaton ELCSoft programmable logic control software runs on a PC and can help configure the ELC controller. An out-of-bounds write remote code execution vulnerability exists in Eaton ELCSoft Device Comment Range Parsing, which results in a lack of proper validation of user-supplied data, leadin...
CVE-2017-12069
An XXE vulnerability has been identified in OPC Foundation UA .NET Sample Code before 2017-03-21 and Local Discovery Server LDS before 1.03.367. Among the affected products are Siemens SIMATIC PCS7 All versions V8.1 and earlier, SIMATIC WinCC All versions V7.4 SP1, SIMATIC WinCC Runtime...
CVE-2017-12069
Summary: CVE-2017-12069 is an XXE vulnerability in the OPC UA Discovery Server handling of XML, affecting Siemens products using the OPC UA Stack (e.g., SIMATIC PCS 7, SIMATIC WinCC, SIMATIC WinCC Runtime Professional, SIMATIC NET PC Software, and IT Production Suite). Root cause: Improper restri...
CVE-2017-12069
An XXE vulnerability has been identified in OPC Foundation UA .NET Sample Code before 2017-03-21 and Local Discovery Server LDS before 1.03.367. Among the affected products are Siemens SIMATIC PCS7 All versions V8.1 and earlier, SIMATIC WinCC All versions V7.4 SP1, SIMATIC WinCC Runtime...
CVE-2017-10812
Untrusted search path vulnerability in Photo Collection PC Software Ver.4.0.2 and earlier allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory...
CVE-2017-10812
CVE-2017-10812 corresponds to an untrusted search path vulnerability in Photo Collection PC Software (NTT DOCOMO) versions ≤ 4.0.2. The underlying issue is insecure DLL/executable search paths (CWE-427) that allow a local attacker to execute arbitrary code with the privileges of the user invoking...
Car Backdoor Maker: CBM
Car Backdoor Maker For the first time, a hardware backdoor tool is presented having several advanced features, such as: remote control via SMS commands, automated launch of attack payloads at a GPS location or when a specific car status is reached; and a configuration interface that allows users ...
Siemens Discloses Local Privilege Escalation Bug in SCADA Gear
German engineering giant Siemens is warning operators of a local privilege escalation vulnerability that leaves more than a dozen models of its SCADA equipment open to attack. Some of the issues have been patched, or in other cases, Siemens has provided a workaround. The vulnerability was disclos...
Siemens SIMATIC NET PCSoftware Denial of Service Vulnerability
SIMATIC NET is an open and multifaceted communication system provided by Siemens at the industrial control level. A denial of service vulnerability exists in Siemens SIMATIC NET PCSoftware. An attacker can exploit the vulnerability by sending specially crafted packets to ports...
CVE-2016-5874
Siemens SIMATIC NET PC-Software before 13 SP2 allows remote attackers to cause a denial of service OPC UA service outage via crafted TCP packets...
CVE-2016-5874
Siemens SIMATIC NET PC-Software before 13 SP2 allows remote attackers to cause a denial of service OPC UA service outage via crafted TCP packets...
Code injection
Siemens SIMATIC NET PC-Software before 13 SP2 allows remote attackers to cause a denial of service OPC UA service outage via crafted TCP packets...
CVE-2016-5874
The vulnerability CVE-2016-5874 affects Siemens SIMATIC NET PC-Software prior to version 13 SP2. The underlying issue is a denial-of-service condition caused by specially crafted TCP packets sent to specific OPC-UA-related ports (55101–55105, 4845, 4847–4850). Successful exploitation can cause an...
CVE-2016-5874
Siemens SIMATIC NET PC-Software before 13 SP2 allows remote attackers to cause a denial of service OPC UA service outage via crafted TCP packets...
Siemens SIMATIC NET PC-Software Denial-of-Service Vulnerability
OVERVIEW Siemens has identified a denial-of-service vulnerability in SIMATIC NET PC-Software. Vladimir Dashchenko and Sergey Temnikov from Kaspersky Labs reported this issue directly to Siemens. Siemens has produced a new version to mitigate this vulnerability. This vulnerability could be exploit...
HP OpenView Client Configuration Manager Default Credentials
The remote host is running HP OpenView Client Configuration Manager OVCCM, a PC software configuration management application. The remote installation of OVCCM is configured to use default credentials to control access. Knowing these, an attacker can gain control of the affected application...