Siemens SIMATIC NET PC-Software Denial-of-Service Vulnerability

OVERVIEW Siemens has identified a denial-of-service vulnerability in SIMATIC NET PC-Software. Vladimir Dashchenko and Sergey Temnikov from Kaspersky Labs reported this issue directly to Siemens. Siemens has produced a new version to mitigate this vulnerability. This vulnerability could be exploit...

Code injection

A vulnerability has been identified in SIMATIC NET CP 342-5 incl. SIPLUS variants All versions, SIMATIC NET CP 343-1 Advanced incl. SIPLUS variants All versions V3.0.44, SIMATIC NET CP 343-1 Lean incl. SIPLUS variants All versions V3.1.1, SIMATIC NET CP 343-1 Standard incl. SIPLUS variants All...

CVE-2015-8214

A vulnerability has been identified in SIMATIC NET CP 342-5 incl. SIPLUS variants All versions, SIMATIC NET CP 343-1 Advanced incl. SIPLUS variants All versions V3.0.44, SIMATIC NET CP 343-1 Lean incl. SIPLUS variants All versions V3.1.1, SIMATIC NET CP 343-1 Standard incl. SIPLUS variants All...

CVE-2015-8214

A vulnerability has been identified in SIMATIC NET CP 342-5 incl. SIPLUS variants All versions, SIMATIC NET CP 343-1 Advanced incl. SIPLUS variants All versions V3.0.44, SIMATIC NET CP 343-1 Lean incl. SIPLUS variants All versions V3.1.1, SIMATIC NET CP 343-1 Standard incl. SIPLUS variants All...

CVE-2015-8214

CVE-2015-8214 affects Siemens SIMATIC CP modules (CP 342-5, CP 343-1 variants, CP 443-1 variants, TIM 3V-IE/4R-IE, including SIPLUS) across many versions. Root cause: the access protection layer could allow unauthenticated users to perform administrative operations if network access to port 102/T...

Siemens SIMATIC Communication Processor Vulnerability (Update C)

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SIMATIC Communication Processor Vulnerability: Authentication Bypass Issues 2. UPDATE INFORMATION This updated advisory is a follow-up to the advisory update titled ICSA-15-335-03...

The vulnerabilities of the software programs WinCC, Simatic NET PC-Software, Simatic Automation Tool, and Simatic HMI allow a perpetrator to successfully pass the authentication process.

The vulnerabilities of the WinCC software, Simatic NET PC-Software, Simatic Automation Tool, and Simatic HMI are related to deficiencies in password verification procedures. Exploiting these vulnerabilities can allow unauthorized users to successfully authenticate themselves by using the hash val...