2 matches found
CVE-2014-4685
CVE-2014-4685 affects Siemens SIMATIC WinCC prior to 7.3 (used in PCS7). Root cause: weak system-object access control enabling local privilege escalation for local users. Siemens released fixes in WinCC 7.3 (and PCS7 8.1); upgrading is advised. Other sources note mitigation steps and a broader s...
CVE-2014-4685
Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows local users to gain privileges by leveraging weak system-object access control...