3 matches found
CVE-2021-40358
A vulnerability has been identified in SIMATIC PCS 7 V8.2 All versions, SIMATIC PCS 7 V9.0 All versions V9.0 SP3 UC04, SIMATIC PCS 7 V9.1 All versions V9.1 SP1, SIMATIC WinCC V15 and earlier All versions V15 SP1 Update 7, SIMATIC WinCC V16 All versions V16 Update 5, SIMATIC WinCC V17 All versions...
CVE-2021-40358
CVE-2021-40358 describes a path-traversal vulnerability in Siemens SIMATIC PCS 7 and WinCC products (V8.2–V9.1, V15–V17, various SP/update levels). Legitimate file operations on the web server fail to neutralize special elements in pathnames, allowing an attacker to resolve a pathname outside the...
Siemens SIMATIC WinCC (Update E)
As of January 10, 2023, CISA will no longer be updating ICS security advisories for Siemens product vulnerabilities beyond the initial advisory. For the most up-to-date information on vulnerabilities in this advisory, please seeSiemens' ProductCERT Security Advisories CERT Services | Services |...