3 matches found
CVE-2021-40360
A vulnerability has been identified in SIMATIC PCS 7 V8.2 All versions, SIMATIC PCS 7 V9.0 All versions, SIMATIC PCS 7 V9.1 All versions V9.1 SP1, SIMATIC WinCC V15 and earlier All versions V15 SP1 Update 7, SIMATIC WinCC V16 All versions V16 Update 5, SIMATIC WinCC V17 All versions V17 Update 2,...
CVE-2021-40360
Siemens SIMATIC PCS 7 and SIMATIC WinCC contain a vulnerability (CVE-2021-40360) where the password hash of a local account on a remote server can be exposed via a public API, enabling an authenticated attacker to brute‑force and log in. Affected: PCS 7 v8.2–v9.1; WinCC v7.4–v7.5 and v15–v17 (wit...
Siemens SIMATIC WinCC and PCS
1. EXECUTIVE SUMMARY CVSS v3 6.3 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SIMATIC WinCC and PCS Vulnerabilities: Exposure of Sensitive Information to an Unauthorized Actor, Insertion of Sensitive Information into Externally-Accessible File or Directory 2...