2 matches found
CVE-2018-13799
A vulnerability has been identified in SIMATIC WinCC OA V3.14 and prior All versions V3.14-P021. Improper access control to a data point of the affected product could allow an unauthenticated remote user to escalate its privileges in the context of SIMATIC WinCC OA V3.14. This vulnerability could...
The vulnerability of the automated system for managing technological processes of SIMATIC WinCC OA allows a malicious individual to bypass the file system without going through the authentication procedures as a regular user.
The vulnerability of the SIMATIC WinCC OA software is related to errors that occur when processing specially crafted TCP packets. Exploiting this vulnerability allows a malicious individual to bypass the file system on the server in the context of the current user, without going through the...