25 matches found
CVE-2010-2772
CVE-2010-2772 affects Siemens SIMATIC WinCC and SIMATIC PCS 7: a security bypass via default hard-coded SQL credentials allows remote attackers to access the backend database with administrative-like access. The vulnerability is tied to use of default credentials in the WinCC SQL server, permitti...
CVE-2019-10935
CVE-2019-10935 applies to Siemens SIMATIC WinCC/PCS7 family (PCS 7 v8.x/9.x and WinCC variants) where the WinCC DataMonitor web application allows an authenticated, network-accessible attacker to upload arbitrary ASPX code. The vulnerability enables unrestricted file upload without user interacti...
CVE-2021-40363
CVE-2021-40363 affects Siemens SIMATIC PCS 7 and WinCC products. The underlying issue is that the affected component stores local system account credentials in a publicly accessible project file using an outdated cipher algorithm, enabling an attacker to brute-force credentials and take over the ...
CVE-2023-25910
CVE-2023-25910 describes a remote code execution vulnerability in Siemens SIMATIC STEP 7 V5, SIMATIC PCS 7, and S7-PM products that contain an embedded database management system. The root cause is improper generation/control of code within the database functions, allowing remote unauthenticated ...
CVE-2021-40360
Siemens SIMATIC PCS 7 and SIMATIC WinCC contain a vulnerability (CVE-2021-40360) where the password hash of a local account on a remote server can be exposed via a public API, enabling an authenticated attacker to brute‑force and log in. Affected: PCS 7 v8.2–v9.1; WinCC v7.4–v7.5 and v15–v17 (wit...
CVE-2018-4832
CVE-2018-4832 affects Siemens SPPA-T3000 and related OpenPCS/WinCC/BATCH/Route Control components. The vulnerability stems from improper input validation in the RPC service, enabling a remote attacker with network access to cause a DoS in remote and local communication, requiring a reboot to rest...
CVE-2020-7580
CVE-2020-7580 affects Siemens products (e.g., SIMATIC Automation Tool, STEP 7/TIA Portal, WinCC OA, ProSave, S7-1500 controllers, etc.). Root cause: a common component calls a helper binary with SYSTEM privileges while the call path is not quoted (unquoted search path/element CWE-428). This could...
CVE-2022-24287
This CVE (CVE-2022-24287) relates to Siemens SIMATIC WinCC/Kiosk Mode: an authenticated attacker could escape kiosk mode by opening the printer dialog when no printer is installed. Affected products include SIMATIC PCS 7 v8.2/v9.0/v9.1 and WinCC Runtime Professional v16/v17 (prior to Upd4), plus ...
CVE-2021-40358
CVE-2021-40358 describes a path-traversal vulnerability in Siemens SIMATIC PCS 7 and WinCC products (V8.2–V9.1, V15–V17, various SP/update levels). Legitimate file operations on the web server fail to neutralize special elements in pathnames, allowing an attacker to resolve a pathname outside the...
CVE-2019-10916
CVE-2019-10916 affects Siemens SIMATIC PCS7 and WinCC/TIA Portal products (multiple versions). The root cause is SQL Injection in the project file handling, allowing an attacker who can access the project file to run arbitrary commands with the local database server’s privileges, impacting confid...
CVE-2021-40364
CVE-2021-40364 affects Siemens SIMATIC PCS 7 and WinCC products. The root issue is insertion of sensitive information into log files , enabling an attacker with log access to publicly expose data or reuse it for further attacks. Affected versions include PCS 7 v8.2, v9.0 (pre-SP3 UC04), v9.1 (pre...
CVE-2019-10918
Siemens CVE-2019-10918 affects multiple SIMATIC/WinCC products (e.g., WinCC/TIA Portal v14 with SP1 Upd 9 and v15 with Upd 3; WinCC Runtime Professional v14/v15; PCS7 with WinCC updaters). Root cause is an exposed DCOM interface that could let an authenticated, network-reachable attacker execute ...
CVE-2019-10922
This CVE (CVE-2019-10922) affects Siemens SIMATIC WinCC and PCS 7: PCS 7 v8.0 and earlier, PCS 7 v8.1 and newer if Encrypted Communications is disabled; WinCC v7.2 and earlier, WinCC v7.3 and newer if Encrypted Communications is disabled. Vulnerability type: Missing Authentication for Critical Fu...
CVE-2014-8551
CVE-2014-8551 describes a remote code execution vulnerability in Siemens WinCC/PCS7/TIA Portal components due to improper access control (CWE-284). A component within WinCC could allow unauthenticated remote code execution when specially crafted packets are sent to the WinCC server. Affected prod...
CVE-2023-28829
CVE-2023-28829 concerns Siemens SIMATIC WinCC/PCS7/NET PC software. The root cause is use of legacy OPC services (OPC DA/HDA/AE) built on Windows ActiveX/DCOM that lack modern authentication and encryption. Affected: SIMATIC NET PC Software V14/V15, SIMATIC PCS 7 V8.2/V9.0/V9.1, SIMATIC WinCC (al...
CVE-2023-48364
Siemens CVE-2023-48364 affects multiple OpenPCS/WinCC/PCS7/Route Control products (OpenPCS 7, SIMATIC BATCH, PCS 7, Route Control, WinCC Runtime Professional V18/V19, WinCC V7.4/7.5/8.0) and is caused by improper handling of certain malformed RPC messages, leading to a denial-of-service condition...
CVE-2020-7585
The connected advisory (ICSA-20-161-05) provides concrete details for CVE-2020-7585. A DLL hijacking flaw (Uncontrolled Search Path Element, CWE-427) in Siemens software could allow a local attacker with access to execute code with elevated privileges, affecting: SIMATIC PCS 7 v8.2 and earlier; S...
CVE-2023-48363
CVE-2023-48363 affects Siemens OpenPCS 7, SIMATIC BATCH/PCS 7, Route Control, WinCC Runtime Professional V18/V19, WinCC V7.4/V7.5/V8.0. Root cause: improper handling of certain unorganized RPC messages in the RPC server, leading to a denial-of-service. Affected versions include OpenPCS 7 V9.1 and...
CVE-2016-7165
CVE-2016-7165 affects Siemens products including Primary Setup Tool, SIMATIC IT Production Suite, SIMATIC NET PC-Software, SIMATIC STEP 7 (TIA Portal) v13/v5.x, SIMATIC WinCC (TIA Portal) Basic/Professional/Runtime, SIMIT, SINEMA components, etc. Root cause: unquoted service paths enabling local ...
CVE-2019-10917
CVE-2019-10917 is a local-denial-of-service vulnerability affecting Siemens SIMATIC PCS7/WinCC product families (e.g., WinCC (TIA Portal) v13–v15 and WinCC Runtime Professional; PCS7 v8.0–9.0 with WinCC variants). The issue arises when a local attacker loads a project file, triggering a DoS and c...
CVE-2019-19282
CVE-2019-19282 describes an incorrect calculation of buffer size (CWE-131) that allows a remote attacker to cause a denial-of-service on Siemens industrial software when encrypted communication is enabled. Exploitation requires network access and no privileges/UI. Affected products span OpenPCS 7...
CVE-2014-8552
CVE-2014-8552 : The WinCC family (SIMATIC WinCC 7.0 SP3 and earlier, 7.2 before Update 9, 7.3 before Update 2; PCS 7 7.1 SP4 and earlier, 8.0 before SP2 with WinCC 7.2 Update 9, 8.1 before Update 2; TIA Portal 13 before Update 6) contains an unauthenticated remote arbitrary-file-read vulnerabilit...
CVE-2020-7586
CVE-2020-7586 is a local, heap-based buffer overflow vulnerability affecting Siemens products (SIMATIC PCS 7, PDM, STEP 7, SINAMICS STARTER). The issue allows a local attacker with existing access to cause a DoS and potentially access confidential information due to memory corruption. Root cause ...
CVE-2016-9160
The CVE-2016-9160 entry affects Siemens SIMATIC WinCC and PCS 7. Affected versions are WinCC before v7.2 and PCS 7 before v8.0 SP1. The vulnerability stems from improper restriction of operations within the bounds of a memory buffer in the ActiveX control, enabling a remote attacker to crash the ...
CVE-2020-10048
CVE-2020-10048 affects Siemens SIMATIC PCS 7 (All versions) and SIMATIC WinCC (all versions