25 matches found
CVE-2013-0674
Siemens WinCC RegReader ActiveX Control vulnerability (CVE-2013-0674) affects WinCC prior to 7.2 and SIMATIC PCS7 prior to 8.0 SP1. A stack-based buffer overflow in RegReader can be triggered via a long parameter in the ActiveX control, potentially allowing remote code execution in the user’s bro...
CVE-2017-12069
Summary: CVE-2017-12069 is an XXE vulnerability in the OPC UA Discovery Server handling of XML, affecting Siemens products using the OPC UA Stack (e.g., SIMATIC PCS 7, SIMATIC WinCC, SIMATIC WinCC Runtime Professional, SIMATIC NET PC Software, and IT Production Suite). Root cause: Improper restri...
CVE-2014-4684
The CVE-2014-4684 issue affects Siemens SIMATIC WinCC before 7.3 (as used in PCS7 and other products) where the WinCC database server could allow remote authenticated users to escalate privileges by sending a crafted command to TCP/1433. Connected sources confirm root cause in the database server...
CVE-2012-3015
Untrusted search path DLL loading vulnerability in Siemens SIMATIC STEP7 (before v5.5 SP1; used in PCS 7 up to v7.1 SP3) can allow execution of arbitrary code via a Trojan DLL placed in a STEP7 project folder. Affected products use DLL loading without validation, executing with STEP 7 permissions...
CVE-2013-0676
Siemens WinCC (before 7.2; in SIMATIC PCS7 before 8.0 SP1) stores WebNavigator credentials in an MS SQL database and fails to properly restrict privileges. This Improper Authorization allows remote authenticated users to read sensitive data via SQL queries. Impact includes exposure of credentials...
CVE-2017-14023
CVE-2017-14023 affects Siemens SIMATIC PCS 7 (V8.1 up to SP1 with WinCC V7.3 Upd 13, and V8.2 all versions). The issue is improper input validation that may allow an authenticated remote attacker in the administrators group to crash services by sending specially crafted messages to the DCOM inter...
CVE-2013-3959
The CVE-2013-3959 issue affects Siemens WinCC Web Navigator (before 7.2 Update 1, used in SIMATIC PCS7 8.0 SP1 and earlier). The root cause is improper handling of NetBIOS user name checks via crafted URL parameters, allowing remote authenticated users to enumerate valid user names (forced browsi...
CVE-2014-8551
CVE-2014-8551 describes a remote code execution vulnerability in Siemens WinCC/PCS7/TIA Portal components due to improper access control (CWE-284). A component within WinCC could allow unauthenticated remote code execution when specially crafted packets are sent to the WinCC server. Affected prod...
CVE-2012-3032
CVE-2012-3032 describes a SQL Injection vulnerability in the WebNavigator component of Siemens WinCC (7.0 SP3 and earlier) where a crafted SOAP message can cause arbitrary SQL commands to be executed. The affected product is Siemens WinCC WebNavigator; the root cause is improper neutralization of...
CVE-2013-3957
CVE-2013-3957 describes an SQL injection vulnerability in the Web Navigator login screen of Siemens WinCC prior to version 7.2 Update 1 (used in SIMATIC PCS7 8.0 SP1 and earlier). The issue arises from input handling in the login/UI that can be manipulated to inject SQL statements through unspeci...
CVE-2014-4685
CVE-2014-4685 affects Siemens SIMATIC WinCC prior to 7.3 (used in PCS7). Root cause: weak system-object access control enabling local privilege escalation for local users. Siemens released fixes in WinCC 7.3 (and PCS7 8.1); upgrading is advised. Other sources note mitigation steps and a broader s...
CVE-2014-4682
CVE-2014-4682 pertains to the WebNavigator server in Siemens SIMATIC WinCC (pre-7.3). Multiple sources describe that the WebNavigator at ports 80/443 could allow unauthenticated remote access to sensitive data via specially crafted HTTP requests, with a CVSSv2 base score of 5.0. The broader Sieme...
CVE-2014-4686
Siemens SIMATIC WinCC (before 7.3) contains a hard-coded encryption key in the Project administration component, enabling remote attackers to extract the key from another installation and use it to sniff traffic on TCP port 1030. This can lead to credential exposure and elevated privileges. Publi...
CVE-2016-7165
CVE-2016-7165 affects Siemens products including Primary Setup Tool, SIMATIC IT Production Suite, SIMATIC NET PC-Software, SIMATIC STEP 7 (TIA Portal) v13/v5.x, SIMATIC WinCC (TIA Portal) Basic/Professional/Runtime, SIMIT, SINEMA components, etc. Root cause: unquoted service paths enabling local ...
CVE-2013-3958
CVE-2013-3958 affects Siemens WinCC Web Navigator (7.2 and earlier, used with SIMATIC PCS7 8.0 SP1 and related products). The root cause is hard-coded credentials in the Web Navigator login system, enabling remote attackers with network access to log in as an authenticated user and potentially ex...
CVE-2012-3031
CVE-2012-3031 affects Siemens WinCC WebNavigator (Web interface for WinCC) in WinCC 7.0 SP3 and earlier. The vulnerability is reflected XSS (via a GET parameter, a POST parameter, or the Referer header) that could let an attacker inject arbitrary script/HTML. ICS-CERT notes the issues could allow...
CVE-2012-3034
The CVE-2012-3034 issue affects Siemens WinCC WebNavigator (used with SIMATIC PCS7) where crafted parameters to certain ActiveX controls allow remote attackers to obtain a user name and password. The root cause involves unsafe handling within ActiveX methods exposed by WebNavigator, enabling cred...
CVE-2013-0675
CVE-2013-0675 describes a remote buffer overflow in the CCEServer (central communications component) of Siemens WinCC prior to version 7.2, used in SIMATIC PCS7 prior to 8.0 SP1. A crafted packet to a dynamically assigned port can trigger a DoS condition on WinCC. Affected software is WinCC with ...
CVE-2013-0678
Siemens WinCC (before 7.2, used in SIMATIC PCS7 before 8.0 SP1) stores WebNavigator passwords in an MS SQL database without proper protection, enabling remote authenticated users with DB access to read credentials and obtain sensitive information. The root cause is information disclosure due to m...
CVE-2014-8552
CVE-2014-8552 : The WinCC family (SIMATIC WinCC 7.0 SP3 and earlier, 7.2 before Update 9, 7.3 before Update 2; PCS 7 7.1 SP4 and earlier, 8.0 before SP2 with WinCC 7.2 Update 9, 8.1 before Update 2; TIA Portal 13 before Update 6) contains an unauthenticated remote arbitrary-file-read vulnerabilit...
CVE-2012-3028
CVE-2012-3028 affects Siemens WinCC WebNavigator (7.0 SP3 and earlier). A CSRF flaw lets remote attackers hijack a user’s session to perform data-modifying actions or cause a denial of service. Mitigation: Siemens released SSA-864051 and an update for WinCC 7.0 SP3; apply the patch and limit expo...
CVE-2014-4683
The CVE-2014-4683 issue affects Siemens SIMATIC WinCC WebNavigator: remote authenticated users can escalate privileges via HTTP/HTTPS requests to the WebNavigator server (ports 80/443). Sources describe Prague: Privilege gain through WebNavigator’s access control, with explicit remediation in upd...
CVE-2013-0679
CVE-2013-0679 concerns Siemens WinCC Web Server: a Relative Path Traversal vulnerability that allows remote authenticated users to read arbitrary files by crafting a URL pathname. Affected products include WinCC prior to 7.2 (and SIMATIC PCS7 prior to 8.0 SP1); the issue arises in the Web server ...
CVE-2012-3030
Siemens WinCC WebNavigator (WebNavigator component) in WinCC 7.0 SP3 and earlier stores sensitive files under the web root with insufficient access controls, enabling a remote attacker to read (1) a log file or (2) a configuration file via a direct request. The issue is mapped to CVE-2012-3030 an...
CVE-2013-0677
The CVE-2013-0677 issue affects Siemens WinCC (pre-7.2) used in SIMATIC PCS7 pre-8.0 SP1 and related products. A crafted project file can allow remote attackers to access sensitive information or cause a DoS via the WinCC web server component. The root cause is improper handling of crafted projec...