Simatic Wincc Open Architecture Security Vulnerabilities and Issues — Simatic Wincc Open Architecture CVE List

Lucene search

SiemensSimatic Wincc Open Architecture

4 matches found

CVE•added 2014/02/07 4:52 a.m.•51 views

CVE-2014-1696

Siemens SIMATIC WinCC OA before 3.12 P002 January uses a weak hash algorithm for passwords, which makes it easier for remote attackers to obtain access via a brute-force attack.

5CVSS6.6AI score0.00584EPSS

CVE•added 2014/02/07 4:52 a.m.•42 views

CVE-2014-1699

Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to cause a denial of service (monitoring-service outage) via malformed HTTP requests to port 4999.

5CVSS6.8AI score0.01192EPSS

CVE•added 2014/02/07 4:52 a.m.•37 views

CVE-2014-1698

Directory traversal vulnerability in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to read arbitrary files via crafted packets to TCP port 4999.

5CVSS6.9AI score0.00735EPSS

CVE•added 2014/02/07 4:52 a.m.•33 views

CVE-2014-1697

The integrated web server in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to execute arbitrary code via crafted packets to TCP port 4999.

7.5CVSS7.8AI score0.04508EPSS