13 matches found
CVE-2019-10935
CVE-2019-10935 applies to Siemens SIMATIC WinCC/PCS7 family (PCS 7 v8.x/9.x and WinCC variants) where the WinCC DataMonitor web application allows an authenticated, network-accessible attacker to upload arbitrary ASPX code. The vulnerability enables unrestricted file upload without user interacti...
CVE-2022-30694
Summary: CVE-2022-30694 is a CSRF vulnerability in the Siemens web server login endpoint "/FormLogin" that can allow an authenticated attacker to track other users’ activities by bypassing origin checks. The issue affects multiple Siemens products including SIMATIC Drive Controllers, SIMATIC ET 2...
CVE-2021-40142
In the OPC Foundation Local Discovery Server (LDS), versions before 1.04.402.463 are vulnerable to a DoS caused by crafted messages that trigger an access to memory location after the end of a buffer (CVE-2021-40142). The issue affects LDS and related Siemens products listed in ICS/CISA advisorie...
CVE-2019-10929
CVE-2019-10929 affects Siemens SIMATIC products (S7-1200/1500 families, ET200SP Open Controllers, HMI/WinCC/STEP 7, TIM 1531 IRC, etc.). The flaw is a message protection bypass caused by properties in the integrity-protection calculation, enabling a man-in-the-middle attacker with network access ...
CVE-2019-6576
CVE-2019-6576 affects Siemens SIMATIC HMI Comfort Panels (4"–22"), Comfort Outdoor Panels (7"/15"), KTP Mobile Panels (KTP400F, KTP700, KTP700F, KTP900, KTP900F), WinCC Runtime Advanced/Professional, WinCC (TIA Portal) and HMI Classic Devices (all versions prior to V15.1 Update 1). Root cause: in...
CVE-2018-13812
Siemens SIMATIC HMI/WinCC devices are affected by CVE-2018-13812: a directory traversal flaw in the integrated web server that allows an attacker with network access (no authentication, no user interaction) to download arbitrary files from affected panels and runtimes (4"–22" Comfort Panels, Comf...
CVE-2019-6577
CVE-2019-6577 is an XSS vulnerability in Siemens SIMATIC HMI/WinCC products (Comfort Panels, Outdoor Panels, KTP Mobile Panels, WinCC Runtime/Pro, WinCC in TIAPortal, and HMI Classic devices) exploitable via the integrated web server when an attacker can modify device configuration through SNMP. ...
CVE-2019-6572
CVE-2019-6572 affects Siemens SIMATIC HMI Comfort Panels (4"–22"), Comfort Outdoor Panels (7"/15"), KTP Mobile Panels, WinCC Runtime Advanced/Professional, WinCC (TIA Portal) and HMI Classic Devices all versions before V15.1 Update 1. The root cause is use of a hardcoded SNMP community string ena...
CVE-2018-13813
Siemens CVE-2018-13813 affects SIMATIC HMI Comfort Panels (4"–22"), Comfort Outdoor Panels (7" & 15"), KTP Mobile Panels (KTP400F, KTP700/700F, KTP900/900F), WinCC Runtime Advanced/Professional, WinCC (TIA Portal), and HMI Classic Devices (all versions) prior to V15 Update 4. The vulnerability is...
CVE-2018-13814
CVE-2018-13814 affects Siemens SIMATIC panels and WinCC components prior to version 14, including HMI Comfort Panels (4"–22"), Comfort Outdoor Panels (7"/15"), KTP Mobile Panels (KTP400F/700/700F/900/900F), WinCC Runtime Advanced/Professional, WinCC (TIA Portal), and HMI Classic Devices. The vuln...
CVE-2016-7165
CVE-2016-7165 affects Siemens products including Primary Setup Tool, SIMATIC IT Production Suite, SIMATIC NET PC-Software, SIMATIC STEP 7 (TIA Portal) v13/v5.x, SIMATIC WinCC (TIA Portal) Basic/Professional/Runtime, SIMIT, SINEMA components, etc. Root cause: unquoted service paths enabling local ...
CVE-2011-3321
CVE-2011-3321 affects Siemens WinCC flexible Runtime and SIMATIC WinCC (TIA Portal) Runtime Advanced Loader. The issue is a heap-based buffer overflow in the loader’s handling of inputs on 2308/TCP, enabling remote attackers to cause memory corruption and potentially execute arbitrary code or cau...
CVE-2017-6867
CVE-2017-6867 affects Siemens SIMATIC WinCC family (WinCC v7.3 before Update 11, WinCC v7.4 before SP1; WinCC Runtime Professional v13 before SP2, v14 before SP1; WinCC (TIA Portal) Professional v13 before SP2, v14 before SP1). The issue is improper input validation allowing an authenticated remo...