Wincc Security Vulnerabilities and Issues — Wincc CVE List

Lucene search

SiemensWincc

5 matches found

CVE•added 2014/07/24 2:55 p.m.•70 views

CVE-2014-4684

The database server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a request to TCP port 1433.

6CVSS6.6AI score0.00366EPSS

CVE•added 2014/07/24 2:55 p.m.•49 views

CVE-2014-4682

The WebNavigator server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote attackers to obtain sensitive information via an HTTP request.

5CVSS6.2AI score0.0023EPSS

CVE•added 2014/07/24 2:55 p.m.•48 views

CVE-2014-4685

Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows local users to gain privileges by leveraging weak system-object access control.

4.6CVSS6.6AI score0.00054EPSS

CVE•added 2014/07/24 2:55 p.m.•46 views

CVE-2014-4686

The Project administration application in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, has a hardcoded encryption key, which allows remote attackers to obtain sensitive information by extracting this key from another product installation and then employing this key during t...

6.8CVSS6.1AI score0.00231EPSS

CVE•added 2014/07/24 2:55 p.m.•41 views

CVE-2014-4683

The WebNavigator server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a (1) HTTP or (2) HTTPS request.

4.9CVSS6.6AI score0.00157EPSS