Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Simatic_wincc
(Siemens)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 30 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2016-12-17 | CVE-2016-9160 | A vulnerability in SIEMENS SIMATIC WinCC (All versions < SIMATIC WinCC V7.2) and SIEMENS SIMATIC PCS 7 (All versions < SIMATIC PCS 7 V8.0 SP1) could allow a remote attacker to crash an ActiveX component or leak parts of the application memory if a user is tricked into clicking on a malicious link under certain conditions. | Simatic_pcs_7, Simatic_wincc | 8.1 | ||
| 2016-11-15 | CVE-2016-7165 | A vulnerability has been identified in Primary Setup Tool (PST) (All versions < V4.2 HF1), SIMATIC IT Production Suite (All versions < V7.0 SP1 HFX 2), SIMATIC NET PC-Software (All versions < V14), SIMATIC PCS 7 V7.1 (All versions), SIMATIC PCS 7 V8.0 (All versions), SIMATIC PCS 7 V8.1 (All versions), SIMATIC PCS 7 V8.2 (All versions < V8.2 SP1), SIMATIC STEP 7 (TIA Portal) V13 (All versions < V13 SP2), SIMATIC STEP 7 V5.X (All versions < V5.5 SP4 HF11), SIMATIC WinCC (TIA Portal) Basic,... | Primary_setup_tool, Security_configuration_tool, Simatic_it_production_suite, Simatic_net_pc_software, Simatic_pcs7, Simatic_pcs_7, Simatic_step_7, Simatic_step_7_\(Tia_portal\), Simatic_winac_rtx_2010, Simatic_winac_rtx_f_2010, Simatic_wincc, Simatic_wincc_\(Tia_portal\), Simatic_wincc_runtime, Simit, Sinema_remote_connect, Sinema_server, Softnet_security_client, Telecontrol_basic | 6.4 | ||
| 2016-07-22 | CVE-2016-5744 | Siemens SIMATIC WinCC 7.0 through SP3 and 7.2 allows remote attackers to read arbitrary WinCC station files via crafted packets. | Simatic_wincc | 7.5 | ||
| 2016-07-22 | CVE-2016-5743 | Siemens SIMATIC WinCC before 7.3 Update 10 and 7.4 before Update 1, SIMATIC BATCH before 8.1 SP1 Update 9 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.1 Update 3 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.2 Update 1 as distributed in SIMATIC PCS 7 8.2, and SIMATIC WinCC Runtime Professional before 13 SP1 Update 9 allow remote attackers to execute arbitrary code via crafted packets. | Simatic_batch, Simatic_openpcs_7, Simatic_wincc | 9.8 | ||
| 2014-11-26 | CVE-2014-8552 | The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6 allows remote attackers to read arbitrary files via crafted packets. | Simatic_pcs7, Simatic_pcs_7, Simatic_tiaportal, Simatic_wincc | N/A | ||
| 2014-11-26 | CVE-2014-8551 | The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6 allows remote attackers to execute arbitrary code via crafted packets. | Simatic_pcs7, Simatic_pcs_7, Simatic_tiaportal, Simatic_wincc | N/A |