Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
siemens wincc 7.0 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2012-3028
Cross-site request forgery (CSRF) vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, allows remote malicious users to hijack the authentication of arbitrary users for requests that modify data or cause a denia...
Siemens Simatic Pcs7 8.0
Siemens Wincc 6.0
Siemens Wincc 7.0
Siemens Wincc 5.0
Siemens Wincc
5
CVSSv2
CVE-2012-3030
WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, stores sensitive information under the web root with insufficient access control, which allows remote malicious users to read a (1) log file or (2) configuration file via a di...
Siemens Wincc 6.0
Siemens Simatic Pcs7 8.0
Siemens Wincc
Siemens Wincc 7.0
Siemens Wincc 5.0
4.3
CVSSv2
CVE-2012-3031
Multiple cross-site scripting (XSS) vulnerabilities in WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, allow remote malicious users to inject arbitrary web script or HTML via a (1) GET parameter, (2) POST parameter, or (3) ...
Siemens Wincc
Siemens Wincc 7.0
Siemens Simatic Pcs7 8.0
Siemens Wincc 6.0
Siemens Wincc 5.0
7.5
CVSSv2
CVE-2012-3032
SQL injection vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, allows remote malicious users to execute arbitrary SQL commands via a crafted SOAP message.
Siemens Simatic Pcs7 8.0
Siemens Wincc 6.0
Siemens Wincc
Siemens Wincc 7.0
Siemens Wincc 5.0
4.3
CVSSv2
CVE-2012-3034
WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, allows remote malicious users to discover a username and password via crafted parameters to unspecified methods in ActiveX controls.
Siemens Wincc 6.0
Siemens Wincc 5.0
Siemens Wincc
Siemens Wincc 7.0
Siemens Simatic Pcs7 8.0
5.8
CVSSv2
CVE-2012-3003
Open redirect vulnerability in an unspecified web application in Siemens WinCC 7.0 SP3 before Update 2 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in a GET request.
Siemens Wincc 7.0
4.3
CVSSv2
CVE-2012-2595
Multiple cross-site scripting (XSS) vulnerabilities in unspecified web applications in Siemens WinCC 7.0 SP3 before Update 2 allow remote malicious users to inject arbitrary web script or HTML via vectors involving special characters in parameters.
Siemens Wincc 7.0
4
CVSSv2
CVE-2012-2597
Multiple directory traversal vulnerabilities in Siemens WinCC 7.0 SP3 before Update 2 allow remote authenticated users to read arbitrary files via a crafted parameter in a URL.
Siemens Wincc 7.0
5.5
CVSSv2
CVE-2012-2596
The XPath functionality in unspecified web applications in Siemens WinCC 7.0 SP3 before Update 2 does not properly handle special characters in parameters, which allows remote authenticated users to read or modify settings via a crafted URL, related to an "XML injection"...
Siemens Wincc 7.0
4.3
CVSSv2
CVE-2012-2598
Buffer overflow in the DiagAgent web server in Siemens WinCC 7.0 SP3 through Update 2 allows remote malicious users to cause a denial of service (agent outage) via crafted input.
Siemens Wincc 7.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »