Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
siemens simatic wincc vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2017-6871
A vulnerability exists in Siemens SIMATIC WinCC Sm@rtClient for Android (All versions before V1.0.2.2) and SIMATIC WinCC Sm@rtClient for Android Lite (All versions before V1.0.2.2). An attacker with physical access to an unlocked mobile device, that has the affected app running, ...
Siemens Simatic Wincc Sm@rtclient
Siemens Simatic Wincc Sm@rtclient Lite
NA
CVE-2015-5084
The Siemens SIMATIC WinCC Sm@rtClient and Sm@rtClient Lite applications prior to 01.00.01.00 for Android do not properly store passwords, which allows physically proximate malicious users to obtain sensitive information via unspecified vectors.
Siemens Simatic Wincc Sm@rtclient
Siemens Simatic Wincc Sm@rtclient Lite
NA
CVE-2012-3028
Cross-site request forgery (CSRF) vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, allows remote malicious users to hijack the authentication of arbitrary users for requests that modify data or cause a denia...
Siemens Simatic Pcs7 8.0
Siemens Wincc 6.0
Siemens Wincc 7.0
Siemens Wincc 5.0
Siemens Wincc
NA
CVE-2012-3030
WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, stores sensitive information under the web root with insufficient access control, which allows remote malicious users to read a (1) log file or (2) configuration file via a di...
Siemens Simatic Pcs7 8.0
Siemens Wincc 6.0
Siemens Wincc 7.0
Siemens Wincc 5.0
Siemens Wincc
NA
CVE-2012-3031
Multiple cross-site scripting (XSS) vulnerabilities in WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, allow remote malicious users to inject arbitrary web script or HTML via a (1) GET parameter, (2) POST parameter, or (3) ...
Siemens Simatic Pcs7 8.0
Siemens Wincc 6.0
Siemens Wincc 7.0
Siemens Wincc 5.0
Siemens Wincc
NA
CVE-2012-3032
SQL injection vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, allows remote malicious users to execute arbitrary SQL commands via a crafted SOAP message.
Siemens Simatic Pcs7 8.0
Siemens Wincc 6.0
Siemens Wincc 7.0
Siemens Wincc 5.0
Siemens Wincc
NA
CVE-2012-3034
WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, allows remote malicious users to discover a username and password via crafted parameters to unspecified methods in ActiveX controls.
Siemens Simatic Pcs7 8.0
Siemens Wincc 6.0
Siemens Wincc 7.0
Siemens Wincc 5.0
Siemens Wincc
NA
CVE-2013-0678
Siemens WinCC prior to 7.2, as used in SIMATIC PCS7 prior to 8.0 SP1 and other products, does not properly represent WebNavigator credentials in a database, which makes it easier for remote authenticated users to obtain sensitive information via a SQL query.
Siemens Simatic Pcs7
Siemens Wincc 7.0
Siemens Wincc
9.8
CVSSv3
CVE-2016-5743
Siemens SIMATIC WinCC prior to 7.3 Update 10 and 7.4 before Update 1, SIMATIC BATCH prior to 8.1 SP1 Update 9 as distributed in SIMATIC PCS 7 up to and including 8.1 SP1, SIMATIC OpenPCS 7 prior to 8.1 Update 3 as distributed in SIMATIC PCS 7 up to and including 8.1 SP1, SIMATIC ...
Siemens Simatic Batch
Siemens Simatic Wincc
Siemens Simatic Openpcs 7
7.5
CVSSv3
CVE-2021-40142
In OPC Foundation Local Discovery Server (LDS) prior to 1.04.402.463, remote attackers can cause a denial of service (DoS) by sending carefully crafted messages that lead to Access of a Memory Location After the End of a Buffer.
Opcfoundation Local Discover Server
Siemens Simatic Process Historian Opc Ua Server Firmware
Siemens Simatic Process Historian Opc Ua Server Firmware 2022
Siemens Simatic Wincc Runtime -
Siemens Simatic Wincc -
Siemens Simatic Net Pc 16
Siemens Simatic Net Pc 15
Siemens Simatic Net Pc 14
Siemens Telecontrol Server Basic 3.0
Siemens Simatic Net Pc 17
Siemens Simatic Wincc Unified Scada Runtime -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »