Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wincc vulnerabilities and exploits
(subscribe to this query)
409
VMScore
CVE-2017-6871
A vulnerability exists in Siemens SIMATIC WinCC Sm@rtClient for Android (All versions before V1.0.2.2) and SIMATIC WinCC Sm@rtClient for Android Lite (All versions before V1.0.2.2). An attacker with physical access to an unlocked mobile device, that has the affected app running, ...
Siemens Simatic Wincc Sm\\@rtclient Lite
Siemens Simatic Wincc Sm\\@rtclient
605
VMScore
CVE-2022-33139
A vulnerability has been identified in Cerberus DMS (All versions), Desigo CC (All versions), Desigo CC Compact (All versions), SIMATIC WinCC OA V3.16 (All versions in default configuration), SIMATIC WinCC OA V3.17 (All versions in non-default configuration), SIMATIC WinCC OA V3....
Siemens Desigo Cc
Siemens Wincc Open Architecture 3.16
Siemens Wincc Open Architecture 3.17
Siemens Wincc Open Architecture 3.18
Siemens Desigo Cc Compact
Siemens Cerberus Dms
632
VMScore
CVE-2019-19282
A vulnerability has been identified in OpenPCS 7 V8.1 (All versions), OpenPCS 7 V8.2 (All versions), OpenPCS 7 V9.0 (All versions < V9.0 Upd3), SIMATIC BATCH V8.1 (All versions), SIMATIC BATCH V8.2 (All versions < V8.2 Upd12), SIMATIC BATCH V9.0 (All versions < V9.0 SP1 ...
Siemens Simatic Pcs 7 8.1
Siemens Simatic Pcs 7 8.2
Siemens Simatic Wincc 7.4
Siemens Simatic Wincc 7.5.1
Siemens Simatic Wincc 14.0.1
Siemens Simatic Wincc 13
Siemens Simatic Net Pc 16
Siemens Simatic Net Pc
Siemens Simatic Wincc 7.5
Siemens Simatic Route Control 9.0
Siemens Simatic Batch 9.0
Siemens Simatic Wincc 15.1
Siemens Simatic Pcs 7 9.0
Siemens Openpcs 7 9.0
Siemens Simatic Route Control
Siemens Simatic Wincc 16
Siemens Openpcs 7 9.0 Update 1
NA
CVE-2023-30897
A vulnerability has been identified in SIMATIC WinCC (All versions < V7.5.2.13). Affected applications fail to set proper access rights for their installation folder if a non-default installation path was chosen during installation. This could allow an authenticated local mali...
Siemens Wincc
383
VMScore
CVE-2015-2822
Siemens SIMATIC HMI Comfort Panels before WinCC (TIA Portal) 13 SP1 Upd2 and SIMATIC WinCC Runtime Advanced before WinCC (TIA Portal) 13 SP1 Upd2 allow man-in-the-middle malicious users to cause a denial of service via crafted packets on TCP port 102.
Siemens Wincc
516
VMScore
CVE-2012-3003
Open redirect vulnerability in an unspecified web application in Siemens WinCC 7.0 SP3 before Update 2 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in a GET request.
Siemens Wincc 7.0
383
VMScore
CVE-2012-2595
Multiple cross-site scripting (XSS) vulnerabilities in unspecified web applications in Siemens WinCC 7.0 SP3 before Update 2 allow remote malicious users to inject arbitrary web script or HTML via vectors involving special characters in parameters.
Siemens Wincc 7.0
490
VMScore
CVE-2012-2596
The XPath functionality in unspecified web applications in Siemens WinCC 7.0 SP3 before Update 2 does not properly handle special characters in parameters, which allows remote authenticated users to read or modify settings via a crafted URL, related to an "XML injection"...
Siemens Wincc 7.0
356
VMScore
CVE-2012-2597
Multiple directory traversal vulnerabilities in Siemens WinCC 7.0 SP3 before Update 2 allow remote authenticated users to read arbitrary files via a crafted parameter in a URL.
Siemens Wincc 7.0
383
VMScore
CVE-2012-2598
Buffer overflow in the DiagAgent web server in Siemens WinCC 7.0 SP3 through Update 2 allows remote malicious users to cause a denial of service (agent outage) via crafted input.
Siemens Wincc 7.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »