Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
siemens simatic wincc vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2014-4682
The WebNavigator server in Siemens SIMATIC WinCC prior to 7.3, as used in PCS7 and other products, allows remote malicious users to obtain sensitive information via an HTTP request.
Siemens Simatic Pcs7
Siemens Simatic Pcs7 8.0
Siemens Wincc 7.1
Siemens Wincc
Siemens Wincc 6.0
Siemens Wincc 7.0
Siemens Simatic Pcs7 7.1
Siemens Wincc 5.0
6
CVSSv2
CVE-2014-4684
The database server in Siemens SIMATIC WinCC prior to 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a request to TCP port 1433.
Siemens Simatic Pcs7
Siemens Wincc 7.1
Siemens Wincc
Siemens Wincc 6.0
Siemens Simatic Pcs7 7.1
Siemens Wincc 5.0
Siemens Wincc 7.0
Siemens Simatic Pcs7 8.0
4.6
CVSSv2
CVE-2014-4685
Siemens SIMATIC WinCC prior to 7.3, as used in PCS7 and other products, allows local users to gain privileges by leveraging weak system-object access control.
Siemens Simatic Pcs7
Siemens Wincc 7.1
Siemens Wincc
Siemens Wincc 6.0
Siemens Simatic Pcs7 8.0
Siemens Wincc 5.0
Siemens Wincc 7.0
Siemens Simatic Pcs7 7.1
6.8
CVSSv2
CVE-2014-4686
The Project administration application in Siemens SIMATIC WinCC prior to 7.3, as used in PCS7 and other products, has a hardcoded encryption key, which allows remote malicious users to obtain sensitive information by extracting this key from another product installation and then ...
Siemens Wincc 7.1
Siemens Wincc
Siemens Wincc 6.0
Siemens Simatic Pcs7
Siemens Simatic Pcs7 7.1
Siemens Wincc 5.0
Siemens Wincc 7.0
Siemens Simatic Pcs7 8.0
4.9
CVSSv2
CVE-2014-4683
The WebNavigator server in Siemens SIMATIC WinCC prior to 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a (1) HTTP or (2) HTTPS request.
Siemens Simatic Pcs7
Siemens Wincc 7.1
Siemens Wincc
Siemens Wincc 6.0
Siemens Wincc 7.0
Siemens Simatic Pcs7 8.0
Siemens Wincc 5.0
Siemens Simatic Pcs7 7.1
7.5
CVSSv2
CVE-2014-1697
The integrated web server in Siemens SIMATIC WinCC OA prior to 3.12 P002 January allows remote malicious users to execute arbitrary code via crafted packets to TCP port 4999.
Siemens Simatic Wincc Open Architecture
5
CVSSv2
CVE-2014-1696
Siemens SIMATIC WinCC OA prior to 3.12 P002 January uses a weak hash algorithm for passwords, which makes it easier for remote malicious users to obtain access via a brute-force attack.
Siemens Simatic Wincc Open Architecture
5
CVSSv2
CVE-2014-1698
Directory traversal vulnerability in Siemens SIMATIC WinCC OA prior to 3.12 P002 January allows remote malicious users to read arbitrary files via crafted packets to TCP port 4999.
Siemens Simatic Wincc Open Architecture
5
CVSSv2
CVE-2014-1699
Siemens SIMATIC WinCC OA prior to 3.12 P002 January allows remote malicious users to cause a denial of service (monitoring-service outage) via malformed HTTP requests to port 4999.
Siemens Simatic Wincc Open Architecture
6.8
CVSSv2
CVE-2013-4911
Cross-site request forgery (CSRF) vulnerability in Siemens WinCC (TIA Portal) 11 and 12 prior to 12 SP1 allows remote malicious users to hijack the authentication of unspecified victims by leveraging improper configuration of SIMATIC HMI panels by the WinCC product.
Siemens Wincc 12.0
Siemens Wincc 11.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »