Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wincc vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv3
CVE-2018-4847
A vulnerability has been identified in SIMATIC WinCC OA Operator iOS App (All versions < V1.4). Insufficient protection of sensitive information (e.g. session key for accessing server) in Siemens WinCC OA Operator iOS app could allow an attacker with physical access to the mob...
Siemens Simatic Wincc Oa Operator -
1 Github repository
NA
CVE-2011-4515
Siemens WinCC (TIA Portal) 11 uses a reversible algorithm for storing HMI web-application passwords in world-readable and world-writable files, which allows local users to obtain sensitive information by leveraging (1) physical access or (2) Sm@rt Server access.
Siemens Wincc Tia Portal 11.0
6.7
CVSSv3
CVE-2018-4844
A vulnerability has been identified in SIMATIC WinCC OA UI for Android (All versions < V3.15.10), SIMATIC WinCC OA UI for iOS (All versions < V3.15.10). Insufficient limitation of CONTROL script capabilities could allow read and write access from one HMI project cache folde...
Siemens Simatic Wincc Oa Ui
1 Github repository
9.1
CVSSv3
CVE-2018-13799
A vulnerability has been identified in SIMATIC WinCC OA V3.14 and prior (All versions < V3.14-P021). Improper access control to a data point of the affected product could allow an unauthenticated remote user to escalate its privileges in the context of SIMATIC WinCC OA V3.14. ...
Siemens Simatic Wincc Open Architecture
7.4
CVSSv3
CVE-2017-6870
A vulnerability exists in Siemens SIMATIC WinCC Sm@rtClient for Android (All versions before V1.0.2.2). The existing TLS protocol implementation could allow an malicious user to read and modify data within a TLS session while performing a Man-in-the-Middle (MitM) attack.
Siemens Simatic Wincc Sm@rtclient
7.7
CVSSv3
CVE-2021-40359
A vulnerability has been identified in OpenPCS 7 V8.2 (All versions), OpenPCS 7 V9.0 (All versions < V9.0 Upd4), OpenPCS 7 V9.1 (All versions), SIMATIC BATCH V8.2 (All versions), SIMATIC BATCH V9.0 (All versions), SIMATIC BATCH V9.1 (All versions), SIMATIC NET PC Software V14 ...
Siemens Simatic Wincc
Siemens Simatic Wincc 7.5
Siemens Simatic Route Control 8.2
Siemens Simatic Net Pc 16
Siemens Simatic Route Control 9.0
Siemens Simatic Batch 9.0
Siemens Simatic Wincc 16
Siemens Simatic Wincc 17
Siemens Simatic Batch 8.2
Siemens Simatic Net Pc 15
Siemens Simatic Net Pc 14
Siemens Simatic Net Pc 17
Siemens Simatic Route Control 9.1
Siemens Simatic Batch 9.1
Siemens Simaticpcs 7
Siemens Simaticpcs 7 9.1
Siemens Simatic Wincc 15
8.1
CVSSv3
CVE-2016-9160
A vulnerability in SIEMENS SIMATIC WinCC (All versions < SIMATIC WinCC V7.2) and SIEMENS SIMATIC PCS 7 (All versions < SIMATIC PCS 7 V8.0 SP1) could allow a remote malicious user to crash an ActiveX component or leak parts of the application memory if a user is tricked into...
Siemens Simatic Pcs 7
Siemens Simatic Wincc
9.8
CVSSv3
CVE-2019-10922
A vulnerability has been identified in SIMATIC PCS 7 V8.0 and previous versions (All versions), SIMATIC PCS 7 V8.1 and newer (All versions), SIMATIC WinCC V7.2 and previous versions (All versions), SIMATIC WinCC V7.3 and newer (All versions). An attacker with network access to af...
Siemens Simatic Pcs 7
Siemens Simatic Wincc
7.8
CVSSv3
CVE-2010-2772
Siemens Simatic WinCC and PCS 7 SCADA system uses a hard-coded password, which allows local users to access a back-end database and gain privileges, as demonstrated in the wild in July 2010 by the Stuxnet worm, a different vulnerability than CVE-2010-2568.
Siemens Simatic Wincc 6.2
Siemens Simatic Wincc 7.0
Siemens Simatic Pcs 7 7.1
Siemens Simatic Pcs 7 6.0
Siemens Simatic Pcs 7 6.1
Siemens Simatic Pcs 7 7.0
2 Github repositories
9.8
CVSSv3
CVE-2016-5743
Siemens SIMATIC WinCC prior to 7.3 Update 10 and 7.4 before Update 1, SIMATIC BATCH prior to 8.1 SP1 Update 9 as distributed in SIMATIC PCS 7 up to and including 8.1 SP1, SIMATIC OpenPCS 7 prior to 8.1 Update 3 as distributed in SIMATIC PCS 7 up to and including 8.1 SP1, SIMATIC ...
Siemens Simatic Batch
Siemens Simatic Wincc
Siemens Simatic Openpcs 7
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »