Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
siemens wincc vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-2823
Siemens SIMATIC HMI Basic Panels 2nd Generation before WinCC (TIA Portal) 13 SP1 Upd2, SIMATIC HMI Comfort Panels before WinCC (TIA Portal) 13 SP1 Upd2, SIMATIC WinCC Runtime Advanced before WinCC (TIA Portal) 13 SP1 Upd2, SIMATIC WinCC Runtime Professional before WinCC (TIA Port...
Siemens Wincc 7.2
Siemens Wincc 7.3
Siemens Wincc 7.0
Siemens Wincc 7.1
Siemens Wincc
1 Article
NA
CVE-2012-3028
Cross-site request forgery (CSRF) vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, allows remote malicious users to hijack the authentication of arbitrary users for requests that modify data or cause a denia...
Siemens Simatic Pcs7 8.0
Siemens Wincc 6.0
Siemens Wincc 7.0
Siemens Wincc 5.0
Siemens Wincc
NA
CVE-2012-3030
WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, stores sensitive information under the web root with insufficient access control, which allows remote malicious users to read a (1) log file or (2) configuration file via a di...
Siemens Wincc 6.0
Siemens Simatic Pcs7 8.0
Siemens Wincc
Siemens Wincc 7.0
Siemens Wincc 5.0
NA
CVE-2012-3032
SQL injection vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, allows remote malicious users to execute arbitrary SQL commands via a crafted SOAP message.
Siemens Simatic Pcs7 8.0
Siemens Wincc 6.0
Siemens Wincc
Siemens Wincc 7.0
Siemens Wincc 5.0
NA
CVE-2012-3034
WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, allows remote malicious users to discover a username and password via crafted parameters to unspecified methods in ActiveX controls.
Siemens Wincc 6.0
Siemens Wincc 5.0
Siemens Wincc
Siemens Wincc 7.0
Siemens Simatic Pcs7 8.0
NA
CVE-2012-3031
Multiple cross-site scripting (XSS) vulnerabilities in WebNavigator in Siemens WinCC 7.0 SP3 and previous versions, as used in SIMATIC PCS7 and other products, allow remote malicious users to inject arbitrary web script or HTML via a (1) GET parameter, (2) POST parameter, or (3) ...
Siemens Wincc
Siemens Wincc 7.0
Siemens Simatic Pcs7 8.0
Siemens Wincc 6.0
Siemens Wincc 5.0
8.8
CVSSv3
CVE-2021-40360
A vulnerability has been identified in SIMATIC PCS 7 V8.2 (All versions), SIMATIC PCS 7 V9.0 (All versions), SIMATIC PCS 7 V9.1 (All versions < V9.1 SP1), SIMATIC WinCC V15 and previous versions (All versions < V15 SP1 Update 7), SIMATIC WinCC V16 (All versions < V16 Upd...
Siemens Simatic Pcs 7
Siemens Simatic Wincc 7.4
Siemens Simatic Wincc 14.0.1
Siemens Simatic Wincc 13
Siemens Simatic Wincc 7.5
Siemens Simatic Wincc
Siemens Simatic Wincc 15.1
Siemens Simatic Pcs 7 9.0
Siemens Simatic Wincc 16
Siemens Simatic Wincc 15
Siemens Simatic Wincc 17
Siemens Simatic Pcs 7 9.1
7.8
CVSSv3
CVE-2021-40363
A vulnerability has been identified in SIMATIC PCS 7 V8.2 (All versions), SIMATIC PCS 7 V9.0 (All versions), SIMATIC PCS 7 V9.1 (All versions < V9.1 SP1), SIMATIC WinCC V15 and previous versions (All versions < V15 SP1 Update 7), SIMATIC WinCC V16 (All versions < V16 Upd...
Siemens Simatic Pcs 7
Siemens Simatic Wincc 7.4
Siemens Simatic Wincc 14.0.1
Siemens Simatic Wincc 13
Siemens Simatic Wincc 7.5
Siemens Simatic Wincc
Siemens Simatic Wincc 15.1
Siemens Simatic Pcs 7 9.0
Siemens Simatic Wincc 16
Siemens Simatic Wincc 15
Siemens Simatic Wincc 17
Siemens Simatic Pcs 7 9.1
NA
CVE-2014-4686
The Project administration application in Siemens SIMATIC WinCC prior to 7.3, as used in PCS7 and other products, has a hardcoded encryption key, which allows remote malicious users to obtain sensitive information by extracting this key from another product installation and then ...
Siemens Wincc 7.1
Siemens Wincc
Siemens Wincc 6.0
Siemens Simatic Pcs7
Siemens Simatic Pcs7 7.1
Siemens Wincc 5.0
Siemens Wincc 7.0
Siemens Simatic Pcs7 8.0
NA
CVE-2014-4683
The WebNavigator server in Siemens SIMATIC WinCC prior to 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a (1) HTTP or (2) HTTPS request.
Siemens Simatic Pcs7
Siemens Wincc 7.1
Siemens Wincc
Siemens Wincc 6.0
Siemens Wincc 7.0
Siemens Simatic Pcs7 8.0
Siemens Wincc 5.0
Siemens Simatic Pcs7 7.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »