The login implementation in the Web Navigator in Siemens WinCC prior to 7.2 Update 1, as used in SIMATIC PCS7 8.0 SP1 and previous versions and other products, has a hardcoded account, which makes it easier for remote malicious users to obtain access via an unspecified request.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
siemens simatic pcs7 8.0 |
||
siemens simatic pcs7 |
||
siemens wincc |
||
siemens wincc 7.0 |
||
siemens wincc 7.1 |