The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6 allows remote attackers to read arbitrary files via crafted packets.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:19
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-134508.pdf - Vendor Advisory |
Information
Published : 2014-11-26 11:59
Updated : 2024-11-21 02:19
NVD link : CVE-2014-8552
Mitre link : CVE-2014-8552
CVE.ORG link : CVE-2014-8552
JSON object : View
Products Affected
siemens
- simatic_tiaportal
- simatic_pcs7
- simatic_pcs_7
- simatic_wincc
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor