CVE-2013-3958
14.06.2013, 19:55
The login implementation in the Web Navigator in Siemens WinCC before 7.2 Update 1, as used in SIMATIC PCS7 8.0 SP1 and earlier and other products, has a hardcoded account, which makes it easier for remote attackers to obtain access via an unspecified request.Enginsight
Vendor | Product | Version |
---|---|---|
siemens | simatic_pcs7 | 𝑥 ≤ 8.0 |
siemens | simatic_pcs7 | 8.0 |
siemens | wincc | 𝑥 ≤ 7.2 |
siemens | wincc | 7.0 |
siemens | wincc | 7.0:sp1 |
siemens | wincc | 7.0:sp2 |
siemens | wincc | 7.0:sp3 |
siemens | wincc | 7.1 |
siemens | wincc | 7.1:sp1 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration