Web Server Vulnerability in Siemens WinCC and SIMATIC PCS7 Products
CVE-2013-0677

Currently unrated

Key Information:

Vendor: Siemens
Status: Simatic Pcs7; Wincc
Vendor: CVE Published:; 21 March 2013

What is CVE-2013-0677?

A vulnerability exists in the web server component of Siemens WinCC versions prior to 7.2 and SIMATIC PCS7 versions prior to 8.0 SP1, which could allow remote attackers to exploit crafted project files. This could lead to unauthorized access to sensitive information or potentially disrupt services.

References

http://www.siemens.com/corporate-technology/pool/de/forsc...

x_refsource_CONFIRM

http://ics-cert.us-cert.gov/pdf/ICSA-13-079-02.pdf

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Mar 21, 2013