PT-2015-5915 · Siemens · Simatic Wincc Runtime Advanced+1

Publicado

2015-04-08

Atualizado

2016-11-28

CVE-2015-2822

CVSS v2.0

4.3

Média

Vetor

AV:N/AC:M/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions Siemens SIMATIC HMI Comfort Panels versions prior to WinCC (TIA Portal) 13 SP1 Upd2 Siemens SIMATIC WinCC Runtime Advanced versions prior to WinCC (TIA Portal) 13 SP1 Upd2

Description The issue allows man-in-the-middle attackers to cause a denial of service via crafted packets on TCP port 102.

Recommendations For Siemens SIMATIC HMI Comfort Panels versions prior to WinCC (TIA Portal) 13 SP1 Upd2, update to WinCC (TIA Portal) 13 SP1 Upd2 or later. For Siemens SIMATIC WinCC Runtime Advanced versions prior to WinCC (TIA Portal) 13 SP1 Upd2, update to WinCC (TIA Portal) 13 SP1 Upd2 or later.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2015-2822

Produtos afetados

Simatic Hmi Comfort Panels

Simatic Wincc Runtime Advanced

PT-2015-5915 · Siemens · Simatic Wincc Runtime Advanced+1

CVE-2015-2822

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4