CVE-2014-4683

Name of the Vulnerable Software and Affected Versions Siemens SIMATIC WinCC versions prior to 7.3

Description The issue allows remote authenticated users to gain privileges. This can be achieved via an HTTP or HTTPS request. The vulnerability is related to errors in the code of the WinCC WebNavigator server.

Recommendations For versions prior to 7.3, update to version 7.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the WebNavigator server to minimize the risk of exploitation.