Unrated severityNVD Advisory· Published Mar 21, 2013· Updated Jun 16, 2026
CVE-2013-0674
CVE-2013-0674
Description
Buffer overflow in the RegReader ActiveX control in Siemens WinCC before 7.2, as used in SIMATIC PCS7 before 8.0 SP1 and other products, allows remote attackers to execute arbitrary code via a long parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
15cpe:2.3:a:siemens:simatic_pcs7:*:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:siemens:simatic_pcs7:*:*:*:*:*:*:*:*range: <=8.0
- cpe:2.3:a:siemens:simatic_pcs7:7.1:sp3:*:*:*:*:*:*
- (no CPE)range: <8.0 SP1
cpe:2.3:a:siemens:wincc:*:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:a:siemens:wincc:*:*:*:*:*:*:*:*range: <=7.1
- cpe:2.3:a:siemens:wincc:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:siemens:wincc:5.0:sp1:*:*:*:*:*:*
- cpe:2.3:a:siemens:wincc:6.0:*:*:*:*:*:*:*
- cpe:2.3:a:siemens:wincc:6.0:sp2:*:*:*:*:*:*
- cpe:2.3:a:siemens:wincc:6.0:sp3:*:*:*:*:*:*
- cpe:2.3:a:siemens:wincc:6.0:sp4:*:*:*:*:*:*
- cpe:2.3:a:siemens:wincc:7.0:*:*:*:*:*:*:*
- cpe:2.3:a:siemens:wincc:7.0:sp1:*:*:*:*:*:*
- cpe:2.3:a:siemens:wincc:7.0:sp2:*:*:*:*:*:*
- cpe:2.3:a:siemens:wincc:7.0:sp3:*:*:*:*:*:*
- (no CPE)range: <7.2
Patches
Vulnerability mechanics
References
2- www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-714398.pdfnvdVendor Advisory
- ics-cert.us-cert.gov/pdf/ICSA-13-079-02.pdfnvdUS Government Resource
News mentions
0No linked articles in our index yet.