VYPR
Unrated severityNVD Advisory· Published Jun 14, 2013· Updated Jun 16, 2026

CVE-2013-3958

CVE-2013-3958

Description

The login implementation in the Web Navigator in Siemens WinCC before 7.2 Update 1, as used in SIMATIC PCS7 8.0 SP1 and earlier and other products, has a hardcoded account, which makes it easier for remote attackers to obtain access via an unspecified request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

10
  • cpe:2.3:a:siemens:simatic_pcs7:8.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:siemens:simatic_pcs7:8.0:*:*:*:*:*:*:*
    • cpe:2.3:a:siemens:simatic_pcs7:*:sp1:*:*:*:*:*:*range: <=8.0
  • cpe:2.3:a:siemens:wincc:*:*:*:*:*:*:*:*+ 7 more
    • cpe:2.3:a:siemens:wincc:*:*:*:*:*:*:*:*range: <=7.2
    • cpe:2.3:a:siemens:wincc:7.0:*:*:*:*:*:*:*
    • cpe:2.3:a:siemens:wincc:7.0:sp1:*:*:*:*:*:*
    • cpe:2.3:a:siemens:wincc:7.0:sp2:*:*:*:*:*:*
    • cpe:2.3:a:siemens:wincc:7.0:sp3:*:*:*:*:*:*
    • cpe:2.3:a:siemens:wincc:7.1:*:*:*:*:*:*:*
    • cpe:2.3:a:siemens:wincc:7.1:sp1:*:*:*:*:*:*
    • (no CPE)range: <7.2 SP1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.