Low severity2.5NVD Advisory· Published Oct 13, 2016· Updated May 6, 2026

CVE-2016-7960

Description

Siemens SIMATIC STEP 7 (TIA Portal) before 14 uses an improper format for managing TIA project files during version updates, which makes it easier for local users to obtain sensitive configuration information via unspecified vectors.

Affected products

Siemens Foundation/Simatic Step 7
cpe:2.3:a:siemens:simatic_step_7:*:*:*:*:*:*:*:*
Range: <=13.010

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

ics-cert.us-cert.gov/advisories/ICSA-16-287-03nvdMitigationPatchThird Party AdvisoryUS Government ResourceVDB Entry
www.securityfocus.com/bid/93551nvdThird Party AdvisoryVDB Entry
www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-869766.pdfnvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.163
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000