Simatic Wincc Open Architecture
CVEs (4)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2014-1699 | 0.00 | — | 0.01 | Feb 7, 2014 | Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to cause a denial of service (monitoring-service outage) via malformed HTTP requests to port 4999. | ||
| CVE-2014-1698 | 0.00 | — | 0.01 | Feb 7, 2014 | Directory traversal vulnerability in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to read arbitrary files via crafted packets to TCP port 4999. | ||
| CVE-2014-1697 | 0.00 | — | 0.05 | Feb 7, 2014 | The integrated web server in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to execute arbitrary code via crafted packets to TCP port 4999. | ||
| CVE-2014-1696 | 0.00 | — | 0.01 | Feb 7, 2014 | Siemens SIMATIC WinCC OA before 3.12 P002 January uses a weak hash algorithm for passwords, which makes it easier for remote attackers to obtain access via a brute-force attack. |
- CVE-2014-1699Feb 7, 2014risk 0.00cvss —epss 0.01
Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to cause a denial of service (monitoring-service outage) via malformed HTTP requests to port 4999.
- CVE-2014-1698Feb 7, 2014risk 0.00cvss —epss 0.01
Directory traversal vulnerability in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to read arbitrary files via crafted packets to TCP port 4999.
- CVE-2014-1697Feb 7, 2014risk 0.00cvss —epss 0.05
The integrated web server in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to execute arbitrary code via crafted packets to TCP port 4999.
- CVE-2014-1696Feb 7, 2014risk 0.00cvss —epss 0.01
Siemens SIMATIC WinCC OA before 3.12 P002 January uses a weak hash algorithm for passwords, which makes it easier for remote attackers to obtain access via a brute-force attack.