CVE-2012-3032
published 2012-09-18CVE-2012-3032: SQL injection vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and earlier, as used in SIMATIC PCS7 and other products, allows remote attackers to…
high7.5CVSS 3.1
AVNACLAuNCPIPAP
SQL injection vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and earlier, as used in SIMATIC PCS7 and other products, allows remote attackers to execute arbitrary SQL commands via a crafted SOAP message.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| siemens | simatic_pcs7 | — | — |
| siemens | wincc | <= 7.0 | — |
| siemens | wincc | — | — |
| siemens | wincc | — | — |
| siemens | wincc | — | — |