CVE-2013-3958
published 2013-06-14CVE-2013-3958: The login implementation in the Web Navigator in Siemens WinCC before 7.2 Update 1, as used in SIMATIC PCS7 8.0 SP1 and earlier and other products, has a…
high7.5CVSS 3.1
AVNACLAuNCPIPAP
The login implementation in the Web Navigator in Siemens WinCC before 7.2 Update 1, as used in SIMATIC PCS7 8.0 SP1 and earlier and other products, has a hardcoded account, which makes it easier for remote attackers to obtain access via an unspecified request.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| siemens | simatic_pcs7 | <= 8.0 | — |
| siemens | simatic_pcs7 | — | — |
| siemens | wincc | <= 7.2 | — |
| siemens | wincc | — | — |
| siemens | wincc | — | — |