CVE-2016-5743
published 2016-07-22CVE-2016-5743: Siemens SIMATIC WinCC before 7.3 Update 10 and 7.4 before Update 1, SIMATIC BATCH before 8.1 SP1 Update 9 as distributed in SIMATIC PCS 7 through 8.1 SP1…
critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
Siemens SIMATIC WinCC before 7.3 Update 10 and 7.4 before Update 1, SIMATIC BATCH before 8.1 SP1 Update 9 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.1 Update 3 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.2 Update 1 as distributed in SIMATIC PCS 7 8.2, and SIMATIC WinCC Runtime Professional before 13 SP1 Update 9 allow remote attackers to execute arbitrary code via crafted packets.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| siemens | simatic_batch | <= 7.1 | — |
| siemens | simatic_openpcs_7 | <= 8.1 | — |
| siemens | simatic_openpcs_7 | <= 8.2 | — |
| siemens | simatic_wincc | <= 7.3 | — |
| siemens | simatic_wincc | <= 7.4 | — |