CVE-2019-19282

CWE-1313 documents3 sources

Severity

7.5HIGH

EPSS

0.6%

top 31.99%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Simatic NET PC Siemens Simatic Route Control Siemens Openpcs 7 V8.1 +25 more

Timeline

PublishedMar 10

Latest updateMay 24

Description

A vulnerability has been identified in OpenPCS 7 V8.1 (All versions), OpenPCS 7 V8.2 (All versions), OpenPCS 7 V9.0 (All versions < V9.0 Upd3), SIMATIC BATCH V8.1 (All versions), SIMATIC BATCH V8.2 (All versions < V8.2 Upd12), SIMATIC BATCH V9.0 (All versions < V9.0 SP1 Upd5), SIMATIC NET PC Software V14 (All versions < V14 SP1 Update 14), SIMATIC NET PC Software V15 (All versions), SIMATIC NET PC Software V16 (All versions < V16 Update 1), SIMATIC PCS 7 V8.1 (All versions), SIMATIC PCS 7 V8.2 (…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages28 packages

▶CVEListV5siemens/simatic_wincc_(tia_portal)_v13All versions < V13 SP2

▶CVEListV5siemens/simatic_wincc_(tia_portal)_v14All versions < V14 SP1 Update 10

▶CVEListV5siemens/simatic_wincc_(tia_portal)_v16All versions < V16 Update 1

▶CVEListV5siemens/simatic_wincc_(tia_portal)_v15.1All versions < V15.1 Update 5

▶NVDsiemens/simatic_wincc7 versions+6

🔴Vulnerability Details

GHSA

GHSA-2pg9-8888-cqmc: A vulnerability has been identified in OpenPCS 7 V8↗2022-05-24

▶

CVEList

CVE-2019-19282: A vulnerability has been identified in OpenPCS 7 V8↗2020-03-10

▶