Vulnerability in Siemens Simatic_pcs7
CVE-2013-3958
The login implementation in the Web Navigator in Siemens WinCC before 7.2 Update 1, as used in SIMATIC PCS7 8.0 SP1 and earlier and other products, has a hardcoded account, which makes it easier for remote attackers to obtain access via an…
EPSS: 0.004 (62.5th percentile) — read the EPSS interpretation.
Affected products
- Siemens Simatic_pcs7 — versions 8.0
- Siemens Wincc — versions 7.0, 7.1
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)