Vulnerability in Siemens Simatic_step_7

CVE-2015-1601

Siemens SIMATIC STEP 7 (TIA Portal) 12 and 13 before 13 SP1 Upd1 allows man-in-the-middle attackers to obtain sensitive information or modify transmitted data via unspecified vectors.

EPSS: 0.004 (60.8th percentile) — read the EPSS interpretation.

Affected products

Siemens Simatic_step_7 — versions 12, 13
N/a — versions n/a

Weakness classification (CWE)

CWE-254

References

72691 (vdb-entry, x_refsource_BID)
cve@mitre.org (x_refsource_CONFIRM, Patch, Vendor Advisory)
cve@mitre.org (x_refsource_CONFIRM)