What is CVE-2022-33139?

CVE-2022-33139 is a vulnerability in Siemens Cerberus Dms, classified under CWE-603. Published 2022-06-21.

Is CVE-2022-33139 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Siemens Cerberus Dms

CVE-2022-33139

A vulnerability has been identified in Cerberus DMS (All versions), Desigo CC (All versions), Desigo CC Compact (All versions), SIMATIC WinCC OA V3.16 (All versions in default configuration), SIMATIC WinCC OA V3.17 (All versions in non-def…

EPSS: 0.004 (61.7th percentile) — read the EPSS interpretation.

Affected products

Siemens Cerberus Dms — versions All versions
Siemens Desigo Cc — versions All versions
Siemens Desigo Cc Compact — versions All versions
Siemens Simatic Wincc Oa V3.16 — versions All versions in default configuration
Siemens Simatic Wincc Oa V3.17 — versions All versions in non-default configuration
Siemens Simatic Wincc Oa V3.18 — versions All versions in non-default configuration

Weakness classification (CWE)

CWE-603

Public proof-of-concept exploits

ARPSyndicate/cvemon

References

Frequently asked questions

What is CVE-2022-33139?: CVE-2022-33139 is a vulnerability in Siemens Cerberus Dms, classified under CWE-603. Published 2022-06-21.
Is CVE-2022-33139 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.