What is CVE-2023-28829?

CVE-2023-28829 is a low-severity vulnerability in Siemens Simatic Net Pc Software V14, classified under CWE-477. CVSS score: 3.9/10. Published 2023-06-13.

How severe is CVE-2023-28829?

Low severity. CVSS v3 base score is 3.9 out of 10.

Vulnerability in Siemens Simatic Net Pc Software V14

CVE-2023-28829

A vulnerability has been identified in SIMATIC NET PC Software V14 (All versions), SIMATIC NET PC Software V15 (All versions), SIMATIC PCS 7 V8.2 (All versions), SIMATIC PCS 7 V9.0 (All versions), SIMATIC PCS 7 V9.1 (All versions), SIMATIC…

EPSS: 0.001 (28.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 3.9 (Low). Vector: CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C.

Affected products

Siemens Simatic Net Pc Software V14 — versions All versions
Siemens Simatic Net Pc Software V15 — versions All versions
Siemens Simatic Pcs 7 V8.2 — versions All versions
Siemens Simatic Pcs 7 V9.0 — versions All versions
Siemens Simatic Pcs 7 V9.1 — versions All versions
Siemens Simatic Wincc — versions All versions < V8.0
Siemens Sinaut Software St7sc — versions All versions

Weakness classification (CWE)

CWE-477

References

cert-portal.siemens.com/productcert/pdf/ssa-508677.pdf

Frequently asked questions

What is CVE-2023-28829?: CVE-2023-28829 is a low-severity vulnerability in Siemens Simatic Net Pc Software V14, classified under CWE-477. CVSS score: 3.9/10. Published 2023-06-13.
How severe is CVE-2023-28829?: Low severity. CVSS v3 base score is 3.9 out of 10.