CVE-2016-5743
critical
CVSS v3
9.8
CVSS v2
10.0
VIR risk
9.8
Description
Siemens SIMATIC WinCC before 7.3 Update 10 and 7.4 before Update 1, SIMATIC BATCH before 8.1 SP1 Update 9 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.1 Update 3 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.2 Update 1 as distributed in SIMATIC PCS 7 8.2, and SIMATIC WinCC Runtime Professional before 13 SP1 Update 9 allow remote attackers to execute arbitrary code via crafted packets.
Predictions
Exploit likelihood
97%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: cve@mitre.org — http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-378531.pdf
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| siemens | simatic_batch | {"endIncluding":"7.1"} | |
| siemens | simatic_wincc | {"endIncluding":"7.3"} | |
| siemens | simatic_pcs_7 | {"endIncluding":"8.1"} | |
| siemens | simatic_openpcs_7 | {"endIncluding":"8.1"} | |
| siemens | simatic_wincc_runtime_professional | {"endIncluding":"13"} | |
References
- http://www.securityfocus.com/bid/92112
- http://www.securitytracker.com/id/1036441
- http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-378531.pdf
- https://ics-cert.us-cert.gov/advisories/ICSA-16-208-01
- http://www.securityfocus.com/bid/92112
- http://www.securitytracker.com/id/1036441
- http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-378531.pdf
- https://ics-cert.us-cert.gov/advisories/ICSA-16-208-01
CWEs
CWE-20
Verify integrity in audit chain (admin only). AS-IS.