all InfoSec news
SSA-646240 V1.0: Sensitive Information Disclosure in SIMATIC PCS neo Administration Console
Siemens ProductCERT Security Advisories cert-portal.siemens.com
The Administration Console of SIMATIC PCS neo leaks Windows admin credentials. An attacker with local Windows access to the Administration Console could get the credentials, and impersonate the admin user, thereby gaining admin access to other Windows systems.
Siemens has released a security patch for the affected products and recommends to install the patch.
access admin administration attacker console credentials disclosure information information disclosure leaks local patch pcs products security security patch sensitive sensitive information siemens simatic ssa systems windows