all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

SSA-914026 V1.0: Local Code Execution Vulnerability in SIMATIC WinCC V7

Add to bookmarks
June 13, 2023, midnight |

Siemens ProductCERT Security Advisories cert-portal.siemens.com

SIMATIC WinCC V7 is affected by a vulnerability that could allow a local attacker to inject arbitrary code and escalate privileges, if a non-default installation path was chosen during installation.


Siemens has released an update for SIMATIC WinCC and recommends to update to the latest version.

code code execution default inject installation latest local non path privileges siemens simatic ssa update version vulnerability

Visit resource

More from cert-portal.siemens.com / Siemens ProductCERT Security Advisories

SSA-750274 V1.0: Impact of CVE-2024-3400 on RUGGEDCOM APE1808 devices configured with Palo Alto Networks Virtual … 1 week, 5 days ago | cert-portal.siemens.com
addresses advisory alto countermeasures +22
SSA-222019 V1.0: X_T File Parsing Vulnerabilities in Parasolid 3 weeks, 1 day ago | cert-portal.siemens.com
application applications attacker code +12
SSA-885980 V1.0: Multiple Vulnerabilities in Scalance W1750D 3 weeks, 1 day ago | cert-portal.siemens.com
attacker buffer buffer overflow code +16
SSA-822518 V1.0: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW before V11.0.1 on RUGGEDCOM APE1808 … 3 weeks, 1 day ago | cert-portal.siemens.com
advisory alto countermeasures customers +18
SSA-455250 V1.0: Multiple Vulnerabilities in Palo Alto Networks Virtual NGFW on RUGGEDCOM APE1808 devices 3 weeks, 1 day ago | cert-portal.siemens.com
advisory alto countermeasures customers +18
SSA-265688 V1.0: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 TM MFP V1.1 3 weeks, 1 day ago | cert-portal.siemens.com
countermeasures fix fixes gnu +7
SSA-730482 V1.0: Denial of Service Vulnerability in SIMATIC WinCC 3 weeks, 1 day ago | cert-portal.siemens.com
attacker box denial of service dialog +14
SSA-556635 V1.0: Multiple Vulnerabilities in Telecontrol Server Basic before V3.1.2.0 3 weeks, 1 day ago | cert-portal.siemens.com
1.2.0 basic fixes server +4
SSA-128433 V1.0: Multiple Vulnerabilities in SINEC NMS before V2.0 SP2 3 weeks, 1 day ago | cert-portal.siemens.com
latest nms siemens sinec +4

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information Security Cyber Risk Analyst

@ Intel | USA - AZ - Chandler
View on infosec-jobs.com

Senior Cloud Security Engineer (Fullstack)

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Principal Product Security Engineer

@ Oracle | United States
View on infosec-jobs.com

Cybersecurity Strategy Director

@ Proofpoint | Sunnyvale, CA
View on infosec-jobs.com

Information Security Consultant/Auditor

@ Devoteam | Lisboa, Portugal
View on infosec-jobs.com

IT Security Engineer til Netcompany IT Services

@ Netcompany | Copenhagen, Denmark
View on infosec-jobs.com
View more jobs