// For flags

CVE-2014-8552

 

Severity Score

5.0
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6 allows remote attackers to read arbitrary files via crafted packets.

El servidor WinCC en Siemens SIMATIC WinCC 7.0 hasta SP3, 7.2 anterior a la actualización 9, y 7.3 anterior a la actualización 2; SIMATIC PCS 7 7.1 hasta SP4, 8.0 hasta SP2; y 8.1; y TIA Portal 13 anterior a la actualización 6 permite a atacantes remotos leer ficheros arbitrarios a través de paquetes manipulados.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2014-10-30 CVE Reserved
  • 2014-11-26 CVE Published
  • 2023-03-07 EPSS Updated
  • 2024-08-06 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Siemens
Search vendor "Siemens"
Simatic Pcs 7
Search vendor "Siemens" for product "Simatic Pcs 7"
7.1
Search vendor "Siemens" for product "Simatic Pcs 7" and version "7.1"
sp1
Affected
Siemens
Search vendor "Siemens"
Simatic Pcs7
Search vendor "Siemens" for product "Simatic Pcs7"
7.1
Search vendor "Siemens" for product "Simatic Pcs7" and version "7.1"
sp3
Affected
Siemens
Search vendor "Siemens"
Simatic Pcs7
Search vendor "Siemens" for product "Simatic Pcs7"
7.1
Search vendor "Siemens" for product "Simatic Pcs7" and version "7.1"
sp4
Affected
Siemens
Search vendor "Siemens"
Simatic Pcs7
Search vendor "Siemens" for product "Simatic Pcs7"
8.0
Search vendor "Siemens" for product "Simatic Pcs7" and version "8.0"
sp1
Affected
Siemens
Search vendor "Siemens"
Simatic Pcs7
Search vendor "Siemens" for product "Simatic Pcs7"
8.0
Search vendor "Siemens" for product "Simatic Pcs7" and version "8.0"
sp2
Affected
Siemens
Search vendor "Siemens"
Simatic Pcs7
Search vendor "Siemens" for product "Simatic Pcs7"
8.1
Search vendor "Siemens" for product "Simatic Pcs7" and version "8.1"
-
Affected
Siemens
Search vendor "Siemens"
Simatic Tiaportal
Search vendor "Siemens" for product "Simatic Tiaportal"
13.0
Search vendor "Siemens" for product "Simatic Tiaportal" and version "13.0"
-
Affected
Siemens
Search vendor "Siemens"
Simatic Tiaportal
Search vendor "Siemens" for product "Simatic Tiaportal"
13.0
Search vendor "Siemens" for product "Simatic Tiaportal" and version "13.0"
3
Affected
Siemens
Search vendor "Siemens"
Simatic Tiaportal
Search vendor "Siemens" for product "Simatic Tiaportal"
13.0
Search vendor "Siemens" for product "Simatic Tiaportal" and version "13.0"
5
Affected
Siemens
Search vendor "Siemens"
Simatic Wincc
Search vendor "Siemens" for product "Simatic Wincc"
7.0
Search vendor "Siemens" for product "Simatic Wincc" and version "7.0"
-
Affected
Siemens
Search vendor "Siemens"
Simatic Wincc
Search vendor "Siemens" for product "Simatic Wincc"
7.0
Search vendor "Siemens" for product "Simatic Wincc" and version "7.0"
sp1
Affected
Siemens
Search vendor "Siemens"
Simatic Wincc
Search vendor "Siemens" for product "Simatic Wincc"
7.0
Search vendor "Siemens" for product "Simatic Wincc" and version "7.0"
sp2
Affected
Siemens
Search vendor "Siemens"
Simatic Wincc
Search vendor "Siemens" for product "Simatic Wincc"
7.0
Search vendor "Siemens" for product "Simatic Wincc" and version "7.0"
sp3
Affected
Siemens
Search vendor "Siemens"
Simatic Wincc
Search vendor "Siemens" for product "Simatic Wincc"
7.2
Search vendor "Siemens" for product "Simatic Wincc" and version "7.2"
1
Affected
Siemens
Search vendor "Siemens"
Simatic Wincc
Search vendor "Siemens" for product "Simatic Wincc"
7.2
Search vendor "Siemens" for product "Simatic Wincc" and version "7.2"
2
Affected
Siemens
Search vendor "Siemens"
Simatic Wincc
Search vendor "Siemens" for product "Simatic Wincc"
7.2
Search vendor "Siemens" for product "Simatic Wincc" and version "7.2"
3
Affected
Siemens
Search vendor "Siemens"
Simatic Wincc
Search vendor "Siemens" for product "Simatic Wincc"
7.2
Search vendor "Siemens" for product "Simatic Wincc" and version "7.2"
4
Affected
Siemens
Search vendor "Siemens"
Simatic Wincc
Search vendor "Siemens" for product "Simatic Wincc"
7.2
Search vendor "Siemens" for product "Simatic Wincc" and version "7.2"
5
Affected
Siemens
Search vendor "Siemens"
Simatic Wincc
Search vendor "Siemens" for product "Simatic Wincc"
7.2
Search vendor "Siemens" for product "Simatic Wincc" and version "7.2"
6
Affected
Siemens
Search vendor "Siemens"
Simatic Wincc
Search vendor "Siemens" for product "Simatic Wincc"
7.2
Search vendor "Siemens" for product "Simatic Wincc" and version "7.2"
7
Affected
Siemens
Search vendor "Siemens"
Simatic Wincc
Search vendor "Siemens" for product "Simatic Wincc"
7.2
Search vendor "Siemens" for product "Simatic Wincc" and version "7.2"
8
Affected
Siemens
Search vendor "Siemens"
Simatic Wincc
Search vendor "Siemens" for product "Simatic Wincc"
7.3
Search vendor "Siemens" for product "Simatic Wincc" and version "7.3"
1
Affected