CVE-2014-8551: Code Injection

First published: Wed Nov 26 2014(Updated: )

The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6 allows remote attackers to execute arbitrary code via crafted packets.

Credit: cve@mitre.org

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• collector/nvd-index
• agent/severity
• agent/references
• agent/weakness
• agent/author
• agent/tags
• agent/type
• agent/event
• agent/description
• agent/first-publish-date
• agent/last-modified-date
• agent/softwarecombine
• collector/mitre-cve
• source/MITRE
• vendor/siemens
• canonical/siemens simatic pcs 7
• version/siemens simatic pcs 7/7.1-sp1
• canonical/siemens simatic pcs7
• version/siemens simatic pcs7/7.1-sp3
• version/siemens simatic pcs7/7.1-sp4
• version/siemens simatic pcs7/8.0-sp1
• version/siemens simatic pcs7/8.0-sp2
• version/siemens simatic pcs7/8.1
• canonical/siemens simatic tiaportal
• version/siemens simatic tiaportal/13.0
• version/siemens simatic tiaportal/13.0-3
• version/siemens simatic tiaportal/13.0-5
• canonical/siemens simatic wincc
• version/siemens simatic wincc/7.0
• version/siemens simatic wincc/7.0-sp1
• version/siemens simatic wincc/7.0-sp2
• version/siemens simatic wincc/7.0-sp3
• version/siemens simatic wincc/7.2-1
• version/siemens simatic wincc/7.2-2
• version/siemens simatic wincc/7.2-3
• version/siemens simatic wincc/7.2-4
• version/siemens simatic wincc/7.2-5
• version/siemens simatic wincc/7.2-6
• version/siemens simatic wincc/7.2-7
• version/siemens simatic wincc/7.2-8
• version/siemens simatic wincc/7.3-1