CVE-2016-5743: Input Validation
First published: Fri Jul 22 2016(Updated: )
Siemens SIMATIC WinCC before 7.3 Update 10 and 7.4 before Update 1, SIMATIC BATCH before 8.1 SP1 Update 9 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.1 Update 3 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.2 Update 1 as distributed in SIMATIC PCS 7 8.2, and SIMATIC WinCC Runtime Professional before 13 SP1 Update 9 allow remote attackers to execute arbitrary code via crafted packets.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens Simatic Batch | <=7.1 | |
| Siemens Simatic WinCC | <=7.3 | |
| Siemens Simatic WinCC | <=7.4 | |
| SIEMENS SIMATIC PCS 7 | <=8.1 | |
| Siemens Simatic Openpcs 7 | <=8.1 | |
| Siemens Simatic Openpcs 7 | <=8.2 | |
| SIEMENS SIMATIC PCS 7 | <=8.2 | |
| Siemens Simatic Wincc Runtime Professional | <=13 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/type
- agent/description
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/siemens
- canonical/siemens simatic batch
- version/siemens simatic batch/7.1
- canonical/siemens simatic wincc
- version/siemens simatic wincc/7.3
- version/siemens simatic wincc/7.4
- canonical/siemens simatic pcs 7
- version/siemens simatic pcs 7/8.1
- canonical/siemens simatic openpcs 7
- version/siemens simatic openpcs 7/8.1
- version/siemens simatic openpcs 7/8.2
- version/siemens simatic pcs 7/8.2
- canonical/siemens simatic wincc runtime professional
- version/siemens simatic wincc runtime professional/13