What is the severity of CVE-2016-5743?

CVE-2016-5743 has a medium severity rating and can lead to unauthorized access.

How do I fix CVE-2016-5743?

To fix CVE-2016-5743, update affected Siemens SIMATIC WinCC and SIMATIC BATCH software to the latest versions.

Which Siemens products are impacted by CVE-2016-5743?

CVE-2016-5743 affects Siemens SIMATIC WinCC versions before 7.3 Update 10, SIMATIC BATCH versions before 8.1 SP1 Update 9, and other related software versions.

What types of vulnerabilities does CVE-2016-5743 address?

CVE-2016-5743 addresses arbitrary file write vulnerabilities in affected Siemens products.

Is there a workaround for CVE-2016-5743?

There is no official workaround for CVE-2016-5743; the advised action is to apply the relevant software updates.

Vulnerability/
CVE-2016-5743

critical

CWE

22/7/2016

6/8/2024

CVE-2016-5743: Input Validation

First published: Fri Jul 22 2016(Updated: )

Siemens SIMATIC WinCC before 7.3 Update 10 and 7.4 before Update 1, SIMATIC BATCH before 8.1 SP1 Update 9 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.1 Update 3 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.2 Update 1 as distributed in SIMATIC PCS 7 8.2, and SIMATIC WinCC Runtime Professional before 13 SP1 Update 9 allow remote attackers to execute arbitrary code via crafted packets.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Siemens SIMATIC BATCH	<=7.1
Siemens Simatic WinCC	<=7.3
Siemens Simatic WinCC	<=7.4
Siemens SIMATIC PCS 7	<=8.1
Siemens Simatic OpenPCS 7	<=8.1
Siemens Simatic OpenPCS 7	<=8.2
Siemens SIMATIC PCS 7	<=8.2
Siemens SIMATIC WinCC Runtime Professional	<=13

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-5743?
CVE-2016-5743 has a medium severity rating and can lead to unauthorized access.
How do I fix CVE-2016-5743?
To fix CVE-2016-5743, update affected Siemens SIMATIC WinCC and SIMATIC BATCH software to the latest versions.
Which Siemens products are impacted by CVE-2016-5743?
CVE-2016-5743 affects Siemens SIMATIC WinCC versions before 7.3 Update 10, SIMATIC BATCH versions before 8.1 SP1 Update 9, and other related software versions.
What types of vulnerabilities does CVE-2016-5743 address?
CVE-2016-5743 addresses arbitrary file write vulnerabilities in affected Siemens products.
Is there a workaround for CVE-2016-5743?
There is no official workaround for CVE-2016-5743; the advised action is to apply the relevant software updates.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/author
agent/last-modified-date
agent/first-publish-date
agent/description
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/siemens
canonical/siemens simatic batch
version/siemens simatic batch/7.1
canonical/siemens simatic wincc
version/siemens simatic wincc/7.3
version/siemens simatic wincc/7.4
canonical/siemens simatic pcs 7
version/siemens simatic pcs 7/8.1
canonical/siemens simatic openpcs 7
version/siemens simatic openpcs 7/8.1
version/siemens simatic openpcs 7/8.2
version/siemens simatic pcs 7/8.2
canonical/siemens simatic wincc runtime professional
version/siemens simatic wincc runtime professional/13

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.