The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

computer vulnerability bulletin CVE-2017-11496 CVE-2017-11497 CVE-2017-11498

Siemens SIMATIC WinCC Add-Ons: multiple vulnerabilities

Synthesis of the vulnerability

An attacker can use several vulnerabilities of Siemens SIMATIC WinCC Add-Ons.
Vulnerable systems: SIMATIC.
Severity of this threat: 3/4.
Consequences of a hack: privileged access/rights, denial of service on service.
Pirate's origin: intranet client.
Number of vulnerabilities in this bulletin: 8.
Creation date: 18/01/2018.
Revision date: 23/02/2018.
Références of this weakness: CERTFR-2018-AVI-041, CVE-2017-11496, CVE-2017-11497, CVE-2017-11498, CVE-2017-12818, CVE-2017-12819, CVE-2017-12820, CVE-2017-12821, CVE-2017-12822, SSA-127490, VIGILANCE-VUL-25118.

Description of the vulnerability

An attacker can use several vulnerabilities of Siemens SIMATIC WinCC Add-Ons.
Full Vigil@nce bulletin... (Free trial)

Computer vulnerabilities tracking service

Vigil@nce provides a computers vulnerabilities database. The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications. Each administrator can customize the list of products for which he wants to receive vulnerability alerts.