CNVD-2024-17302 — Vulnetix

CNVD-2024-17302 PUBLISHED CVSS 6.199999809265137 MEDIUM

SIMATIC PCS 7是一套过程控制系统。SIMATIC WinCC是一套自动化的数据采集与监控（SCADA）系统。SIMATIC WinCC Runtime Professional是用于操作员的可视化运行时平台机器和设备的控制和监控。 Siemens SIMATIC WinCC存在拒绝服务漏洞，该漏洞是由于受影响的产品无法正确验证登录对话框中提供的输入。攻击者可利用此漏洞造成拒绝服务。

Risk Scores

CVSS v3.1

6.199999809265137

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C

Affected Products

Vendor	Product	Versions
Siemens	SIMATIC WinCC Runtime Professional V19	0
Siemens	SIMATIC PCS 7 V9.1	0
Siemens	SIMATIC WinCC V8.0	0
Siemens	SIMATIC WinCC V7.5	0
Siemens	SIMATIC WinCC Runtime Professional V17	0
Siemens	SIMATIC WinCC Runtime Professional V18	0

Timeline

Apr 8, 2024 CVE Published

References

https://cert-portal.siemens.com/productcert/html/ssa-730482.html url

Open in Interactive Console →