VDB
CVE-2023-28829
CVE-2023-28829
PUBLISHED
Es existiert eine Schwachstelle in Siemens SIMATIC WinCC. Hier werden standardmäßig die alten OPC-Dienste (OPC DA (Data Access), OPC HDA (Historical Data Access) und OPC AE (Alarms & Events)) verwendet. Ein Angreifer kann diese Schwachstelle ausnutzen, um Sicherheitsvorkehrungen zu umgehen.
EPSS 0.11% · 28.3th percentile
Risk Scores
EPSS Score
0.11%
28.3th percentile
Exploit Intelligence
- CVE-2022-32250.yara (github-yara)
- CVE-2022-32250.yara (github-yara)
- CVE-2022-32250.yara (github-yara)
- CVE-2022-32250.yara (github-yara)
- CVE-2022-32250.yara (github-yara)
- CVE-2022-32250.yara (github-yara)
Timeline
- Jun 12, 2023 CVE Published
- Jun 14, 2023 EPSS Score
- Jul 20, 2023 EPSS Score
- Aug 24, 2023 EPSS Score
- Sep 29, 2023 EPSS Score
- Nov 3, 2023 EPSS Score
- Dec 9, 2023 EPSS Score
- Jan 13, 2024 EPSS Score
- Feb 18, 2024 EPSS Score
- Mar 24, 2024 EPSS Score
- Apr 29, 2024 EPSS Score
- Jun 4, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-1427.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-1427 advisory
- https://cert-portal.siemens.com/productcert/html/ssa-914026.html advisory
- https://cert-portal.siemens.com/productcert/html/ssa-508677.html advisory