Vulnerability Description
Siemens SIMATIC HMI Comfort Panels before WinCC (TIA Portal) 13 SP1 Upd2 and SIMATIC WinCC Runtime Advanced before WinCC (TIA Portal) 13 SP1 Upd2 allow man-in-the-middle attackers to cause a denial of service via crafted packets on TCP port 102.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Wincc | <= 13.0 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/74028
- http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_adviPatchVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-487246.pdf
- http://www.securityfocus.com/bid/74028
- http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_adviPatchVendor Advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-487246.pdf
FAQ
What is CVE-2015-2822?
CVE-2015-2822 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Siemens SIMATIC HMI Comfort Panels before WinCC (TIA Portal) 13 SP1 Upd2 and SIMATIC WinCC Runtime Advanced before WinCC (TIA Portal) 13 SP1 Upd2 allow man-in-the-middle attackers to cause a denial of...
How severe is CVE-2015-2822?
CVE-2015-2822 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-2822?
Check the references section above for vendor advisories and patch information. Affected products include: Siemens Wincc.