Vulnerability Description
Siemens SIMATIC WinCC before 7.3 Update 10 and 7.4 before Update 1, SIMATIC BATCH before 8.1 SP1 Update 9 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.1 Update 3 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.2 Update 1 as distributed in SIMATIC PCS 7 8.2, and SIMATIC WinCC Runtime Professional before 13 SP1 Update 9 allow remote attackers to execute arbitrary code via crafted packets.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | Simatic Batch | <= 7.1 |
| Siemens | Simatic Wincc | <= 7.3 |
| Siemens | Simatic Pcs 7 | <= 8.1 |
| Siemens | Simatic Openpcs 7 | <= 8.1 |
| Siemens | Simatic Wincc Runtime Professional | <= 13 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/92112Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1036441Third Party AdvisoryVDB Entry
- http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-378531.pdfMitigationVendor Advisory
- https://ics-cert.us-cert.gov/advisories/ICSA-16-208-01
- http://www.securityfocus.com/bid/92112Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1036441Third Party AdvisoryVDB Entry
- http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-378531.pdfMitigationVendor Advisory
- https://ics-cert.us-cert.gov/advisories/ICSA-16-208-01
FAQ
What is CVE-2016-5743?
CVE-2016-5743 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Siemens SIMATIC WinCC before 7.3 Update 10 and 7.4 before Update 1, SIMATIC BATCH before 8.1 SP1 Update 9 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.1 Update 3 as dist...
How severe is CVE-2016-5743?
CVE-2016-5743 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2016-5743?
Check the references section above for vendor advisories and patch information. Affected products include: Siemens Simatic Batch, Siemens Simatic Wincc, Siemens Simatic Pcs 7, Siemens Simatic Openpcs 7, Siemens Simatic Wincc Runtime Professional.