Siemens Simatic Wincc Runtime — known CVE vulnerabilities
Every CVE whose affected-product data names Siemens Simatic Wincc Runtime, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2011-3321 — CVSS 9.3 (critical): Heap-based buffer overflow in the Siemens WinCC Runtime Advanced Loader, as used in SIMATIC WinCC flexible Runtime and SIMATIC WinCC (TIA…
CVE-2019-6572 — CVSS 9.1 (critical): A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1 Update 1), SIMATIC HMI Comfort Outdoor…
CVE-2018-13814 — CVSS 8.8 (high): A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V14), SIMATIC HMI Comfort Outdoor Panels 7" &…
CVE-2018-13813 — CVSS 8.1 (high): A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15 Update 4), SIMATIC HMI Comfort Outdoor…
CVE-2018-13812 — CVSS 7.5 (high): A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15 Update 4), SIMATIC HMI Comfort Outdoor…
CVE-2021-40142 — CVSS 7.5 (high): In OPC Foundation Local Discovery Server (LDS) before 1.04.402.463, remote attackers can cause a denial of service (DoS) by sending…
CVE-2019-10935 — CVSS 7.2 (high): A vulnerability has been identified in SIMATIC PCS 7 V8.0 and earlier (All versions), SIMATIC PCS 7 V8.1 (All versions < V8.1 with WinCC…
CVE-2022-30694 — CVSS 6.5 (medium): The login endpoint /FormLogin in affected web services does not apply proper origin checking. This could allow authenticated remote…
CVE-2019-6576 — CVSS 6.5 (medium): A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1 Update 1), SIMATIC HMI Comfort Outdoor…
CVE-2016-7165 — CVSS 6.4 (medium): A vulnerability has been identified in Primary Setup Tool (PST) (All versions < V4.2 HF1), SIMATIC IT Production Suite (All versions < V7.0…
CVE-2019-10929 — CVSS 5.9 (medium): A vulnerability has been identified in SIMATIC CP 1626 (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS…
CVE-2019-6577 — CVSS 5.4 (medium): A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1 Update 1), SIMATIC HMI Comfort Outdoor…
CVE-2017-6867 — CVSS 4.9 (medium): A vulnerability was discovered in Siemens SIMATIC WinCC (V7.3 before Upd 11 and V7.4 before SP1), SIMATIC WinCC Runtime Professional (V13…