CVE-2017-6867

moderate-risk
Published 2017-05-11

A vulnerability was discovered in Siemens SIMATIC WinCC (V7.3 before Upd 11 and V7.4 before SP1), SIMATIC WinCC Runtime Professional (V13 before SP2 and V14 before SP1), SIMATIC WinCC (TIA Portal) Professional (V13 before SP2 and V14 before SP1) that could allow an authenticated, remote attacker who is member of the "administrators" group to crash services by sending specially crafted messages to the DCOM interface.

Do I need to act?

-
0.61% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
4
CVSS 4.9/10 Medium
NETWORK / LOW complexity

Affected Products (6)

Simatic Wincc \(Tia Portal\)
Simatic Wincc Runtime
Simatic Wincc \(Tia Portal\)
Simatic Wincc Runtime

Affected Vendors

Siemens

References (6)

Third Party Advisory http://www.securityfocus.com/bid/98368
https://cert-portal.siemens.com/productcert/pdf/ssa-523365.pdf
Vendor Advisory https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-156872.pdf
Third Party Advisory http://www.securityfocus.com/bid/98368
https://cert-portal.siemens.com/productcert/pdf/ssa-523365.pdf
Vendor Advisory https://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-156872.pdf
35
/ 100
moderate-risk
Severity 20/34 · Moderate
Exploitability 2/34 · Minimal
Exposure 13/34 · Low