Rewterz Threat Advisory – CVE-2019-10935 – Siemens SIMATIC WinCC and PCS7 Information Disclosure Vulnerability
July 12, 2019Rewterz Threat Advisory Siemens SIMATIC RF6XXR Multiple Vulnerabilities
July 12, 2019Rewterz Threat Advisory – CVE-2019-10935 – Siemens SIMATIC WinCC and PCS7 Information Disclosure Vulnerability
July 12, 2019Rewterz Threat Advisory Siemens SIMATIC RF6XXR Multiple Vulnerabilities
July 12, 2019Severity
High
Analysis Summary
The integrated configuration web application (TIA Administrator) may allow an attacker to execute certain application commands without proper authentication.
Impact
Improper Access Control
Affected Vendors
Siemens
Affected Products
TIA Administrator (TIA Portal)
Remediation
Siemens recommends users to update to v1.0 or later: