Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Siemens SIMATIC STEP 7 (TIA Portal) before 13 SP1 uses a weak password-hash algorithm, which makes it easier for local users to determine cleartext passwords by reading a project file and conducting a brute-force attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Siemens SIMATIC STEP 7 (TIA Portal) 加密问题漏洞
Vulnerability Description
Siemens SIMATIC STEP 7(TIA Portal)是德国西门子(Siemens)公司的一套用于SIMATIC控制器的编程软件。该软件提供PLC编程、设计选件包和先进的驱动器技术等。 Siemens SIMATIC STEP 7 (TIA Portal) 13.0及之前版本中存在安全漏洞,该漏洞源于程序使用弱的加密算法。本地攻击者可通过读取项目文件并实施暴力破解攻击利用该漏洞获取明文密码。
CVSS Information
N/A
Vulnerability Type
N/A