Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An XXE vulnerability has been identified in OPC Foundation UA .NET Sample Code before 2017-03-21 and Local Discovery Server (LDS) before 1.03.367. Among the affected products are Siemens SIMATIC PCS7 (All versions V8.1 and earlier), SIMATIC WinCC (All versions < V7.4 SP1), SIMATIC WinCC Runtime Professional (All versions < V14 SP1), SIMATIC NET PC Software, and SIMATIC IT Production Suite. By sending specially crafted packets to the OPC Discovery Server at port 4840/tcp, an attacker might cause the system to access various resources chosen by the attacker.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款Siemens产品OPC Foundation UA .NET Sample Code和Local Discovery Server 安全漏洞
Vulnerability Description
Siemens SIMATIC PCS等都是德国西门子(Siemens)公司的产品。Siemens SIMATIC PCS是一套流程控制系统。SIMATIC WinCC是一套自动化数据采集与监控(SCADA)系统。OPC Foundation UA .NET Sample Code是其中的一段示例代码;Local Discovery Server(LDS)是其中的一个本地发现服务器。 多款Siemens产品中的OPC Foundation UA .NET Sample Code 2017-03-21之前的
CVSS Information
N/A
Vulnerability Type
N/A