CVE-2012-3028 in SIMATIC PCS7info

Zusammenfassung

von MITRE

Cross-site request forgery (CSRF) vulnerability in WebNavigator in Siemens WinCC 7.0 SP3 and earlier, as used in SIMATIC PCS7 and other products, allows remote attackers to hijack the authentication of arbitrary users for requests that modify data or cause a denial of service.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

30.05.2012

Veröffentlichung

18.09.2012

Moderieren

akzeptiert

Eintrag

VDB-62313

CPE

bereit

CWE

CWE-352 (bestätigt)

CVSS

6.8 (NVD)

EPSS

0.00978

KEV

nein

Aktivitäten

very low

Sektor

Energy, Agriculture, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2012-3028
NVD	https://nvd.nist.gov/vuln/detail/CVE-2012-3028
CVE Details	https://www.cvedetails.com/cve/CVE-2012-3028/

◂ Zurück Übersicht Weiter ▸

Interested in the pricing of exploits?

See the underground prices here!