CVE-2017-14023

CVE-2017-14023

Vendor N/A
Product Siemens SIMATIC PCS 7
Weakness CWE-20 · Input validation
Published November 6, 2017
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

An Improper Input Validation issue was discovered in Siemens SIMATIC PCS 7 V8.1 prior to V8.1 SP1 with WinCC V7.3 Upd 13, and V8.2 all versions. The improper input validation vulnerability has been identified, which may allow an authenticated remote attacker who is a member of the administrators group to crash services by sending specially crafted messages to the DCOM interface.

Key dates

02Disclosure timeline

November 6, 2017 CVE published
August 5, 2024 Record updated