CVE-2017-2685

CVE-2017-2685

Vendor N/A
Product SINUMERIK Integrate Operate Clients 2.x and 3.x
Weakness CWE-693
Published March 1, 2017
Last update August 5, 2024

CVSS base score

What the vulnerability does

01Description

Siemens SINUMERIK Integrate Operate Clients between 2.0.3.00.016 (including) and 2.0.6 (excluding) and between 3.0.4.00.032 (including) and 3.0.6 (excluding) contain a vulnerability that could allow an attacker to read and manipulate data in TLS sessions while performing a man-in-the-middle (MITM) attack.

Key dates

02Disclosure timeline

March 1, 2017 CVE published
August 5, 2024 Record updated