Hardcoded credentials in Siemens SIMATIC WinCC and PSC 7 SCADA systems

Published: 2010-07-21 14:44:30 | Updated: 2017-03-24
Severity High
Patch available YES
Number of vulnerabilities 1
CVE ID CVE-2010-2772
CVSSv3 8.4 [CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:H/RL:O/RC:C]
CWE ID CWE-259
Exploitation vector Local
Public exploit Vulnerability #1 is being exploited in the wild.
Vulnerable software SIMATIC PCS 7
Siemens SIMATIC WinCC
Vulnerable software versions SIMATIC PCS 7 -
Siemens SIMATIC WinCC -
Vendor URL Siemens

Security Advisory

1) Hardcoded credentials

Description

The vulnerability allows a local user to obtain hardcoded credentials.

The vulnerability exists due to usage of hardcoded password to access back-end database. A local user can obtain password and gain unaithorized access SCADA system.

Successful exploitation of the vulnerability may allow an attacker to gain complete control over the industrial process.

Note: this vulnerability is being actively exploited by the Stuxnet malware.

Remediation

Follow vendor recommendations to resolve this issue.

External links

https://support.industry.siemens.com/cs/document/43876783/simatic-wincc-simatic-pcs-7%3A-information...

Back to List