Siemens SIMATIC STEP 7 (TIA Portal) before 14 uses an improper format for managing TIA project files during version updates, which makes it easier for local users to obtain sensitive configuration information via unspecified vectors.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/93551 | Third Party Advisory VDB Entry |
http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-869766.pdf | Vendor Advisory |
https://ics-cert.us-cert.gov/advisories/ICSA-16-287-03 | Mitigation Patch Third Party Advisory US Government Resource VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2016-10-13T10:00:00
Updated: 2016-12-20T21:57:01
Reserved: 2016-09-09T00:00:00
Link: CVE-2016-7960
JSON object: View
NVD Information
Status : Analyzed
Published: 2016-10-13T10:59:01.817
Modified: 2016-12-22T23:25:04.540
Link: CVE-2016-7960
JSON object: View
Redhat Information
No data.
CWE