{"containers": {"cna": {"affected": [{"product": "SIMATIC HMI Comfort Outdoor Panels V15 7\\\" & 15\\\" (incl. SIPLUS variants)", "vendor": "Siemens", "versions": [{"status": "affected", "version": "All versions < V15.1 Update 6"}]}, {"product": "SIMATIC HMI Comfort Outdoor Panels V16 7\\\" & 15\\\" (incl. SIPLUS variants)\n", "vendor": "Siemens", "versions": [{"status": "affected", "version": "All versions < V16 Update 4"}]}, {"product": "SIMATIC HMI Comfort Panels V15 4\\\" - 22\\\" (incl. SIPLUS variants)", "vendor": "Siemens", "versions": [{"status": "affected", "version": "All versions < V15.1 Update 6"}]}, {"product": "SIMATIC HMI Comfort Panels V16 4\\\" - 22\\\" (incl. SIPLUS variants)\n", "vendor": "Siemens", "versions": [{"status": "affected", "version": "All versions < V16 Update 4"}]}, {"product": "SIMATIC HMI KTP Mobile Panels V15 KTP400F, KTP700, KTP700F, KTP900 and KTP900F", "vendor": "Siemens", "versions": [{"status": "affected", "version": "All versions < V15.1 Update 6"}]}, {"product": "SIMATIC HMI KTP Mobile Panels V16 KTP400F, KTP700, KTP700F, KTP900 and KTP900F\n", "vendor": "Siemens", "versions": [{"status": "affected", "version": "All versions < V16 Update 4"}]}, {"product": "SIMATIC WinCC Runtime Advanced V15", "vendor": "Siemens", "versions": [{"status": "affected", "version": "All versions < V15.1 Update 6"}]}, {"product": "SIMATIC WinCC Runtime Advanced V16", "vendor": "Siemens", "versions": [{"status": "affected", "version": "All versions < V16 Update 4"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\\\" & 15\\\" (incl. SIPLUS variants) (All versions < V15.1 Update 6), SIMATIC HMI Comfort Outdoor Panels V16 7\\\" & 15\\\" (incl. SIPLUS variants) (All versions < V16 Update 4), SIMATIC HMI Comfort Panels V15 4\\\" - 22\\\" (incl. SIPLUS variants) (All versions < V15.1 Update 6), SIMATIC HMI Comfort Panels V16 4\\\" - 22\\\" (incl. SIPLUS variants) (All versions < V16 Update 4), SIMATIC HMI KTP Mobile Panels V15 KTP400F, KTP700, KTP700F, KTP900 and KTP900F (All versions < V15.1 Update 6), SIMATIC HMI KTP Mobile Panels V16 KTP400F, KTP700, KTP700F, KTP900 and KTP900F (All versions < V16 Update 4), SIMATIC WinCC Runtime Advanced V15 (All versions < V15.1 Update 6), SIMATIC WinCC Runtime Advanced V16 (All versions < V16 Update 4). SmartVNC has an out-of-bounds memory access vulnerability that could be triggered on the client side when sending data from the server, which could result in a Denial-of-Service condition."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-788", "description": "CWE-788: Access of Memory Location After End of Buffer", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2021-10-12T09:49:12", "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77", "shortName": "siemens"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-131-12"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-538778.pdf"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "productcert@siemens.com", "ID": "CVE-2021-25661", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "SIMATIC HMI Comfort Outdoor Panels V15 7\\\" & 15\\\" (incl. SIPLUS variants)", "version": {"version_data": [{"version_value": "All versions < V15.1 Update 6"}]}}, {"product_name": "SIMATIC HMI Comfort Outdoor Panels V16 7\\\" & 15\\\" (incl. SIPLUS variants)\n", "version": {"version_data": [{"version_value": "All versions < V16 Update 4"}]}}, {"product_name": "SIMATIC HMI Comfort Panels V15 4\\\" - 22\\\" (incl. SIPLUS variants)", "version": {"version_data": [{"version_value": "All versions < V15.1 Update 6"}]}}, {"product_name": "SIMATIC HMI Comfort Panels V16 4\\\" - 22\\\" (incl. SIPLUS variants)\n", "version": {"version_data": [{"version_value": "All versions < V16 Update 4"}]}}, {"product_name": "SIMATIC HMI KTP Mobile Panels V15 KTP400F, KTP700, KTP700F, KTP900 and KTP900F", "version": {"version_data": [{"version_value": "All versions < V15.1 Update 6"}]}}, {"product_name": "SIMATIC HMI KTP Mobile Panels V16 KTP400F, KTP700, KTP700F, KTP900 and KTP900F\n", "version": {"version_data": [{"version_value": "All versions < V16 Update 4"}]}}, {"product_name": "SIMATIC WinCC Runtime Advanced V15", "version": {"version_data": [{"version_value": "All versions < V15.1 Update 6"}]}}, {"product_name": "SIMATIC WinCC Runtime Advanced V16", "version": {"version_data": [{"version_value": "All versions < V16 Update 4"}]}}]}, "vendor_name": "Siemens"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\\\" & 15\\\" (incl. SIPLUS variants) (All versions < V15.1 Update 6), SIMATIC HMI Comfort Outdoor Panels V16 7\\\" & 15\\\" (incl. SIPLUS variants) (All versions < V16 Update 4), SIMATIC HMI Comfort Panels V15 4\\\" - 22\\\" (incl. SIPLUS variants) (All versions < V15.1 Update 6), SIMATIC HMI Comfort Panels V16 4\\\" - 22\\\" (incl. SIPLUS variants) (All versions < V16 Update 4), SIMATIC HMI KTP Mobile Panels V15 KTP400F, KTP700, KTP700F, KTP900 and KTP900F (All versions < V15.1 Update 6), SIMATIC HMI KTP Mobile Panels V16 KTP400F, KTP700, KTP700F, KTP900 and KTP900F (All versions < V16 Update 4), SIMATIC WinCC Runtime Advanced V15 (All versions < V15.1 Update 6), SIMATIC WinCC Runtime Advanced V16 (All versions < V16 Update 4). SmartVNC has an out-of-bounds memory access vulnerability that could be triggered on the client side when sending data from the server, which could result in a Denial-of-Service condition."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-788: Access of Memory Location After End of Buffer"}]}]}, "references": {"reference_data": [{"name": "https://us-cert.cisa.gov/ics/advisories/icsa-21-131-12", "refsource": "MISC", "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-131-12"}, {"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-538778.pdf", "refsource": "CONFIRM", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-538778.pdf"}]}}}}, "cveMetadata": {"assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77", "assignerShortName": "siemens", "cveId": "CVE-2021-25661", "datePublished": "2021-05-12T13:18:22", "dateReserved": "2021-01-21T00:00:00", "dateUpdated": "2021-10-12T09:49:12", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:*:*:*:*:*:*:*:*", "matchCriteriaId": "C0891D85-C5F4-4CD2-8EFA-84356CE36654", "versionEndExcluding": "16", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:16:-:*:*:*:*:*:*", "matchCriteriaId": "E0005A53-33AD-47AF-B172-CAF423DE213F", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:16:update1:*:*:*:*:*:*", "matchCriteriaId": "9696B0D9-5A66-4747-9437-791EAC150DDA", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:16:update2:*:*:*:*:*:*", "matchCriteriaId": "F6AC2BA5-1668-4B71-8812-925AC6554F5A", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:16:update3:*:*:*:*:*:*", "matchCriteriaId": "047D0868-3DA6-41CF-A6F9-D15668D536FB", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_7\\\"_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "244D9B27-649C-4983-B374-6A8774771AC5", "versionEndExcluding": "16", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_7\\\"_firmware:16:-:*:*:*:*:*:*", "matchCriteriaId": "A2530BB3-484C-4D24-82F6-15967C8B7B32", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_7\\\"_firmware:16:update1:*:*:*:*:*:*", "matchCriteriaId": "B5A1FACE-E693-4FDA-944D-0B7F500007B6", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_7\\\"_firmware:16:update2:*:*:*:*:*:*", "matchCriteriaId": "D7FB4AA4-1F48-4A25-AA21-5F867A38D23E", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_7\\\"_firmware:16:update3:*:*:*:*:*:*", "matchCriteriaId": "6A673BD0-96B5-48CA-B060-A5D01687A764", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_comfort_outdoor_panels_7\\\":-:*:*:*:*:*:*:*", "matchCriteriaId": "B531FDD4-2796-4FE9-9F94-E9D461C7C528", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_15\\\"_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "428B633D-55FF-4DB8-B6DD-5E4EEE52A44C", "versionEndExcluding": "16", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_15\\\"_firmware:16:*:*:*:*:*:*:*", "matchCriteriaId": "C33A64DD-22A2-4260-929F-7595CD037823", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_15\\\"_firmware:16:-:*:*:*:*:*:*", "matchCriteriaId": "9756D206-E295-4B0C-B159-F9A953342E37", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_15\\\"_firmware:16:update1:*:*:*:*:*:*", "matchCriteriaId": "82D6FBBF-FD9B-4AFA-B3E1-8E3341948A37", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_15\\\"_firmware:16:update2:*:*:*:*:*:*", "matchCriteriaId": "D43D2191-DBBD-4F7A-B02A-3DCEE46BF904", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_15\\\"_firmware:16:update3:*:*:*:*:*:*", "matchCriteriaId": "23C6AD3C-C15B-4B67-88D1-236C10BB12CF", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_comfort_outdoor_panels_15\\\":-:*:*:*:*:*:*:*", "matchCriteriaId": "39DA22F7-E4B6-4A1E-9CCB-651EBEFD691D", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_4\\\"_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "FEE4201E-E660-4B3E-91EC-B6A7DC35C189", "versionEndExcluding": "16", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_4\\\"_firmware:16:-:*:*:*:*:*:*", "matchCriteriaId": "F2D6D924-858A-4542-BCD0-A5631F941039", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_4\\\"_firmware:16:update1:*:*:*:*:*:*", "matchCriteriaId": "309E4D56-6D39-4E8F-8312-FF178B721392", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_4\\\"_firmware:16:update2:*:*:*:*:*:*", "matchCriteriaId": "EDB63639-3101-4F60-8193-EF219D99C128", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_4\\\"_firmware:16:update3:*:*:*:*:*:*", "matchCriteriaId": "4C6C83EE-3DC7-4CB3-8148-CB24A825274E", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_comfort_panels_4\\\":-:*:*:*:*:*:*:*", "matchCriteriaId": "D63658BB-2364-4DE5-904B-2367B70294AC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_22\\\"_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6C6C72B0-17D7-491E-816A-AF855166A90B", "versionEndExcluding": "16", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_22\\\"_firmware:16:-:*:*:*:*:*:*", "matchCriteriaId": "322584EF-72C0-4032-A02B-FDFFDCCE3FDE", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_22\\\"_firmware:16:update1:*:*:*:*:*:*", "matchCriteriaId": "C3D5F1BA-2BEA-40A9-8D5B-A612D467C40C", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_22\\\"_firmware:16:update2:*:*:*:*:*:*", "matchCriteriaId": "D14DE5C7-318A-4D08-BB39-1E43F624816A", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_22\\\"_firmware:16:update3:*:*:*:*:*:*", "matchCriteriaId": "FCDAF23F-9272-4DC5-8D46-37FAC08950CC", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_comfort_panels_22\\\":-:*:*:*:*:*:*:*", "matchCriteriaId": "DFDC8157-7EA3-4BC4-82C1-06A307996F45", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp400f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "21FB0305-DF87-42FF-BACA-E8255EA74AA9", "versionEndExcluding": "16", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp400f_firmware:16:-:*:*:*:*:*:*", "matchCriteriaId": "BAA5B299-A45A-4918-AB8F-03A476CEDA17", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp400f_firmware:16:update1:*:*:*:*:*:*", "matchCriteriaId": "0C29FD64-C041-4269-BC52-8F91321BC247", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp400f_firmware:16:update2:*:*:*:*:*:*", "matchCriteriaId": "7182C6C0-7DAD-4446-B14E-8EF46FB0CFA9", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp400f_firmware:16:update3:*:*:*:*:*:*", "matchCriteriaId": "44F6F972-26AF-4A6E-AAD9-B30EBDF52465", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_ktp_mobile_panels_ktp400f:-:*:*:*:*:*:*:*", "matchCriteriaId": "F106DEE3-4DED-46E4-9661-9D9C7B729BC0", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E57B8F3D-5E02-4F0F-9927-9D7C336EBE56", "versionEndExcluding": "16", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700_firmware:16:-:*:*:*:*:*:*", "matchCriteriaId": "845C78A9-AE0F-42B9-9E25-47F541DF5196", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700_firmware:16:update1:*:*:*:*:*:*", "matchCriteriaId": "B23096F5-3546-41D8-BE30-8698BC0C9B42", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700_firmware:16:update2:*:*:*:*:*:*", "matchCriteriaId": "D7C5AF13-69FF-444F-B84A-130D7413B307", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700_firmware:16:update3:*:*:*:*:*:*", "matchCriteriaId": "66A17FC6-B6AE-4915-8069-68B41F3C87E2", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_ktp_mobile_panels_ktp700:-:*:*:*:*:*:*:*", "matchCriteriaId": "D175BC55-2EAA-4D4A-9E05-2FBB228160F1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "4C618736-1382-4515-A295-6EC67A2731EA", "versionEndExcluding": "16", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700f_firmware:16:-:*:*:*:*:*:*", "matchCriteriaId": "BC0AD5A8-768E-4747-AD89-B924D369565E", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700f_firmware:16:update1:*:*:*:*:*:*", "matchCriteriaId": "4C2FD1E4-4A01-4BFB-9D2A-5A030C37BD96", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700f_firmware:16:update2:*:*:*:*:*:*", "matchCriteriaId": "0AA5C3DC-E67F-4773-B32C-6B362C94BCBE", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700f_firmware:16:update3:*:*:*:*:*:*", "matchCriteriaId": "C96C7676-9A0D-46B5-9C49-5F5CE873E2C1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_ktp_mobile_panels_ktp700f:-:*:*:*:*:*:*:*", "matchCriteriaId": "5C39166C-38CA-426F-9702-B9CA5ED6630C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "AF42C3EA-84A5-4419-ACBA-6A2F8DB994E2", "versionEndExcluding": "16", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900_firmware:16:-:*:*:*:*:*:*", "matchCriteriaId": "105CCE4B-D8F9-43EA-9089-CEE16A410751", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900_firmware:16:update1:*:*:*:*:*:*", "matchCriteriaId": "7C163E7E-C9E3-4FBD-885A-C2E7FB8B845F", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900_firmware:16:update2:*:*:*:*:*:*", "matchCriteriaId": "2CD3DD84-BDAC-4583-BD61-799A5F01A5B4", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900_firmware:16:update3:*:*:*:*:*:*", "matchCriteriaId": "0A4F6758-0B36-4546-A7A7-A4C71B63772E", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_ktp_mobile_panels_ktp900:-:*:*:*:*:*:*:*", "matchCriteriaId": "D29338CD-57BD-4734-9204-118EA53D42FB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "12A613F7-4EA4-40FF-931F-EF3C477300DA", "versionEndExcluding": "16", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900f_firmware:16:-:*:*:*:*:*:*", "matchCriteriaId": "4B048552-A26D-419E-9EEA-9AFD9457B70B", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900f_firmware:16:update1:*:*:*:*:*:*", "matchCriteriaId": "0E4E1016-F217-4B75-83D7-F73B1C5A54F9", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900f_firmware:16:update2:*:*:*:*:*:*", "matchCriteriaId": "EF2F6982-2C38-4F9B-87A4-AE4404197B7A", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900f_firmware:16:update3:*:*:*:*:*:*", "matchCriteriaId": "7745AA84-BC12-4DBD-90A6-DA294EADB7BF", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_ktp_mobile_panels_ktp900f:-:*:*:*:*:*:*:*", "matchCriteriaId": "9E7858AB-F89E-4E50-8873-DE8F5F2A07CB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_7\\\"_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "67CFFD89-1FF2-4F25-A5AB-D6FF8F721132", "versionEndExcluding": "15.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_7\\\"_firmware:15.1:-:*:*:*:*:*:*", "matchCriteriaId": "BA4B198A-8288-459D-9586-CD402DE23023", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_7\\\"_firmware:15.1:update1:*:*:*:*:*:*", "matchCriteriaId": "AC4FDB83-702A-41D5-B2A5-BDA58B7E13D2", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_7\\\"_firmware:15.1:update2:*:*:*:*:*:*", "matchCriteriaId": "D972823A-1128-4222-8910-9CA3D38B472F", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_7\\\"_firmware:15.1:update3:*:*:*:*:*:*", "matchCriteriaId": "A05007D7-3C49-4192-ABDF-FE94BA7FD1D1", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_7\\\"_firmware:15.1:update4:*:*:*:*:*:*", "matchCriteriaId": "869AD837-79B1-4F76-947B-7DCAD172BDC0", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_7\\\"_firmware:15.1:update5:*:*:*:*:*:*", "matchCriteriaId": "5C152EB8-A13A-4F16-994A-B6D93A017CC3", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_comfort_outdoor_panels_7\\\":-:*:*:*:*:*:*:*", "matchCriteriaId": "B531FDD4-2796-4FE9-9F94-E9D461C7C528", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_15\\\"_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "42F38FBA-7D23-4CB2-9A2D-45616E2A2DFB", "versionEndExcluding": "15.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_15\\\"_firmware:15.1:-:*:*:*:*:*:*", "matchCriteriaId": "553C9A57-A9D2-47F9-ABA8-042B05DE46C7", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_15\\\"_firmware:15.1:update1:*:*:*:*:*:*", "matchCriteriaId": "8F5F3B33-2A82-4CDF-A678-76DE13F256D7", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_15\\\"_firmware:15.1:update2:*:*:*:*:*:*", "matchCriteriaId": "9FE49F2D-B904-4E48-AAFD-669141B570F6", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_15\\\"_firmware:15.1:update3:*:*:*:*:*:*", "matchCriteriaId": "729F784C-9AC0-4231-A75A-1FA8373FA31F", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_15\\\"_firmware:15.1:update4:*:*:*:*:*:*", "matchCriteriaId": "FA61AC05-061D-4EE7-BFEF-568F30B9B883", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_15\\\"_firmware:15.1:update5:*:*:*:*:*:*", "matchCriteriaId": "374BAF2F-0A32-4F1A-B838-894F9E9D3E0F", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_comfort_outdoor_panels_15\\\":-:*:*:*:*:*:*:*", "matchCriteriaId": "39DA22F7-E4B6-4A1E-9CCB-651EBEFD691D", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_4\\\"_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6C636FCD-78AE-4FA2-95E5-2BBD5A88DA68", "versionEndExcluding": "15.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_4\\\"_firmware:15.1:-:*:*:*:*:*:*", "matchCriteriaId": "FDE42199-9152-41A3-BE56-E6789315CF28", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_4\\\"_firmware:15.1:update1:*:*:*:*:*:*", "matchCriteriaId": "040F990F-F3C2-46EF-9E40-FD136A19575F", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_4\\\"_firmware:15.1:update2:*:*:*:*:*:*", "matchCriteriaId": "748BFFBC-56BD-42EC-9B5F-0752D2A70D17", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_4\\\"_firmware:15.1:update3:*:*:*:*:*:*", "matchCriteriaId": "B37490B0-A214-4A62-9B67-934048921C1E", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_4\\\"_firmware:15.1:update4:*:*:*:*:*:*", "matchCriteriaId": "3D7B9F45-5749-4F36-961D-6C5D650ADA07", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_4\\\"_firmware:15.1:update5:*:*:*:*:*:*", "matchCriteriaId": "F544593D-368B-4EC1-8448-8C2BA1301216", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_comfort_panels_4\\\":-:*:*:*:*:*:*:*", "matchCriteriaId": "D63658BB-2364-4DE5-904B-2367B70294AC", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_22\\\"_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A9D26D9F-7081-42B2-8AE4-D04E8429B88D", "versionEndExcluding": "15.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_22\\\"_firmware:15.1:-:*:*:*:*:*:*", "matchCriteriaId": "5F902732-9944-4821-BCFB-9937D1301FF6", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_22\\\"_firmware:15.1:update1:*:*:*:*:*:*", "matchCriteriaId": "B0C061AC-3E64-4667-A0E7-DD58B2E5A014", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_22\\\"_firmware:15.1:update2:*:*:*:*:*:*", "matchCriteriaId": "3EECF743-25E8-4483-AA68-B304B38A9290", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_22\\\"_firmware:15.1:update3:*:*:*:*:*:*", "matchCriteriaId": "2F557157-AAD6-4601-84C2-2F8574F23683", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_22\\\"_firmware:15.1:update4:*:*:*:*:*:*", "matchCriteriaId": "A6BF6644-AF29-4541-9D6A-D07D0CC026F0", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_comfort_panels_22\\\"_firmware:15.1:update5:*:*:*:*:*:*", "matchCriteriaId": "C4FD5396-8094-4DD0-BE7B-0FB6CC6D45F1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_comfort_panels_22\\\":-:*:*:*:*:*:*:*", "matchCriteriaId": "DFDC8157-7EA3-4BC4-82C1-06A307996F45", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp400f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A8EC6926-258F-4F5C-88D2-33FE363340DB", "versionEndExcluding": "15.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp400f_firmware:15.1:-:*:*:*:*:*:*", "matchCriteriaId": "97E283EF-A950-40E7-91C7-839203A333A5", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp400f_firmware:15.1:update1:*:*:*:*:*:*", "matchCriteriaId": "B5B130C2-28B8-464C-981C-B5662B4B4309", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp400f_firmware:15.1:update2:*:*:*:*:*:*", "matchCriteriaId": "79407355-4181-4082-A661-C27734D95363", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp400f_firmware:15.1:update3:*:*:*:*:*:*", "matchCriteriaId": "8989C7D4-5246-443E-B6E4-8E91462B2E96", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp400f_firmware:15.1:update4:*:*:*:*:*:*", "matchCriteriaId": "2BFBC5B2-B00B-4FCD-86B1-A187122035AB", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp400f_firmware:15.1:update5:*:*:*:*:*:*", "matchCriteriaId": "B47671A7-A8DB-4DA2-9076-78708C7F1C42", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_ktp_mobile_panels_ktp400f:-:*:*:*:*:*:*:*", "matchCriteriaId": "F106DEE3-4DED-46E4-9661-9D9C7B729BC0", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "2D9CF819-E06C-4EAA-85B3-AC40E039D485", "versionEndExcluding": "15.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700_firmware:15.1:-:*:*:*:*:*:*", "matchCriteriaId": "4AF727E5-7849-4980-8AA5-7469FD52DF86", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700_firmware:15.1:update1:*:*:*:*:*:*", "matchCriteriaId": "F36ABC58-C9FE-4F4A-AB81-26D48A79FFD2", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700_firmware:15.1:update2:*:*:*:*:*:*", "matchCriteriaId": "A87DD9FF-9CA3-4AE2-8C86-C30A779E0CE6", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700_firmware:15.1:update3:*:*:*:*:*:*", "matchCriteriaId": "891AF48F-1F4D-4AB8-AE66-FBABDD2CAA76", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700_firmware:15.1:update4:*:*:*:*:*:*", "matchCriteriaId": "5052CB07-626A-46C4-8966-B8C9325A3BB3", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700_firmware:15.1:update5:*:*:*:*:*:*", "matchCriteriaId": "6CD47CC7-1414-42C9-94C6-9DBC2C1D9CBE", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_ktp_mobile_panels_ktp700:-:*:*:*:*:*:*:*", "matchCriteriaId": "D175BC55-2EAA-4D4A-9E05-2FBB228160F1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B28FB484-526A-437E-80E3-B62F54F1BEF6", "versionEndExcluding": "15.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700f_firmware:15.1:-:*:*:*:*:*:*", "matchCriteriaId": "61DFC57F-0359-4B4A-A13C-067B21D3DA7B", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700f_firmware:15.1:update1:*:*:*:*:*:*", "matchCriteriaId": "81CE70BF-EBBE-4CD7-999C-25662670EFCB", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700f_firmware:15.1:update2:*:*:*:*:*:*", "matchCriteriaId": "034B7CFC-1234-4914-8C84-7E5BD5FB6E4D", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700f_firmware:15.1:update3:*:*:*:*:*:*", "matchCriteriaId": "221EB3AE-1420-46F8-9EAD-1914503B0435", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700f_firmware:15.1:update4:*:*:*:*:*:*", "matchCriteriaId": "5F9A416C-277F-44B0-A74C-263CB0C37D03", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp700f_firmware:15.1:update5:*:*:*:*:*:*", "matchCriteriaId": "FA858127-69A0-4280-80A8-65E0778A90AD", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_ktp_mobile_panels_ktp700f:-:*:*:*:*:*:*:*", "matchCriteriaId": "5C39166C-38CA-426F-9702-B9CA5ED6630C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "66FC2264-7DDD-4BEF-9795-AC6A5A00886B", "versionEndExcluding": "15.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900_firmware:15.1:-:*:*:*:*:*:*", "matchCriteriaId": "D68363A9-D1D5-4E49-98D1-E5F8C324BC22", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900_firmware:15.1:update1:*:*:*:*:*:*", "matchCriteriaId": "A35D0B0C-695D-4274-8B9E-69ED20B62585", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900_firmware:15.1:update2:*:*:*:*:*:*", "matchCriteriaId": "FE9C9981-BA54-48BB-A89D-3CA06C7E17C6", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900_firmware:15.1:update3:*:*:*:*:*:*", "matchCriteriaId": "EA400339-123F-494A-8CD8-7232281E7D29", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900_firmware:15.1:update4:*:*:*:*:*:*", "matchCriteriaId": "C8E943A5-E35C-4CFA-8998-A74385C8740B", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900_firmware:15.1:update5:*:*:*:*:*:*", "matchCriteriaId": "F4D7038E-C705-4FB9-A2D3-82FFC8EE80CC", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_ktp_mobile_panels_ktp900:-:*:*:*:*:*:*:*", "matchCriteriaId": "D29338CD-57BD-4734-9204-118EA53D42FB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8E4F0084-91A5-4D7E-971B-9DB979849594", "versionEndExcluding": "15.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900f_firmware:15.1:-:*:*:*:*:*:*", "matchCriteriaId": "36EEF9EB-91EF-4697-A963-7C8F955778EC", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900f_firmware:15.1:update1:*:*:*:*:*:*", "matchCriteriaId": "AA0728BD-F463-456C-A6EB-9FF2FD42AA23", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900f_firmware:15.1:update2:*:*:*:*:*:*", "matchCriteriaId": "7BB0B884-C99A-4854-992F-8588840CC296", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900f_firmware:15.1:update3:*:*:*:*:*:*", "matchCriteriaId": "04BA4916-5693-4915-B4D7-29D97FA02474", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900f_firmware:15.1:update4:*:*:*:*:*:*", "matchCriteriaId": "DC588CE7-1F9D-43EF-A478-C23C8D909685", "vulnerable": true}, {"criteria": "cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_ktp900f_firmware:15.1:update5:*:*:*:*:*:*", "matchCriteriaId": "2DE08529-E210-48C1-A7C3-D2D316902A40", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:siemens:simatic_hmi_ktp_mobile_panels_ktp900f:-:*:*:*:*:*:*:*", "matchCriteriaId": "9E7858AB-F89E-4E50-8873-DE8F5F2A07CB", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:*:*:*:*:*:*:*:*", "matchCriteriaId": "06364800-4C54-4BE4-B4AA-0CF29E4E82AA", "versionEndExcluding": "15.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:15.1:-:*:*:*:*:*:*", "matchCriteriaId": "4FBDFA7B-504A-4F58-967F-15CAFCEB5594", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:15.1:update1:*:*:*:*:*:*", "matchCriteriaId": "4D184A8F-963A-4730-AED4-1994EEA91702", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:15.1:update2:*:*:*:*:*:*", "matchCriteriaId": "16DAC92E-141C-4923-96F5-2620F60E763A", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:15.1:update3:*:*:*:*:*:*", "matchCriteriaId": "B3300D8B-E0A1-4CEF-8BE0-AED3F19E9015", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:15.1:update4:*:*:*:*:*:*", "matchCriteriaId": "8104E528-ED7D-451E-8834-057295A7FF49", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:15.1:update5:*:*:*:*:*:*", "matchCriteriaId": "0AF02DF4-7190-4F6C-8F15-37581FFC9B86", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\\\" & 15\\\" (incl. SIPLUS variants) (All versions < V15.1 Update 6), SIMATIC HMI Comfort Outdoor Panels V16 7\\\" & 15\\\" (incl. SIPLUS variants) (All versions < V16 Update 4), SIMATIC HMI Comfort Panels V15 4\\\" - 22\\\" (incl. SIPLUS variants) (All versions < V15.1 Update 6), SIMATIC HMI Comfort Panels V16 4\\\" - 22\\\" (incl. SIPLUS variants) (All versions < V16 Update 4), SIMATIC HMI KTP Mobile Panels V15 KTP400F, KTP700, KTP700F, KTP900 and KTP900F (All versions < V15.1 Update 6), SIMATIC HMI KTP Mobile Panels V16 KTP400F, KTP700, KTP700F, KTP900 and KTP900F (All versions < V16 Update 4), SIMATIC WinCC Runtime Advanced V15 (All versions < V15.1 Update 6), SIMATIC WinCC Runtime Advanced V16 (All versions < V16 Update 4). SmartVNC has an out-of-bounds memory access vulnerability that could be triggered on the client side when sending data from the server, which could result in a Denial-of-Service condition."}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad en SIMATIC HMI Comfort Outdoor Panels V15 7\\\" &amp; 15\\\" (incluyendo las variantes SIPLUS) (Todas las versiones anteriores a V15.1 Update 6), SIMATIC HMI Comfort Outdoor Panels V16 7\\\" &amp; 15\\\" (incluyendo las variantes SIPLUS) (Todas las versiones anteriores a V16 Update 4), SIMATIC HMI Comfort Panels V15 4\\\" - 22\\\" (incluyendo las variantes SIPLUS) (Todas las versiones anteriores a V15.1 Update 6), SIMATIC HMI Comfort Panels V16 4\\\" - 22\\\" (incluyendo las variantes SIPLUS) (Todas las versiones anteriores a V16 Update 4), SIMATIC HMI KTP Mobile Panels V15 KTP400F, KTP700, KTP700F, KTP900 and KTP900F (Todas las versiones anteriores a V15.1 Update 6), SIMATIC HMI KTP Mobile Panels V16 KTP400F, KTP700, KTP700F, KTP900 and KTP900F (Todas las versiones anteriores a V16 Update 4), SIMATIC WinCC Runtime Advanced V15 (Todas las versiones anteriores a V15.1 Update 6), SIMATIC WinCC Runtime Advanced V16 (Todas las versiones anteriores a V16 Update 4). SmartVNC tiene una vulnerabilidad de acceso a la memoria fuera de los l\u00edmites que podr\u00eda activarse en el lado del cliente al enviar datos desde el servidor, lo que podr\u00eda dar lugar a una condici\u00f3n de denegaci\u00f3n de servicio"}], "id": "CVE-2021-25661", "lastModified": "2021-12-16T18:26:51.387", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2021-05-12T14:15:11.300", "references": [{"source": "productcert@siemens.com", "tags": ["Vendor Advisory"], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-538778.pdf"}, {"source": "productcert@siemens.com", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-131-12"}], "sourceIdentifier": "productcert@siemens.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-788"}], "source": "productcert@siemens.com", "type": "Primary"}]}

{}