{"containers": {"cna": {"affected": [{"product": "Primary Setup Tool (PST)", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V4.2 HF1"}]}, {"product": "SIMATIC Automation Tool", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V3.0"}]}, {"product": "SIMATIC NET PC-Software", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V14 SP1"}]}, {"product": "SIMATIC PCS 7 V8.1", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions"}]}, {"product": "SIMATIC PCS 7 V8.2", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V8.2 SP1"}]}, {"product": "SIMATIC STEP 7 (TIA Portal) V13", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V13 SP2"}]}, {"product": "SIMATIC STEP 7 (TIA Portal) V14", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V14 SP1"}]}, {"product": "SIMATIC STEP 7 V5.X", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V5.6"}]}, {"product": "SIMATIC WinAC RTX 2010 SP2", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions"}]}, {"product": "SIMATIC WinAC RTX F 2010 SP2", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions"}]}, {"product": "SIMATIC WinCC (TIA Portal) V13", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V13 SP2"}]}, {"product": "SIMATIC WinCC (TIA Portal) V14", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V14 SP1"}]}, {"product": "SIMATIC WinCC V7.2 and prior", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions"}]}, {"product": "SIMATIC WinCC V7.3", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V7.3 Update 15"}]}, {"product": "SIMATIC WinCC V7.4", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V7.4 SP1 Upd1"}]}, {"product": "SIMATIC WinCC flexible 2008", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < flexible 2008 SP5"}]}, {"product": "SINAUT ST7CC", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions installed in conjunction with SIMATIC WinCC < V7.3 Update 15"}]}, {"product": "SINEMA Server", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V14"}]}, {"product": "SINUMERIK 808D Programming Tool", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V4.7 SP4 HF2"}]}, {"product": "SMART PC Access", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V2.3"}]}, {"product": "STEP 7 - Micro/WIN SMART", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V2.3"}]}, {"product": "Security Configuration Tool (SCT)", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V5.0"}]}, {"product": "Security Configuration Tool (SCT)", "vendor": "Siemens AG", "versions": [{"status": "affected", "version": "All versions < V5.0"}]}], "datePublic": "2017-05-10T00:00:00", "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in Primary Setup Tool (PST) (All versions < V4.2 HF1), SIMATIC Automation Tool (All versions < V3.0), SIMATIC NET PC-Software (All versions < V14 SP1), SIMATIC PCS 7 V8.1 (All versions), SIMATIC PCS 7 V8.2 (All versions < V8.2 SP1), SIMATIC STEP 7 (TIA Portal) V13 (All versions < V13 SP2), SIMATIC STEP 7 (TIA Portal) V14 (All versions < V14 SP1), SIMATIC STEP 7 V5.X (All versions < V5.6), SIMATIC WinAC RTX 2010 SP2 (All versions), SIMATIC WinAC RTX F 2010 SP2 (All versions), SIMATIC WinCC (TIA Portal) V13 (All versions < V13 SP2), SIMATIC WinCC (TIA Portal) V14 (All versions < V14 SP1), SIMATIC WinCC V7.2 and prior (All versions), SIMATIC WinCC V7.3 (All versions < V7.3 Update 15), SIMATIC WinCC V7.4 (All versions < V7.4 SP1 Upd1), SIMATIC WinCC flexible 2008 (All versions < flexible 2008 SP5), SINAUT ST7CC (All versions installed in conjunction with SIMATIC WinCC < V7.3 Update 15), SINEMA Server (All versions < V14), SINUMERIK 808D Programming Tool (All versions < V4.7 SP4 HF2), SMART PC Access (All versions < V2.3), STEP 7 - Micro/WIN SMART (All versions < V2.3), Security Configuration Tool (SCT) (All versions < V5.0). Specially crafted PROFINET DCP broadcast packets sent to the affected products on a local Ethernet segment (Layer 2) could cause a Denial-of-Service condition of some services. The services require manual restart to recover."}], "problemTypes": [{"descriptions": [{"description": "Other", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-03-21T15:44:20", "orgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77", "shortName": "siemens"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-275839.pdf"}, {"name": "98366", "tags": ["vdb-entry", "x_refsource_BID"], "url": "https://www.securityfocus.com/bid/98366"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "productcert@siemens.com", "ID": "CVE-2017-6865", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Primary Setup Tool (PST)", "version": {"version_data": [{"version_value": "All versions < V4.2 HF1"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC Automation Tool", "version": {"version_data": [{"version_value": "All versions < V3.0"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC NET PC-Software", "version": {"version_data": [{"version_value": "All versions < V14 SP1"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC PCS 7 V8.1", "version": {"version_data": [{"version_value": "All versions"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC PCS 7 V8.2", "version": {"version_data": [{"version_value": "All versions < V8.2 SP1"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC STEP 7 (TIA Portal) V13", "version": {"version_data": [{"version_value": "All versions < V13 SP2"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC STEP 7 (TIA Portal) V14", "version": {"version_data": [{"version_value": "All versions < V14 SP1"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC STEP 7 V5.X", "version": {"version_data": [{"version_value": "All versions < V5.6"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC WinAC RTX 2010 SP2", "version": {"version_data": [{"version_value": "All versions"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC WinAC RTX F 2010 SP2", "version": {"version_data": [{"version_value": "All versions"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC WinCC (TIA Portal) V13", "version": {"version_data": [{"version_value": "All versions < V13 SP2"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC WinCC (TIA Portal) V14", "version": {"version_data": [{"version_value": "All versions < V14 SP1"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC WinCC V7.2 and prior", "version": {"version_data": [{"version_value": "All versions"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC WinCC V7.3", "version": {"version_data": [{"version_value": "All versions < V7.3 Update 15"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC WinCC V7.4", "version": {"version_data": [{"version_value": "All versions < V7.4 SP1 Upd1"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SIMATIC WinCC flexible 2008", "version": {"version_data": [{"version_value": "All versions < flexible 2008 SP5"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SINAUT ST7CC", "version": {"version_data": [{"version_value": "All versions installed in conjunction with SIMATIC WinCC < V7.3 Update 15"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SINEMA Server", "version": {"version_data": [{"version_value": "All versions < V14"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SINUMERIK 808D Programming Tool", "version": {"version_data": [{"version_value": "All versions < V4.7 SP4 HF2"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "SMART PC Access", "version": {"version_data": [{"version_value": "All versions < V2.3"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "STEP 7 - Micro/WIN SMART", "version": {"version_data": [{"version_value": "All versions < V2.3"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "Security Configuration Tool (SCT)", "version": {"version_data": [{"version_value": "All versions < V5.0"}]}}]}, "vendor_name": "Siemens AG"}, {"product": {"product_data": [{"product_name": "Security Configuration Tool (SCT)", "version": {"version_data": [{"version_value": "All versions < V5.0"}]}}]}, "vendor_name": "Siemens AG"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A vulnerability has been identified in Primary Setup Tool (PST) (All versions < V4.2 HF1), SIMATIC Automation Tool (All versions < V3.0), SIMATIC NET PC-Software (All versions < V14 SP1), SIMATIC PCS 7 V8.1 (All versions), SIMATIC PCS 7 V8.2 (All versions < V8.2 SP1), SIMATIC STEP 7 (TIA Portal) V13 (All versions < V13 SP2), SIMATIC STEP 7 (TIA Portal) V14 (All versions < V14 SP1), SIMATIC STEP 7 V5.X (All versions < V5.6), SIMATIC WinAC RTX 2010 SP2 (All versions), SIMATIC WinAC RTX F 2010 SP2 (All versions), SIMATIC WinCC (TIA Portal) V13 (All versions < V13 SP2), SIMATIC WinCC (TIA Portal) V14 (All versions < V14 SP1), SIMATIC WinCC V7.2 and prior (All versions), SIMATIC WinCC V7.3 (All versions < V7.3 Update 15), SIMATIC WinCC V7.4 (All versions < V7.4 SP1 Upd1), SIMATIC WinCC flexible 2008 (All versions < flexible 2008 SP5), SINAUT ST7CC (All versions installed in conjunction with SIMATIC WinCC < V7.3 Update 15), SINEMA Server (All versions < V14), SINUMERIK 808D Programming Tool (All versions < V4.7 SP4 HF2), SMART PC Access (All versions < V2.3), STEP 7 - Micro/WIN SMART (All versions < V2.3), Security Configuration Tool (SCT) (All versions < V5.0). Specially crafted PROFINET DCP broadcast packets sent to the affected products on a local Ethernet segment (Layer 2) could cause a Denial-of-Service condition of some services. The services require manual restart to recover."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "Other"}]}]}, "references": {"reference_data": [{"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-275839.pdf", "refsource": "CONFIRM", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-275839.pdf"}, {"name": "98366", "refsource": "BID", "url": "https://www.securityfocus.com/bid/98366"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T15:41:17.697Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-275839.pdf"}, {"name": "98366", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "https://www.securityfocus.com/bid/98366"}]}]}, "cveMetadata": {"assignerOrgId": "cec7a2ec-15b4-4faf-bd53-b40f371f3a77", "assignerShortName": "siemens", "cveId": "CVE-2017-6865", "datePublished": "2017-05-11T10:00:00", "dateReserved": "2017-03-13T00:00:00", "dateUpdated": "2024-08-05T15:41:17.697Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:siemens:pcs_7:-:*:*:*:*:*:*:*", "matchCriteriaId": "399B0B7B-17F7-463C-A124-5DE77337E212", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:primary_setup_tool:-:*:*:*:*:*:*:*", "matchCriteriaId": "8046A64D-4C80-4199-B1A7-F77D02428ACD", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:security_configuration_tool:-:*:*:*:*:*:*:*", "matchCriteriaId": "C33765E4-619E-4566-BF96-4A7C8776A0CB", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_automation_tool:-:*:*:*:*:*:*:*", "matchCriteriaId": "5306C1B1-5944-49F1-8BEC-5F811C891BED", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_net_pc-software:-:*:*:*:*:*:*:*", "matchCriteriaId": "6BE3E184-1158-488C-A689-34C70C6861F4", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_step_7_\\(tia_portal\\):5.0:*:*:*:*:*:*:*", "matchCriteriaId": "3F096B1D-366B-4E2E-A03F-607559623FE8", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_step_7_\\(tia_portal\\):13.0:*:*:*:*:*:*:*", "matchCriteriaId": "32A02189-0785-4A64-BC00-830733F21792", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_step_7_\\(tia_portal\\):14.0:*:*:*:*:*:*:*", "matchCriteriaId": "62D57BAA-A31B-4369-837D-90796779C487", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_step_7_micro\\/win_smart:-:*:*:*:*:*:*:*", "matchCriteriaId": "00CA4054-615D-4821-909A-411E4BCD3D06", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_winac_rtx_2010:-:sp2:*:*:*:*:*:*", "matchCriteriaId": "9D74E76A-5EE5-41AE-9C56-742EC9AD1408", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_winac_rtx_f_2010:-:sp2:*:*:*:*:*:*", "matchCriteriaId": "FB81FD88-3D70-4413-B035-93A3D5389170", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_wincc:-:*:*:*:*:*:*:*", "matchCriteriaId": "0F7BB505-A6B6-4200-9602-E4D348E407AB", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_wincc_\\(tia_portal\\):13.0:*:*:*:*:*:*:*", "matchCriteriaId": "E3D1A823-CE50-441F-B060-DA678DFE24FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_wincc_\\(tia_portal\\):14.0:*:*:*:*:*:*:*", "matchCriteriaId": "28A1BA01-7A92-4368-8A73-8FA47A08BC53", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:simatic_wincc_flexible_2008:-:*:*:*:*:*:*:*", "matchCriteriaId": "E2429ABE-55D8-4E6D-89EB-CE016B9336ED", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:sinaut_st7cc:-:*:*:*:*:*:*:*", "matchCriteriaId": "0BCB1BDC-91E7-48DC-85BA-45A2B5B840B0", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:sinema_server:-:*:*:*:*:*:*:*", "matchCriteriaId": "DCC74BDB-87BD-40E1-8426-0353266F194E", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:sinumerik_808d_programming_tool:-:*:*:*:*:*:*:*", "matchCriteriaId": "B82B7F7E-C9D4-4B31-9482-41BF35C8F470", "vulnerable": true}, {"criteria": "cpe:2.3:a:siemens:smart_pc_access:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "F54273D3-5C43-4343-B71F-FAD16A5CEF50", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability has been identified in Primary Setup Tool (PST) (All versions < V4.2 HF1), SIMATIC Automation Tool (All versions < V3.0), SIMATIC NET PC-Software (All versions < V14 SP1), SIMATIC PCS 7 V8.1 (All versions), SIMATIC PCS 7 V8.2 (All versions < V8.2 SP1), SIMATIC STEP 7 (TIA Portal) V13 (All versions < V13 SP2), SIMATIC STEP 7 (TIA Portal) V14 (All versions < V14 SP1), SIMATIC STEP 7 V5.X (All versions < V5.6), SIMATIC WinAC RTX 2010 SP2 (All versions), SIMATIC WinAC RTX F 2010 SP2 (All versions), SIMATIC WinCC (TIA Portal) V13 (All versions < V13 SP2), SIMATIC WinCC (TIA Portal) V14 (All versions < V14 SP1), SIMATIC WinCC V7.2 and prior (All versions), SIMATIC WinCC V7.3 (All versions < V7.3 Update 15), SIMATIC WinCC V7.4 (All versions < V7.4 SP1 Upd1), SIMATIC WinCC flexible 2008 (All versions < flexible 2008 SP5), SINAUT ST7CC (All versions installed in conjunction with SIMATIC WinCC < V7.3 Update 15), SINEMA Server (All versions < V14), SINUMERIK 808D Programming Tool (All versions < V4.7 SP4 HF2), SMART PC Access (All versions < V2.3), STEP 7 - Micro/WIN SMART (All versions < V2.3), Security Configuration Tool (SCT) (All versions < V5.0). Specially crafted PROFINET DCP broadcast packets sent to the affected products on a local Ethernet segment (Layer 2) could cause a Denial-of-Service condition of some services. The services require manual restart to recover."}, {"lang": "es", "value": "Se ha identificado una vulnerabilidad en Primary Setup Tool (PST) (todas las versiones 4.2 HF1), SIMATIC Automation Tool (todas las versiones 3.0), SIMATIC NET PC-software (todas las versiones 14 SP1), SIMATIC PCS 7 Versi\u00f3n 8.1 (todas las versiones), SIMATIC PCS 7 Versi\u00f3n 8.2 (todas las versiones 8.2 SP1), SIMATIC STEP Versi\u00f3n 7 (TIA Portal) Versi\u00f3n 13 (todas las versiones 13 SP2), SIMATIC STEP Versi\u00f3n 7 (TIA Portal) Versi\u00f3n 14 (todas las versiones 14 SP1), SIMATIC STEP 7 Versi\u00f3n 5.x (todas las versiones 5.6), SIMATIC WinAC RTX 2010 SP2 (todas las versiones), SIMATIC WinAC RTX F 2010 SP2 (todas versiones), SIMATIC WinCC (TIA Portal) Versi\u00f3n 13 (todas las versiones 13 SP2), SIMATIC WinCC (TIA Portal) Versi\u00f3n 14 (todas las versiones 14 SP1), SIMATIC WinCC Versi\u00f3n 7.2 y anteriores (todos versiones), SIMATIC WinCC Versi\u00f3n 7.3 (todas las versiones 7.3 actualizaci\u00f3n 15), SIMATIC WinCC Versi\u00f3n 7.4 (todas las versiones 7.4 SP1 Upd1), SIMATIC WinCC flexible 2008 (todas las versiones anteriores a flexible 2008 SP5), SINAUT ST7CC (todas las versiones instaladas en conjunto con SIMATIC WinCC Versi\u00f3n 7.3 actualizaci\u00f3n 15), SINEMA Server (todas las versiones 14), SINUMERIK 808D Programming Tool (todas las versiones 4.7 SP4 HF2), SMART PC Access (todas las versiones 2.3), STEP 7 - Micro/WIN SMART (todas las versiones 2.3), Security Configuration Tool (SCT) (todas las versiones 5.0). Los paquetes de difusi\u00f3n PROFINET DCP especialmente creados enviados a los productos afectados en un segmento Ethernet local (Layer 2) podr\u00edan causar una condici\u00f3n de denegaci\u00f3n de servicio de algunos servicios. Los servicios requieren el reinicio manual para recuperarse."}], "id": "CVE-2017-6865", "lastModified": "2019-03-21T16:29:00.407", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 6.5, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "version": "3.0"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-05-11T10:29:00.227", "references": [{"source": "productcert@siemens.com", "url": "https://cert-portal.siemens.com/productcert/pdf/ssa-275839.pdf"}, {"source": "productcert@siemens.com", "url": "https://www.securityfocus.com/bid/98366"}], "sourceIdentifier": "productcert@siemens.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}