Vulnerability Details CVE-2014-4685
Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows local users to gain privileges by leveraging weak system-object access control.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 16.9%
CVSS Severity
CVSS v2 Score 4.6
References
Products affected by CVE-2014-4685
-
cpe:2.3:a:siemens:simatic_pcs7:7.1
-
cpe:2.3:a:siemens:simatic_pcs7:8.0
-
cpe:2.3:a:siemens:wincc:5.0
-
cpe:2.3:a:siemens:wincc:6.0
-
cpe:2.3:a:siemens:wincc:7.0
-
cpe:2.3:a:siemens:wincc:7.1
-
cpe:2.3:a:siemens:wincc:7.2