Siemens SIMATIC TIA Portal 13.x < 13 Upd6 Remote Code Execution

Critical Nessus Plugin ID 81299


The remote host is affected by multiple vulnerabilities.


The remote host has a version of Siemens SIMATIC TIA Portal installed that is 13.x prior to 13 update 6 (1300.6.201.1). It is, therefore, affected by an unspecified flaw in the WinCC component that allows an unauthenticated, remote attacker to execute arbitrary code or extract arbitrary files via specially crafted packets sent to the WinCC server.


Upgrade to Siemens SIMATIC TIA Portal version 13 Upd6 (1300.6.201.1) or later.

See Also

Plugin Details

Severity: Critical

ID: 81299

File Name: scada_siemens_tia_wincc_rce.nbin

Version: $Revision: 1.28 $

Type: local

Family: SCADA

Published: 2015/02/11

Modified: 2018/01/29

Dependencies: 81298

Risk Information

Risk Factor: Critical


Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C


Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:siemens:simatic_tiaportal

Required KB Items: installed_sw/Siemens Totally Integrated Automation Portal

Patch Publication Date: 2014/11/21

Vulnerability Publication Date: 2014/11/21

Reference Information

CVE: CVE-2014-8551, CVE-2014-8552

OSVDB: 114924, 114925

ICSA: 14-329-02C