Siemens SIMATIC STEP 7 Local Privilege Escalation Vulnerability in TIA Portal (SSA-629512)

high Nessus Plugin ID 133216

Language:

Version 1.236 Nov 12, 2024, 8:29 PM Logic Changes (Adding installs report) Plugin Feed: 202411122029
Version 1.234 Oct 29, 2024, 8:44 PM Logic Changes (Extend structured reporting to vcf_extras) Plugin Feed: 202410292044
Version 1.230 Oct 10, 2024, 11:57 PM New Plugin Feed: 202410102357
Version 1.228 Oct 9, 2024, 5:56 PM Logic Changes (Corrects vulnerability-finding structured data tags to include the port.) Plugin Feed: 202410091756
Version 1.224 Oct 3, 2024, 6:29 PM Detection (Adding hardware constraint support to VCF and UCF) Plugin Feed: 202410031829
Version 1.223 Oct 2, 2024, 4:10 PM Logic Changes (Adds structured data reports to a subset of manual plugins.) Plugin Feed: 202410021610
Version 1.222 Sep 3, 2024, 11:47 PM Logic Changes (additional data collection for runtime scanning. fixed logic bug causing potential false negatives. fixed logic bug causing potential false positives. fixed logic bug with potential to break cyberark logins) Plugin Feed: 202409032347
Version 1.212 Jul 17, 2024, 11:02 PM Logic Changes Plugin Feed: 202407172302
Version 1.210 Jul 8, 2024, 5:06 PM New Plugin Feed: 202407081706
Version 1.209 Jul 1, 2024, 6:22 PM Detection (java detection refactor) Plugin Feed: 202407011822
Version 1.204 Jun 11, 2024, 3:24 PM New Plugin Feed: 202406111524
Version 1.203 Jun 4, 2024, 12:08 PM New Logic Changes (removed vcf_extras) Plugin Feed: 202406041208
Version 1.200 May 20, 2024, 10:13 AM Logic Changes Plugin Feed: 202405201013
Version 1.197 May 9, 2024, 9:06 PM New Plugin Feed: 202405092106
Version 1.196 Apr 30, 2024, 4:27 AM New Plugin Feed: 202404300427
Version 1.194 Apr 17, 2024, 6:23 PM Logic Changes (add module support) Plugin Feed: 202404171823
Version 1.192 Apr 4, 2024, 3:47 PM Logic Changes Plugin Feed: 202404041547
Version 1.191 Mar 27, 2024, 7:16 PM Detection (store app vuln plugins will require paranoia when we are unable to determine path) Plugin Feed: 202403271916
Version 1.190 Mar 27, 2024, 2:17 PM Plugin requirements (introduced new, modern upstream dependency) Logic Changes (changed to VCF format) Plugin Feed: 202403271417
Version 1.189 Mar 19, 2024, 6:40 PM Logic Changes (Improving logging to reduce disk space usage) Plugin Feed: 202403191840
Version 1.188 Mar 1, 2024, 11:45 AM New Plugin Feed: 202403011145
Version 1.187 Feb 23, 2024, 8:24 PM New Plugin Feed: 202402232024
Version 1.184 Feb 9, 2024, 11:22 AM New Plugin Feed: 202402091122
Version 1.183 Jan 25, 2024, 2:43 PM Logic Changes (Update version detection logic) Plugin Feed: 202401251443
Version 1.181 Jan 16, 2024, 8:55 PM Logic Changes (Improving debug logging) Plugin Feed: 202401162055
Version 1.180 Jan 16, 2024, 5:39 PM Logic Changes (Improving debug logging) Plugin Feed: 202401161739
Version 1.178 Jan 12, 2024, 1:44 PM New Plugin Feed: 202401121344
Version 1.176 Dec 27, 2023, 4:48 PM Detection (Included results from local detection) Plugin Feed: 202312271648
Version 1.175 Dec 27, 2023, 2:38 PM Detection (Included results from local detection) Plugin Feed: 202312271438
Version 1.174 Dec 21, 2023, 6:36 PM New Plugin Feed: 202312211836
Version 1.171 Nov 7, 2023, 5:17 PM Logic Changes (name adjustment) Plugin Feed: 202311071717
Version 1.169 Oct 27, 2023, 6:10 PM Detection (adjusted constraints per advisory) Plugin Feed: 202310271810
Version 1.163 Sep 26, 2023, 8:16 PM Logic Changes Plugin Feed: 202309262016
Version 1.161 Sep 22, 2023, 4:04 PM New Plugin Feed: 202309221604
Version 1.160 Sep 19, 2023, 12:07 PM Logic Changes (Changed how installs are handled internally) Plugin Feed: 202309191207
Version 1.159 Sep 6, 2023, 8:10 PM New Plugin Feed: 202309062010
Version 1.154 Jul 17, 2023, 5:15 PM Logic Changes (Make torture_cgi library PCP clean and consolidate utf16_to_ascii()) Plugin Feed: 202307171715
Version 1.152 Jul 10, 2023, 7:11 PM Logic Changes (Restrict ClientHello ciphersuites by encapsulation) Plugin Feed: 202307101911
Version 1.150 Jun 20, 2023, 9:07 PM Logic Changes (Temporarily limit debug logging) Plugin Feed: 202306202107
Version 1.149 Jun 16, 2023, 10:00 PM New Plugin Feed: 202306162200
Version 1.148 Jun 13, 2023, 7:49 PM New Plugin Feed: 202306131949
Version 1.144 Jun 1, 2023, 5:27 AM Logic Changes (Better logging) Plugin Feed: 202306010527
Version 1.141 May 1, 2023, 9:07 PM Detection (Make and use compatibility wrapper for running commands on scanner localhost to handle deprecation of pread().) Plugin Feed: 202305012107
Version 1.134 Mar 8, 2023, 1:05 AM Logic Changes Plugin Feed: 202303080105

* Changelogs are generally available for changes made after Nov 1, 2022

Detections

Analytics

Siemens SIMATIC STEP 7 Local Privilege Escalation Vulnerability in TIA Portal (SSA-629512)

high Nessus Plugin ID 133216