CVE-2010-2772

Name: CVE-2010-2772
Creator: NVD / NIST
Published: 2010-07-22T05:43:58.25+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 7.8/10EPSS 0.55%

Last modified Jun 16, 2026

CVE-2010-2772 is a high-severity vulnerability rated 7.8/10 on the CVSS scale. Siemens Simatic WinCC and PCS 7 SCADA system uses a hard-coded password, which allows local users to access a back-end database and gain privileges, as demonstrated in the wild in July 2010 by the Stuxnet worm, a different vulnerability than CVE-2010-2568.. EPSS estimates a 0.55% chance of exploitation in the next 30 days.

Description

Siemens Simatic WinCC and PCS 7 SCADA system uses a hard-coded password, which allows local users to access a back-end database and gain privileges, as demonstrated in the wild in July 2010 by the Stuxnet worm, a different vulnerability than CVE-2010-2568.

Metrics

CVSS 3.1

7.8/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

0.55%

41.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-798

Affected Software

Vendor	Product	Versions
Siemens	Simatic Wincc	6.2
Siemens	Simatic Wincc	7.0
Siemens	Simatic Pcs 7	6.0
Siemens	Simatic Pcs 7	6.1
Siemens	Simatic Pcs 7	7.0
Siemens	Simatic Pcs 7	7.1

References

http://ics-cert.us-cert.gov/advisories/ICSA-12-205-01Third Party Advisory, US Government Resource
http://infoworld.com/d/security-central/new-weaponized-virus-targets-industrial-secrets-725Press/Media Coverage
http://infoworld.com/d/security-central/siemens-warns-users-dont-change-passwords-after-worm-attack-915?sourcefssrPress/Media Coverage
http://krebsonsecurity.com/2010/07/experts-warn-of-new-windows-shortcut-flaw/Press/Media Coverage
http://secunia.com/advisories/40682Broken Link
http://support.automation.siemens.com/WW/llisapi.dll?func=cslib.csinfo&lang=en&objid=43876783&caller=viewhttp://support.automation.siemens.com/WW/llisapi.dll?func=cslib.csinfo&lang=en&objid=43876783&cNot Applicable
http://www.automation.siemens.com/forum/guests/PostShow.aspx?PostID=16127&16127&Language=en&PageIndex=1Broken Link
http://www.f-secure.com/weblog/archives/00001987.htmlThird Party Advisory
http://www.sea.siemens.com/us/News/Industrial/Pages/WinCC_Update.aspxBroken Link, Vendor Advisory
http://www.securityfocus.com/bid/41753Broken Link, Third Party Advisory, VDB Entry
http://www.vupen.com/english/advisories/2010/1893Broken Link
http://www.wilderssecurity.com/showpost.php?p=1712134&postcount=22Exploit, Issue Tracking
http://www.wired.com/threatlevel/2010/07/siemens-scada/Press/Media Coverage, Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/60587Third Party Advisory, VDB Entry
http://ics-cert.us-cert.gov/advisories/ICSA-12-205-01Third Party Advisory, US Government Resource
http://infoworld.com/d/security-central/new-weaponized-virus-targets-industrial-secrets-725Press/Media Coverage
http://infoworld.com/d/security-central/siemens-warns-users-dont-change-passwords-after-worm-attack-915?sourcefssrPress/Media Coverage
http://krebsonsecurity.com/2010/07/experts-warn-of-new-windows-shortcut-flaw/Press/Media Coverage
http://secunia.com/advisories/40682Broken Link
http://support.automation.siemens.com/WW/llisapi.dll?func=cslib.csinfo&lang=en&objid=43876783&caller=viewhttp://support.automation.siemens.com/WW/llisapi.dll?func=cslib.csinfo&lang=en&objid=43876783&cNot Applicable
http://www.automation.siemens.com/forum/guests/PostShow.aspx?PostID=16127&16127&Language=en&PageIndex=1Broken Link
http://www.f-secure.com/weblog/archives/00001987.htmlThird Party Advisory
http://www.sea.siemens.com/us/News/Industrial/Pages/WinCC_Update.aspxBroken Link, Vendor Advisory
http://www.securityfocus.com/bid/41753Broken Link, Third Party Advisory, VDB Entry
http://www.vupen.com/english/advisories/2010/1893Broken Link
http://www.wilderssecurity.com/showpost.php?p=1712134&postcount=22Exploit, Issue Tracking
http://www.wired.com/threatlevel/2010/07/siemens-scada/Press/Media Coverage, Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/60587Third Party Advisory, VDB Entry

Timeline

Published: Jul 22, 2010
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2010-2772?

How severe is CVE-2010-2772?

CVE-2010-2772 has a CVSS score of 7.8/10 (HIGH severity). The EPSS model estimates a 0.55% probability of exploitation in the next 30 days.

How do I fix CVE-2010-2772?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2010-2772?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST