CVE-2026-24349: CWE-313: Cleartext Storage in a File or on Disk in Siemens SIMATIC WinCC Unified PC Runtime V16
A vulnerability has been identified in SIMATIC WinCC Unified PC Runtime V16 (All versions), SIMATIC WinCC Unified PC Runtime V17 (All versions), SIMATIC WinCC Unified PC Runtime V18 (All versions), SIMATIC WinCC Unified PC Runtime V19 (All versions), SIMATIC WinCC Unified PC Runtime V20 (All versions), SIMATIC WinCC Unified PC Runtime V21 (All versions < V21 Update 2). Insufficient protection of key material in WinCC Certificate Manager that could allow an attacker to extract sensitive information.
AI Analysis
Technical Summary
This vulnerability (CVE-2026-24349) affects Siemens SIMATIC WinCC Unified PC Runtime versions 16, 17, 18, 19, 20, and versions of 21 before Update 2. It is classified under CWE-313 for cleartext storage in a file or on disk. The WinCC Certificate Manager does not sufficiently protect key material, potentially allowing an attacker with local access to retrieve sensitive cryptographic keys. The CVSS 3.1 base score is 7.1, indicating high severity, with an attack vector limited to local access, low attack complexity, no privileges required, and no user interaction needed. The confidentiality impact is high, while integrity and availability impacts are none. No official fix or patch has been documented as of the publication date.
Potential Impact
An attacker with local access to the affected system could extract sensitive cryptographic key material stored in cleartext by the WinCC Certificate Manager. This compromises confidentiality of key material, potentially undermining the security of communications or authentication mechanisms relying on these keys. There is no indication of impact on system integrity or availability. No known exploits have been reported in the wild.
Mitigation Recommendations
Patch status is not yet confirmed — check the Siemens vendor advisory for current remediation guidance. Until an official fix is released, restrict local access to affected systems to trusted personnel only and monitor for unauthorized access attempts. Avoid storing sensitive key material on affected versions without additional protective controls. Siemens has not provided an official remediation level or patch as of the publication date.
CVE-2026-24349: CWE-313: Cleartext Storage in a File or on Disk in Siemens SIMATIC WinCC Unified PC Runtime V16
Description
A vulnerability has been identified in SIMATIC WinCC Unified PC Runtime V16 (All versions), SIMATIC WinCC Unified PC Runtime V17 (All versions), SIMATIC WinCC Unified PC Runtime V18 (All versions), SIMATIC WinCC Unified PC Runtime V19 (All versions), SIMATIC WinCC Unified PC Runtime V20 (All versions), SIMATIC WinCC Unified PC Runtime V21 (All versions < V21 Update 2). Insufficient protection of key material in WinCC Certificate Manager that could allow an attacker to extract sensitive information.
CVSS v3.1
Score 7.1high
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
This vulnerability (CVE-2026-24349) affects Siemens SIMATIC WinCC Unified PC Runtime versions 16, 17, 18, 19, 20, and versions of 21 before Update 2. It is classified under CWE-313 for cleartext storage in a file or on disk. The WinCC Certificate Manager does not sufficiently protect key material, potentially allowing an attacker with local access to retrieve sensitive cryptographic keys. The CVSS 3.1 base score is 7.1, indicating high severity, with an attack vector limited to local access, low attack complexity, no privileges required, and no user interaction needed. The confidentiality impact is high, while integrity and availability impacts are none. No official fix or patch has been documented as of the publication date.
Potential Impact
An attacker with local access to the affected system could extract sensitive cryptographic key material stored in cleartext by the WinCC Certificate Manager. This compromises confidentiality of key material, potentially undermining the security of communications or authentication mechanisms relying on these keys. There is no indication of impact on system integrity or availability. No known exploits have been reported in the wild.
Mitigation Recommendations
Patch status is not yet confirmed — check the Siemens vendor advisory for current remediation guidance. Until an official fix is released, restrict local access to affected systems to trusted personnel only and monitor for unauthorized access attempts. Avoid storing sensitive key material on affected versions without additional protective controls. Siemens has not provided an official remediation level or patch as of the publication date.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- siemens
- Date Reserved
- 2026-01-22T13:21:49.113Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a27e6ab8dd33fbd8514c967
Added to database: 6/9/2026, 10:10:51 AM
Last enriched: 6/9/2026, 10:31:53 AM
Last updated: 6/10/2026, 4:56:27 AM
Views: 7
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
External Links
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.