CVE-2016-9160

EPSS 0.49% · P66 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2016-9160

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

A vulnerability in SIEMENS SIMATIC WinCC (All versions < SIMATIC WinCC V7.2) and SIEMENS SIMATIC PCS 7 (All versions < SIMATIC PCS 7 V8.0 SP1) could allow a remote attacker to crash an ActiveX component or leak parts of the application memory if a user is tricked into clicking on a malicious link under certain conditions.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

对不安全JNI的直接使用

Source: NVD (National Vulnerability Database)

Vulnerability Title

SIMATIC WinCC和SIMATIC PCS 7 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Siemens SIMATIC WinCC和SIMATIC PCS 7都是德国西门子（Siemens）公司的工业自动化产品。Siemens SIMATIC WinCC是一套自动化的数据采集与监控（SCADA）系统；SIMATIC PCS 7是一套使用了WinCC的分布式过程控制系统。 Siemens SIMATIC WinCC V7.2之前的所有版本和SIMATIC PCS 7 V8.0 SP1之前的所有版本中存在安全漏洞。攻击者可借助恶意的链接利用该漏洞造成ActiveX组件崩溃或部分应用程序内存泄露。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	SIEMENS SIMATIC WinCC (All versions < SIMATIC WinCC V7.2) and SIEMENS SIMATIC PCS 7 (All versions < SIMATIC PCS 7 V8.0 SP1)	SIEMENS SIMATIC WinCC (All versions < SIMATIC WinCC V7.2) and SIEMENS SIMATIC PCS 7 (All versions < SIMATIC PCS 7 V8.0 SP1)	-

II. Public POCs for CVE-2016-9160

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2016-9160

Please Login to view more intelligence information

Siemens SIMATIC WinCC and SIMATIC PCS 7 ActiveX Vulnerability | CISAx_refsource_MISC
http://www.siemens.com/cert/pool/cert/siemens_security_advisory_ssa-693129.pdfx_refsource_CONFIRM
http://www.securityfocus.com/bid/94825vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1037435vdb-entryx_refsource_SECTRACK
https://nvd.nist.gov/vuln/detail/CVE-2016-9160

Same Patch Batch · n/a · 2016-12-17 · 7 CVEs total

CVE-2016-7454		XFINITY Gateway Technicolor 跨站请求伪造漏洞
CVE-2016-9949		Apport 安全漏洞
CVE-2016-9950		Apport 路径遍历漏洞
CVE-2016-9951		Apport 安全漏洞
CVE-2016-9997		SPIP 跨站脚本漏洞
CVE-2016-9998		SPIP 跨脚站本漏洞

IV. Related Vulnerabilities

Same vendor: n/a

Same weakness: CWE-111

CVE-2018-12549
Eclipse OpenJ9 输入验证错误漏洞

V. Comments for CVE-2016-9160

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2016-9160

I. Basic Information for CVE-2016-9160

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2016-9160

III. Intelligence Information for CVE-2016-9160

Same Patch Batch · n/a · 2016-12-17 · 7 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2016-9160

Leave a comment