SIMATIC WinCC is a supervisory control and data acquisition (SCADA) system. It is used to monitor and control physical processes involved in industry and infrastructure on a large scale and over long distances.
The most severe of these vulnerabilities could allow privilege escalation in the WinCC Project administration application under certain conditions. The attacker must have network access to the WinCC server to exploit this vulnerability.
Go to Siemens Security Advisory here – http://www.siemens.com/innovation/pool/de/forschungsfelder/siemens_security_advisory_ssa-214365.pdf