Memory leak in Siemens Automation License Manager (ALM) 4.x and 5.x before 5.2 allows remote attackers to cause a denial of service (memory consumption) via crafted packets. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.
Siemens
Denial Of Service
Automation License Manager
NVD
CVSS 2.0
3.3
EPSS
0.1%
Invensys Wonderware InTouch 2012 R2 and earlier and Siemens ProcessSuite use a weak encryption algorithm for data in Ps_security.ini, which makes it easier for local users to discover passwords by. Rated low severity (CVSS 1.9). No vendor patch available.
Siemens
Information Disclosure
Wonderware Intouch
Processsuite
NVD
CVSS 2.0
1.9
EPSS
0.1%