Skip to main content

Siemens

319 CVEs vendor

Monthly

CVE-2016-5849 LOW Monitor

Siemens SICAM PAS through 8.07 allows local users to obtain sensitive configuration information by leveraging database stoppage. Rated low severity (CVSS 2.5). No vendor patch available.

Information Disclosure Siemens Sicam Pas Pqs
NVD
CVSS 3.1
2.5
EPSS
0.1%
CVE-2016-5848 MEDIUM This Month

Siemens SICAM PAS before 8.07 does not properly restrict password data in the database, which makes it easier for local users to calculate passwords by leveraging unspecified database privileges. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Siemens Sicam Pas Pqs
NVD
CVSS 3.1
6.7
EPSS
0.1%
CVE-2016-3949 HIGH This Week

Siemens SIMATIC S7-300 Profinet-enabled CPU devices with firmware before 3.2.12 and SIMATIC S7-300 Profinet-disabled CPU devices with firmware before 3.3.12 allow remote attackers to cause a denial. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Siemens Simatic S7 300 With Profitnet Support Firmware Simatic S7 300 Without Profitnet Support Firmware
NVD
CVSS 3.0
7.5
EPSS
4.9%
CVE-2016-3963 MEDIUM POC This Month

Siemens SCALANCE S613 allows remote attackers to cause a denial of service (web-server outage) via traffic to TCP port 443. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Siemens Scalance S613
NVD Exploit-DB
CVSS 3.0
5.3
EPSS
6.5%
CVE-2016-3155 LOW Monitor

Siemens APOGEE Insight uses weak permissions for the application folder, which allows local users to obtain sensitive information or modify data via unspecified vectors. Rated low severity (CVSS 3.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Siemens Apogee Insight
NVD
CVSS 3.0
3.4
EPSS
0.0%
CVE-2016-2846 MEDIUM This Month

Siemens SIMATIC S7-1200 CPU devices before 4.0 allow remote attackers to bypass a "user program block" protection mechanism via unspecified vectors. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Siemens Simatic S7 Cpu 1200 Firmware
NVD
CVSS 3.0
6.5
EPSS
0.2%
CVE-2016-2201 MEDIUM This Month

Siemens SIMATIC S7-1500 CPU devices before 1.8.3 allow remote attackers to bypass a replay protection mechanism via packets on TCP port 102. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Siemens Simatic S7 1500 Cpu Firmware
NVD
CVSS 3.0
5.3
EPSS
1.6%
CVE-2016-2200 HIGH This Week

Siemens SIMATIC S7-1500 CPU devices before 1.8.3 allow remote attackers to cause a denial of service (STOP mode transition) via crafted packets on TCP port 102. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Siemens Simatic S7 1500 Cpu Firmware
NVD
CVSS 3.0
7.5
EPSS
9.2%
CVE-2016-1488 MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the login form in the integrated web server on Siemens OZW OZW672 devices before 6.00 and OZW772 devices before 6.00 allows remote attackers to inject. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Siemens Ozw672 Firmware Ozw772 Firmware
NVD
CVSS 3.0
6.1
EPSS
0.2%
CVE-2015-7836 LOW Monitor

Siemens RUGGEDCOM ROS before 4.2.1 allows remote attackers to obtain sensitive information by sniffing the network for VLAN data within the padding section of an Ethernet frame. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Siemens Ruggedcom Rugged Operating System
NVD
CVSS 2.0
3.3
EPSS
0.2%
CVE-2015-6929 MEDIUM POC This Month

Multiple cross-site scripting (XSS) vulnerabilities in Nokia Networks (formerly Nokia Solutions and Networks and Nokia Siemens Networks) @vantage Commander allow remote attackers to inject arbitrary. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

XSS Nokia Siemens Vantage Commander
NVD
CVSS 2.0
4.3
EPSS
0.2%
CVE-2015-6675 MEDIUM This Month

Siemens RUGGEDCOM ROS 3.8.0 through 4.1.x permanently enables the IP forwarding feature, which allows remote attackers to bypass a VLAN isolation protection mechanism via IP traffic. Rated medium severity (CVSS 4.3). No vendor patch available.

Siemens Authentication Bypass Ruggedcom Rugged Operating System
NVD
CVSS 2.0
4.3
EPSS
0.1%
CVE-2015-5717 MEDIUM This Month

The Siemens COMPAS Mobile application before 1.6 for Android does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Google Information Disclosure Siemens Compas
NVD
CVSS 2.0
5.8
EPSS
0.1%
CVE-2015-5698 HIGH PATCH This Week

Cross-site request forgery (CSRF) vulnerability in the web server on Siemens SIMATIC S7-1200 CPU devices with firmware before 4.1.3 allows remote attackers to hijack the authentication of unspecified. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

CSRF Siemens Simatic S7 1200 Cpu Firmware Simatic S7 1200 Cpu
NVD
CVSS 2.0
7.5
EPSS
4.4%
CVE-2015-5537 MEDIUM PATCH This Month

The SSL layer of the HTTPS service in Siemens RuggedCom ROS before 4.2.0 and ROX II does not properly implement CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Siemens Information Disclosure Oracle Ruggedcom Rox Ii Firmware Ruggedcom Rugged Operating System
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2015-5084 LOW PATCH Monitor

The Siemens SIMATIC WinCC Sm@rtClient and Sm@rtClient Lite applications before 01.00.01.00 for Android do not properly store passwords, which allows physically proximate attackers to obtain sensitive. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Google Information Disclosure Siemens Simatic Wincc Sm Rtclient Simatic Wincc Sm Rtclient Lite
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2015-5386 CRITICAL PATCH Act Now

Siemens SICAM MIC devices with firmware before 2404 allow remote attackers to bypass authentication and obtain administrative access via unspecified HTTP requests. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable.

Authentication Bypass Siemens Sicam Mic Firmware
NVD
CVSS 2.0
9.3
EPSS
0.7%
CVE-2015-4174 MEDIUM POC PATCH This Month

Cross-site scripting (XSS) vulnerability in the integrated web server on the Siemens Climatix BACnet/IP communication module with firmware before 10.34 allows remote attackers to inject arbitrary web. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available.

XSS Siemens Climatix Bacnet Ip
NVD
CVSS 2.0
4.3
EPSS
0.8%
CVE-2015-3610 MEDIUM This Month

The Siemens HomeControl for Room Automation application before 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Siemens Homecontrol For Room Automation
NVD
CVSS 2.0
5.4
EPSS
0.1%
CVE-2015-2823 MEDIUM PATCH This Month

Siemens SIMATIC HMI Basic Panels 2nd Generation before WinCC (TIA Portal) 13 SP1 Upd2, SIMATIC HMI Comfort Panels before WinCC (TIA Portal) 13 SP1 Upd2, SIMATIC WinCC Runtime Advanced before WinCC. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Siemens Authentication Bypass Wincc
NVD
CVSS 2.0
6.8
EPSS
0.5%
CVE-2015-2822 MEDIUM PATCH This Month

Siemens SIMATIC HMI Comfort Panels before WinCC (TIA Portal) 13 SP1 Upd2 and SIMATIC WinCC Runtime Advanced before WinCC (TIA Portal) 13 SP1 Upd2 allow man-in-the-middle attackers to cause a denial. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Denial Of Service Siemens Wincc
NVD
CVSS 2.0
4.3
EPSS
0.6%
CVE-2015-1602 LOW PATCH Monitor

Siemens SIMATIC STEP 7 (TIA Portal) 12 and 13 before 13 SP1 Upd1 improperly stores password data within project files, which makes it easier for local users to determine cleartext (1). Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Siemens Simatic Step 7
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2015-1601 MEDIUM PATCH This Month

Siemens SIMATIC STEP 7 (TIA Portal) 12 and 13 before 13 SP1 Upd1 allows man-in-the-middle attackers to obtain sensitive information or modify transmitted data via unspecified vectors. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

Information Disclosure Siemens Simatic Step 7
NVD
CVSS 2.0
6.8
EPSS
0.4%
CVE-2015-2177 HIGH POC THREAT Act Now

Siemens SIMATIC S7-300 CPU devices allow remote attackers to cause a denial of service (defect-mode transition) via crafted packets on (1) TCP port 102 or (2) Profibus. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 50.6%.

Denial Of Service Siemens
NVD Exploit-DB VulDB
CVSS 3.1
7.5
EPSS
50.6%
Threat
4.5
CVE-2015-1599 LOW Monitor

The Siemens SPCanywhere application for iOS allows physically proximate attackers to bypass intended access restrictions by leveraging a filesystem architectural error. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Apple Privilege Escalation Siemens Spcanywhere
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2015-1598 LOW Monitor

The Siemens SPCanywhere application for Android does not properly store application passwords, which allows physically proximate attackers to obtain sensitive information by examining the device. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Google Information Disclosure Siemens Spcanywhere
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2015-1597 MEDIUM This Month

The Siemens SPCanywhere application for Android does not use encryption during the loading of code, which allows man-in-the-middle attackers to execute arbitrary code by modifying the client-server. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

RCE Google Code Injection Siemens Spcanywhere
NVD
CVSS 2.0
6.8
EPSS
0.4%
CVE-2015-1596 MEDIUM This Month

The Siemens SPCanywhere application for Android and iOS does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Apple Google Information Disclosure Siemens Spcanywhere
NVD
CVSS 2.0
5.8
EPSS
0.1%
CVE-2015-1595 MEDIUM This Month

The Siemens SPCanywhere application for Android and iOS does not use encryption during lookups of system ID to IP address mappings, which allows man-in-the-middle attackers to discover alarm IP. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Apple Google Information Disclosure Siemens Spcanywhere
NVD
CVSS 2.0
4.3
EPSS
0.1%
CVE-2015-1594 MEDIUM This Month

Untrusted search path vulnerability in Siemens SIMATIC ProSave before 13 SP1; SIMATIC CFC before 8.0 SP4 Upd9 and 8.1 before Upd1; SIMATIC STEP 7 before 5.5 SP1 HF2, 5.5 SP2 before HF7, 5.5 SP3, and. Rated medium severity (CVSS 6.9). No vendor patch available.

Information Disclosure Siemens Starter Simatic Prosave Simotion Scout +2
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2014-9369 HIGH This Week

Siemens SPC controllers SPC4000, SPC5000, and SPC6000 before 3.6.0 allow remote attackers to cause a denial of service (device restart) via crafted packets. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Siemens Spc5000 Firmware Spc4000 Firmware Spc6000 Firmware
NVD
CVSS 2.0
7.8
EPSS
0.3%
CVE-2015-1358 MEDIUM This Month

The remote-management module in the (1) Multi Panels, (2) Comfort Panels, and (3) RT Advanced functionality in Siemens SIMATIC WinCC (TIA Portal) before 13 SP1 and in the (4) panels and (5) runtime. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Siemens Wincc
NVD
CVSS 2.0
5.0
EPSS
0.8%
CVE-2015-1356 MEDIUM This Month

Siemens SIMATIC STEP 7 (TIA Portal) before 13 SP1 determines a user's privileges on the basis of project-file fields that lack integrity protection, which allows remote attackers to establish. Rated medium severity (CVSS 4.4). No vendor patch available.

Privilege Escalation Siemens Simatic Step 7
NVD
CVSS 2.0
4.4
EPSS
0.1%
CVE-2015-1355 LOW Monitor

Siemens SIMATIC STEP 7 (TIA Portal) before 13 SP1 uses a weak password-hash algorithm, which makes it easier for local users to determine cleartext passwords by reading a project file and conducting. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Siemens Simatic Step 7
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2015-1449 CRITICAL Act Now

Buffer overflow in the integrated web server on Siemens Ruggedcom WIN51xx devices with firmware before SS4.4.4624.35, WIN52xx devices with firmware before SS4.4.4624.35, WIN70xx devices with firmware. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Buffer Overflow Siemens Ruggedcom Firmware
NVD
CVSS 2.0
10.0
EPSS
7.6%
CVE-2015-1448 CRITICAL Act Now

The integrated management service on Siemens Ruggedcom WIN51xx devices with firmware before SS4.4.4624.35, WIN52xx devices with firmware before SS4.4.4624.35, WIN70xx devices with firmware before. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Siemens Ruggedcom Firmware
NVD
CVSS 2.0
10.0
EPSS
3.4%
CVE-2015-1357 MEDIUM This Month

Siemens Ruggedcom WIN51xx devices with firmware before SS4.4.4624.35, WIN52xx devices with firmware before SS4.4.4624.35, WIN70xx devices with firmware before BS4.4.4621.32, and WIN72xx devices with. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Siemens Ruggedcom Firmware
NVD
CVSS 2.0
5.0
EPSS
0.3%
CVE-2015-1049 MEDIUM This Month

The web server on Siemens SCALANCE X-200IRT switches with firmware before 5.2.0 allows remote attackers to hijack sessions via unspecified vectors. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Siemens Scalance X 200 Series Firmware
NVD
CVSS 2.0
6.8
EPSS
0.4%
CVE-2015-1048 MEDIUM This Month

Open redirect vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices with firmware before 4.1 allows remote attackers to redirect users to arbitrary web sites and conduct. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Open Redirect Siemens Simatic S7 1200 Cpu Firmware
NVD
CVSS 2.0
4.3
EPSS
0.2%
CVE-2014-8479 MEDIUM This Month

The FTP server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote authenticated users to cause a denial of service (reboot). Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Siemens Scalance X 408 Firmware Scalance X 300 Series Firmware
NVD
CVSS 2.0
6.8
EPSS
0.4%
CVE-2014-8478 HIGH This Week

The web server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote attackers to cause a denial of service (reboot) via. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Denial Of Service Siemens Scalance X 300 Series Firmware Scalance X 408 Firmware
NVD
CVSS 2.0
7.8
EPSS
0.5%
CVE-2014-5233 LOW Monitor

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to discover Sm@rtServer credentials by leveraging an error in the credential-processing mechanism. Rated low severity (CVSS 1.9). No vendor patch available.

Apple Information Disclosure Siemens Simatic Wincc Sm Rtclient
NVD
CVSS 2.0
1.9
EPSS
0.1%
CVE-2014-5232 LOW Monitor

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows local users to bypass an intended application-password requirement by leveraging the running of the app in the background state. Rated low severity (CVSS 1.9). No vendor patch available.

Apple Privilege Escalation Siemens Simatic Wincc Sm Rtclient
NVD
CVSS 2.0
1.9
EPSS
0.1%
CVE-2014-5231 LOW Monitor

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to extract the password from storage via unspecified vectors. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Siemens Simatic Wincc Sm Rtclient
NVD
CVSS 2.0
2.1
EPSS
0.1%
CVE-2014-8552 MEDIUM This Month

The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Siemens Simatic Pcs 7 Simatic Pcs7 Simatic Tiaportal +1
NVD
CVSS 2.0
5.0
EPSS
0.1%
CVE-2014-8551 CRITICAL Act Now

The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Code Injection Siemens Simatic Pcs 7 Simatic Pcs7 +2
NVD
CVSS 2.0
10.0
EPSS
5.8%
CVE-2014-5074 HIGH POC PATCH THREAT Act Now

Siemens SIMATIC S7-1500 CPU devices with firmware before 1.6 allow remote attackers to cause a denial of service (device restart and STOP transition) via crafted TCP packets. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 12.9%.

Denial Of Service Siemens Simatic S7 1500 Cpu Firmware Simatic S7 1511 1 Pn Cpu Simatic S7 1513 1 Pn Cpu +5
NVD Exploit-DB
CVSS 2.0
7.1
EPSS
12.9%
CVE-2014-4686 MEDIUM This Month

The Project administration application in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, has a hardcoded encryption key, which allows remote attackers to obtain sensitive. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Siemens Simatic Pcs7 Wincc
NVD
CVSS 2.0
6.8
EPSS
0.2%
CVE-2014-4685 MEDIUM This Month

Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows local users to gain privileges by leveraging weak system-object access control. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Siemens Simatic Pcs7 Wincc
NVD
CVSS 2.0
4.6
EPSS
0.1%
CVE-2014-4684 MEDIUM This Month

The database server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a request to TCP port 1433. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable. No vendor patch available.

Privilege Escalation Siemens Simatic Pcs7 Wincc
NVD
CVSS 2.0
6.0
EPSS
0.4%
CVE-2014-4683 MEDIUM This Month

The WebNavigator server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a (1) HTTP or (2) HTTPS request. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable. No vendor patch available.

Privilege Escalation Siemens Simatic Pcs7 Wincc
NVD
CVSS 2.0
4.9
EPSS
0.2%
CVE-2014-4682 MEDIUM This Month

The WebNavigator server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote attackers to obtain sensitive information via an HTTP request. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Siemens Simatic Pcs7 Wincc
NVD
CVSS 2.0
5.0
EPSS
0.2%
CVE-2014-2909 MEDIUM This Month

CRLF injection vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote attackers to inject arbitrary HTTP headers via unspecified vectors. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

RCE Code Injection Siemens Simatic S7 Cpu 1200 Firmware Simatic S7 Cpu 1211C +4
NVD VulDB
CVSS 2.0
5.8
EPSS
0.8%
CVE-2014-2908 MEDIUM POC THREAT This Month

Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote attackers to inject arbitrary web script or HTML via unspecified. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 68.0%.

XSS Siemens Simatic S7 Cpu 1200 Firmware Simatic S7 Cpu 1211C Simatic S7 Cpu 1212C +3
NVD Exploit-DB VulDB
CVSS 2.0
4.3
EPSS
68.0%
Threat
4.4
CVE-2014-2733 MEDIUM This Month

Siemens SINEMA Server before 12 SP1 allows remote attackers to cause a denial of service (web-interface outage) via crafted HTTP requests to port (1) 4999 or (2) 80. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Siemens Sinema Server
NVD VulDB
CVSS 2.0
5.0
EPSS
0.4%
CVE-2014-2732 MEDIUM This Month

Multiple directory traversal vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to access arbitrary files via HTTP traffic to port (1) 4999 or. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Siemens Sinema Server
NVD VulDB
CVSS 2.0
5.0
EPSS
0.3%
CVE-2014-2731 CRITICAL Act Now

Multiple unspecified vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to execute arbitrary code via HTTP traffic to port (1) 4999 or (2) 80. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

RCE Siemens Sinema Server
NVD VulDB
CVSS 2.0
9.3
EPSS
2.4%
CVE-2014-2590 MEDIUM This Month

The web management interface in Siemens RuggedCom ROS before 3.11, ROS 3.11 before 3.11.5 for RS950G, ROS 3.12, and ROS 4.0 for RSG2488 allows remote attackers to cause a denial of service (interface. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Siemens Authentication Bypass Ruggedcom Rugged Operating System
NVD VulDB
CVSS 2.0
5.0
EPSS
0.3%
CVE-2014-2258 HIGH This Week

Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTPS packets, a different vulnerability than. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Siemens Simatic S7 Cpu 1200 Firmware Simatic S7 Cpu 1211C Simatic S7 Cpu 1212C +3
NVD VulDB
CVSS 2.0
7.8
EPSS
0.5%
CVE-2014-2256 HIGH This Week

Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted ISO-TSAP packets, a different vulnerability. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Siemens Simatic S7 Cpu 1200 Firmware Simatic S7 Cpu 1211C Simatic S7 Cpu 1212C +3
NVD VulDB
CVSS 2.0
7.8
EPSS
0.9%
CVE-2014-2254 HIGH This Week

Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTP packets, a different vulnerability than. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Siemens Simatic S7 Cpu 1200 Firmware Simatic S7 Cpu 1211C Simatic S7 Cpu 1212C +3
NVD VulDB
CVSS 2.0
7.8
EPSS
0.5%
CVE-2014-2252 MEDIUM This Month

Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted PROFINET packets, a different vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Siemens Simatic S7 Cpu 1200 Firmware Simatic S7 Cpu 1211C Simatic S7 Cpu 1212C +3
NVD VulDB
CVSS 2.0
6.1
EPSS
0.2%
CVE-2014-2250 HIGH This Week

The random-number generator on Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 does not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Siemens Simatic S7 Cpu 1200 Firmware Simatic S7 Cpu 1211C Simatic S7 Cpu 1212C +3
NVD VulDB
CVSS 2.0
8.3
EPSS
1.8%
CVE-2014-2259 HIGH PATCH This Week

Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTPS packets. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
CVSS 2.0
7.8
EPSS
1.6%
CVE-2014-2257 HIGH PATCH This Week

Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted ISO-TSAP packets. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
CVSS 2.0
7.8
EPSS
0.9%
CVE-2014-2255 HIGH PATCH This Week

Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTP packets. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
CVSS 2.0
7.8
EPSS
1.6%
CVE-2014-2253 MEDIUM PATCH This Month

Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted Profinet packets. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity.

Denial Of Service Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
CVSS 2.0
6.1
EPSS
0.2%
CVE-2014-2251 HIGH PATCH This Week

The random-number generator on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 does not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable.

Information Disclosure Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
CVSS 2.0
8.3
EPSS
0.9%
CVE-2014-2249 MEDIUM PATCH This Month

Cross-site request forgery (CSRF) vulnerability on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 and SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allows remote. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.

CSRF Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
CVSS 2.0
5.8
EPSS
0.2%
CVE-2014-2248 MEDIUM PATCH This Month

Open redirect vulnerability in the integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to redirect users to arbitrary web sites and. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Open Redirect Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
CVSS 2.0
4.3
EPSS
0.7%
CVE-2014-2247 MEDIUM PATCH This Month

The integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to inject headers via unspecified vectors. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.

Code Injection Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
CVSS 2.0
5.8
EPSS
0.7%
CVE-2014-2246 MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to inject arbitrary web script or. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

XSS Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
CVSS 2.0
4.3
EPSS
0.5%
CVE-2014-1966 HIGH This Week

The SNMP implementation in Siemens RuggedCom ROS before 3.11, ROS 3.11 for RS950G, ROS 3.12 before 3.12.4, and ROS 4.0 for RSG2488 allows remote attackers to cause a denial of service (device outage). Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Denial Of Service Ruggedcom Rugged Operating System
NVD
CVSS 2.0
7.8
EPSS
0.2%
CVE-2014-1699 MEDIUM This Month

Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to cause a denial of service (monitoring-service outage) via malformed HTTP requests to port 4999. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Denial Of Service Simatic Wincc Open Architecture
NVD
CVSS 2.0
5.0
EPSS
1.2%
CVE-2014-1698 MEDIUM This Month

Directory traversal vulnerability in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to read arbitrary files via crafted packets to TCP port 4999. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Path Traversal Simatic Wincc Open Architecture
NVD
CVSS 2.0
5.0
EPSS
0.6%
CVE-2014-1697 HIGH This Week

The integrated web server in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to execute arbitrary code via crafted packets to TCP port 4999. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens RCE Simatic Wincc Open Architecture
NVD
CVSS 2.0
7.5
EPSS
4.5%
CVE-2014-1696 MEDIUM This Month

Siemens SIMATIC WinCC OA before 3.12 P002 January uses a weak hash algorithm for passwords, which makes it easier for remote attackers to obtain access via a brute-force attack. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Information Disclosure Simatic Wincc Open Architecture
NVD
CVSS 2.0
5.0
EPSS
0.6%
CVE-2013-6926 HIGH This Week

The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote authenticated users to bypass intended restrictions on administrative actions by leveraging access to a (1) guest or. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Authentication Bypass Ruggedcom Rugged Operating System
NVD
CVSS 2.0
8.0
EPSS
0.3%
CVE-2013-6925 HIGH This Week

The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote attackers to hijack web sessions by predicting a session id value. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable. No vendor patch available.

Siemens Information Disclosure Ruggedcom Rugged Operating System
NVD
CVSS 2.0
8.3
EPSS
0.6%
CVE-2013-6840 MEDIUM This Month

Siemens COMOS before 9.2.0.8.1, 10.0 before 10.0.3.1.40, and 10.1 before 10.1.0.0.2 allows local users to gain database privileges via unspecified vectors. Rated medium severity (CVSS 6.9). No vendor patch available.

Privilege Escalation Siemens Comos
NVD
CVSS 2.0
6.9
EPSS
0.0%
CVE-2013-6920 CRITICAL Act Now

Siemens SINAMICS S/G controllers with firmware before 4.6.11 do not require authentication for FTP and TELNET sessions, which allows remote attackers to bypass intended access restrictions via TCP. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Authentication Bypass Sinamics S G Family Firmware Sinamics G110 Sinamics G110D +11
NVD
CVSS 2.0
10.0
EPSS
1.2%
CVE-2013-5944 CRITICAL Act Now

The integrated web server on Siemens SCALANCE X-200 switches with firmware before 4.5.0 and X-200IRT switches with firmware before 5.1.0 does not properly enforce authentication requirements, which. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Authentication Bypass Scalance X 200 Series Firmware Scalance X 200 Scalance X 200Irt
NVD
CVSS 2.0
10.0
EPSS
1.5%
CVE-2013-5709 HIGH This Week

The authentication implementation in the web server on Siemens SCALANCE X-200 switches with firmware before 5.0.0 does not use a sufficient source of entropy for generating values of random numbers,. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable. No vendor patch available.

Siemens Information Disclosure Scalance X 200 Series Firmware Scalance X 200 Scalance X 200Rna +6
NVD
CVSS 2.0
8.3
EPSS
0.5%
CVE-2013-4943 HIGH This Week

The client application in Siemens COMOS before 9.1 Update 458, 9.2 before 9.2.0.6.37, and 10.0 before 10.0.3.0.19 allows local users to gain privileges and bypass intended database-operation. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Siemens Comos
NVD
CVSS 2.0
7.2
EPSS
0.0%
CVE-2013-4912 MEDIUM This Month

Open redirect vulnerability in Siemens WinCC (TIA Portal) 11 and 12 before 12 SP1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks by leveraging improper. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Siemens Open Redirect Wincc
NVD
CVSS 2.0
5.8
EPSS
0.5%
CVE-2013-4911 MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in Siemens WinCC (TIA Portal) 11 and 12 before 12 SP1 allows remote attackers to hijack the authentication of unspecified victims by leveraging. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF Siemens Wincc
NVD
CVSS 2.0
6.8
EPSS
0.3%
CVE-2013-4652 CRITICAL Act Now

Unspecified vulnerability in the command-line management interface on Siemens Scalance W7xx devices with firmware before 4.5.4 allows remote attackers to bypass authentication and execute arbitrary. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens RCE Scalance W700 Series Firmware Scalance W744 1 Scalance W744 1Pro +14
NVD
CVSS 2.0
10.0
EPSS
9.7%
CVE-2013-4651 MEDIUM This Month

Siemens Scalance W7xx devices with firmware before 4.5.4 use the same hardcoded X.509 certificate across different customers' installations, which makes it easier for remote attackers to conduct. Rated medium severity (CVSS 6.6), this vulnerability is remotely exploitable. No vendor patch available.

Siemens Authentication Bypass Scalance W700 Series Firmware Scalance W744 1 Scalance W744 1Pro +14
NVD
CVSS 2.0
6.6
EPSS
0.3%
CVE-2013-4781 CRITICAL Act Now

core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to execute. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP Siemens Command Injection Openscape Session Border Controller Enterprise Openscape Branch
NVD
CVSS 2.0
10.0
EPSS
3.8%
CVE-2013-4780 HIGH This Week

core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to read arbitrary. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP Siemens Information Disclosure Openscape Session Border Controller Enterprise Openscape Branch
NVD
CVSS 2.0
7.8
EPSS
0.4%
EPSS 0% CVSS 2.5
LOW Monitor

Siemens SICAM PAS through 8.07 allows local users to obtain sensitive configuration information by leveraging database stoppage. Rated low severity (CVSS 2.5). No vendor patch available.

Information Disclosure Siemens Sicam Pas Pqs
NVD
EPSS 0% CVSS 6.7
MEDIUM This Month

Siemens SICAM PAS before 8.07 does not properly restrict password data in the database, which makes it easier for local users to calculate passwords by leveraging unspecified database privileges. Rated medium severity (CVSS 6.7), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Siemens Sicam Pas Pqs
NVD
EPSS 5% CVSS 7.5
HIGH This Week

Siemens SIMATIC S7-300 Profinet-enabled CPU devices with firmware before 3.2.12 and SIMATIC S7-300 Profinet-disabled CPU devices with firmware before 3.3.12 allow remote attackers to cause a denial. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Siemens Simatic S7 300 With Profitnet Support Firmware +1
NVD
EPSS 6% CVSS 5.3
MEDIUM POC This Month

Siemens SCALANCE S613 allows remote attackers to cause a denial of service (web-server outage) via traffic to TCP port 443. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Siemens Scalance S613
NVD Exploit-DB
EPSS 0% CVSS 3.4
LOW Monitor

Siemens APOGEE Insight uses weak permissions for the application folder, which allows local users to obtain sensitive information or modify data via unspecified vectors. Rated low severity (CVSS 3.4), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Siemens Apogee Insight
NVD
EPSS 0% CVSS 6.5
MEDIUM This Month

Siemens SIMATIC S7-1200 CPU devices before 4.0 allow remote attackers to bypass a "user program block" protection mechanism via unspecified vectors. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Siemens Simatic S7 Cpu 1200 Firmware
NVD
EPSS 2% CVSS 5.3
MEDIUM This Month

Siemens SIMATIC S7-1500 CPU devices before 1.8.3 allow remote attackers to bypass a replay protection mechanism via packets on TCP port 102. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Siemens Simatic S7 1500 Cpu Firmware
NVD
EPSS 9% CVSS 7.5
HIGH This Week

Siemens SIMATIC S7-1500 CPU devices before 1.8.3 allow remote attackers to cause a denial of service (STOP mode transition) via crafted packets on TCP port 102. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Siemens Simatic S7 1500 Cpu Firmware
NVD
EPSS 0% CVSS 6.1
MEDIUM This Month

Cross-site scripting (XSS) vulnerability in the login form in the integrated web server on Siemens OZW OZW672 devices before 6.00 and OZW772 devices before 6.00 allows remote attackers to inject. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Siemens Ozw672 Firmware +1
NVD
EPSS 0% CVSS 3.3
LOW Monitor

Siemens RUGGEDCOM ROS before 4.2.1 allows remote attackers to obtain sensitive information by sniffing the network for VLAN data within the padding section of an Ethernet frame. Rated low severity (CVSS 3.3), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Siemens Ruggedcom Rugged Operating System
NVD
EPSS 0% CVSS 4.3
MEDIUM POC This Month

Multiple cross-site scripting (XSS) vulnerabilities in Nokia Networks (formerly Nokia Solutions and Networks and Nokia Siemens Networks) @vantage Commander allow remote attackers to inject arbitrary. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and no vendor patch available.

XSS Nokia Siemens +1
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

Siemens RUGGEDCOM ROS 3.8.0 through 4.1.x permanently enables the IP forwarding feature, which allows remote attackers to bypass a VLAN isolation protection mechanism via IP traffic. Rated medium severity (CVSS 4.3). No vendor patch available.

Siemens Authentication Bypass Ruggedcom Rugged Operating System
NVD
EPSS 0% CVSS 5.8
MEDIUM This Month

The Siemens COMPAS Mobile application before 1.6 for Android does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Google Information Disclosure Siemens +1
NVD
EPSS 4% CVSS 7.5
HIGH PATCH This Week

Cross-site request forgery (CSRF) vulnerability in the web server on Siemens SIMATIC S7-1200 CPU devices with firmware before 4.1.3 allows remote attackers to hijack the authentication of unspecified. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity.

CSRF Siemens Simatic S7 1200 Cpu Firmware +1
NVD
EPSS 0% CVSS 4.3
MEDIUM PATCH This Month

The SSL layer of the HTTPS service in Siemens RuggedCom ROS before 4.2.0 and ROX II does not properly implement CBC padding, which makes it easier for man-in-the-middle attackers to obtain cleartext. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Siemens Information Disclosure Oracle +2
NVD
EPSS 0% CVSS 2.1
LOW PATCH Monitor

The Siemens SIMATIC WinCC Sm@rtClient and Sm@rtClient Lite applications before 01.00.01.00 for Android do not properly store passwords, which allows physically proximate attackers to obtain sensitive. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Google Information Disclosure Siemens +2
NVD
EPSS 1% CVSS 9.3
CRITICAL PATCH Act Now

Siemens SICAM MIC devices with firmware before 2404 allow remote attackers to bypass authentication and obtain administrative access via unspecified HTTP requests. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable.

Authentication Bypass Siemens Sicam Mic Firmware
NVD
EPSS 1% CVSS 4.3
MEDIUM POC PATCH This Month

Cross-site scripting (XSS) vulnerability in the integrated web server on the Siemens Climatix BACnet/IP communication module with firmware before 10.34 allows remote attackers to inject arbitrary web. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available.

XSS Siemens Climatix Bacnet Ip
NVD
EPSS 0% CVSS 5.4
MEDIUM This Month

The Siemens HomeControl for Room Automation application before 2.0.1 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and. Rated medium severity (CVSS 5.4). No vendor patch available.

Google Information Disclosure Siemens +1
NVD
EPSS 0% CVSS 6.8
MEDIUM PATCH This Month

Siemens SIMATIC HMI Basic Panels 2nd Generation before WinCC (TIA Portal) 13 SP1 Upd2, SIMATIC HMI Comfort Panels before WinCC (TIA Portal) 13 SP1 Upd2, SIMATIC WinCC Runtime Advanced before WinCC. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. This Improper Authentication vulnerability could allow attackers to bypass authentication mechanisms to gain unauthorized access.

Siemens Authentication Bypass Wincc
NVD
EPSS 1% CVSS 4.3
MEDIUM PATCH This Month

Siemens SIMATIC HMI Comfort Panels before WinCC (TIA Portal) 13 SP1 Upd2 and SIMATIC WinCC Runtime Advanced before WinCC (TIA Portal) 13 SP1 Upd2 allow man-in-the-middle attackers to cause a denial. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Denial Of Service Siemens Wincc
NVD
EPSS 0% CVSS 2.1
LOW PATCH Monitor

Siemens SIMATIC STEP 7 (TIA Portal) 12 and 13 before 13 SP1 Upd1 improperly stores password data within project files, which makes it easier for local users to determine cleartext (1). Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. This Exposure of Sensitive Information vulnerability could allow attackers to access sensitive data that should not be disclosed.

Information Disclosure Siemens Simatic Step 7
NVD
EPSS 0% CVSS 6.8
MEDIUM PATCH This Month

Siemens SIMATIC STEP 7 (TIA Portal) 12 and 13 before 13 SP1 Upd1 allows man-in-the-middle attackers to obtain sensitive information or modify transmitted data via unspecified vectors. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable.

Information Disclosure Siemens Simatic Step 7
NVD
EPSS 51% 4.5 CVSS 7.5
HIGH POC THREAT Act Now

Siemens SIMATIC S7-300 CPU devices allow remote attackers to cause a denial of service (defect-mode transition) via crafted packets on (1) TCP port 102 or (2) Profibus. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and EPSS exploitation probability 50.6%.

Denial Of Service Siemens
NVD Exploit-DB VulDB
EPSS 0% CVSS 2.1
LOW Monitor

The Siemens SPCanywhere application for iOS allows physically proximate attackers to bypass intended access restrictions by leveraging a filesystem architectural error. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Apple Privilege Escalation Siemens +1
NVD
EPSS 0% CVSS 2.1
LOW Monitor

The Siemens SPCanywhere application for Android does not properly store application passwords, which allows physically proximate attackers to obtain sensitive information by examining the device. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Google Information Disclosure Siemens +1
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

The Siemens SPCanywhere application for Android does not use encryption during the loading of code, which allows man-in-the-middle attackers to execute arbitrary code by modifying the client-server. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

RCE Google Code Injection +2
NVD
EPSS 0% CVSS 5.8
MEDIUM This Month

The Siemens SPCanywhere application for Android and iOS does not properly verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Apple Google Information Disclosure +2
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

The Siemens SPCanywhere application for Android and iOS does not use encryption during lookups of system ID to IP address mappings, which allows man-in-the-middle attackers to discover alarm IP. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Apple Google Information Disclosure +2
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

Untrusted search path vulnerability in Siemens SIMATIC ProSave before 13 SP1; SIMATIC CFC before 8.0 SP4 Upd9 and 8.1 before Upd1; SIMATIC STEP 7 before 5.5 SP1 HF2, 5.5 SP2 before HF7, 5.5 SP3, and. Rated medium severity (CVSS 6.9). No vendor patch available.

Information Disclosure Siemens Starter +4
NVD
EPSS 0% CVSS 7.8
HIGH This Week

Siemens SPC controllers SPC4000, SPC5000, and SPC6000 before 3.6.0 allow remote attackers to cause a denial of service (device restart) via crafted packets. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Siemens Spc5000 Firmware +2
NVD
EPSS 1% CVSS 5.0
MEDIUM This Month

The remote-management module in the (1) Multi Panels, (2) Comfort Panels, and (3) RT Advanced functionality in Siemens SIMATIC WinCC (TIA Portal) before 13 SP1 and in the (4) panels and (5) runtime. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Siemens Wincc
NVD
EPSS 0% CVSS 4.4
MEDIUM This Month

Siemens SIMATIC STEP 7 (TIA Portal) before 13 SP1 determines a user's privileges on the basis of project-file fields that lack integrity protection, which allows remote attackers to establish. Rated medium severity (CVSS 4.4). No vendor patch available.

Privilege Escalation Siemens Simatic Step 7
NVD
EPSS 0% CVSS 2.1
LOW Monitor

Siemens SIMATIC STEP 7 (TIA Portal) before 13 SP1 uses a weak password-hash algorithm, which makes it easier for local users to determine cleartext passwords by reading a project file and conducting. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Siemens Simatic Step 7
NVD
EPSS 8% CVSS 10.0
CRITICAL Act Now

Buffer overflow in the integrated web server on Siemens Ruggedcom WIN51xx devices with firmware before SS4.4.4624.35, WIN52xx devices with firmware before SS4.4.4624.35, WIN70xx devices with firmware. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Buffer Overflow Siemens +1
NVD
EPSS 3% CVSS 10.0
CRITICAL Act Now

The integrated management service on Siemens Ruggedcom WIN51xx devices with firmware before SS4.4.4624.35, WIN52xx devices with firmware before SS4.4.4624.35, WIN70xx devices with firmware before. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Privilege Escalation Siemens Ruggedcom Firmware
NVD
EPSS 0% CVSS 5.0
MEDIUM This Month

Siemens Ruggedcom WIN51xx devices with firmware before SS4.4.4624.35, WIN52xx devices with firmware before SS4.4.4624.35, WIN70xx devices with firmware before BS4.4.4621.32, and WIN72xx devices with. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Siemens Ruggedcom Firmware
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

The web server on Siemens SCALANCE X-200IRT switches with firmware before 5.2.0 allows remote attackers to hijack sessions via unspecified vectors. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Siemens Scalance X 200 Series Firmware
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

Open redirect vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices with firmware before 4.1 allows remote attackers to redirect users to arbitrary web sites and conduct. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Open Redirect Siemens Simatic S7 1200 Cpu Firmware
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

The FTP server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote authenticated users to cause a denial of service (reboot). Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Siemens Scalance X 408 Firmware +1
NVD
EPSS 1% CVSS 7.8
HIGH This Week

The web server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote attackers to cause a denial of service (reboot) via. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Denial Of Service Siemens +2
NVD
EPSS 0% CVSS 1.9
LOW Monitor

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to discover Sm@rtServer credentials by leveraging an error in the credential-processing mechanism. Rated low severity (CVSS 1.9). No vendor patch available.

Apple Information Disclosure Siemens +1
NVD
EPSS 0% CVSS 1.9
LOW Monitor

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows local users to bypass an intended application-password requirement by leveraging the running of the app in the background state. Rated low severity (CVSS 1.9). No vendor patch available.

Apple Privilege Escalation Siemens +1
NVD
EPSS 0% CVSS 2.1
LOW Monitor

The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to extract the password from storage via unspecified vectors. Rated low severity (CVSS 2.1), this vulnerability is low attack complexity. No vendor patch available.

Apple Information Disclosure Siemens +1
NVD
EPSS 0% CVSS 5.0
MEDIUM This Month

The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Siemens Simatic Pcs 7 +3
NVD
EPSS 6% CVSS 10.0
CRITICAL Act Now

The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

RCE Code Injection Siemens +4
NVD
EPSS 13% CVSS 7.1
HIGH POC PATCH THREAT Act Now

Siemens SIMATIC S7-1500 CPU devices with firmware before 1.6 allow remote attackers to cause a denial of service (device restart and STOP transition) via crafted TCP packets. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 12.9%.

Denial Of Service Siemens Simatic S7 1500 Cpu Firmware +7
NVD Exploit-DB
EPSS 0% CVSS 6.8
MEDIUM This Month

The Project administration application in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, has a hardcoded encryption key, which allows remote attackers to obtain sensitive. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Siemens Simatic Pcs7 +1
NVD
EPSS 0% CVSS 4.6
MEDIUM This Month

Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows local users to gain privileges by leveraging weak system-object access control. Rated medium severity (CVSS 4.6), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Siemens Simatic Pcs7 +1
NVD
EPSS 0% CVSS 6.0
MEDIUM This Month

The database server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a request to TCP port 1433. Rated medium severity (CVSS 6.0), this vulnerability is remotely exploitable. No vendor patch available.

Privilege Escalation Siemens Simatic Pcs7 +1
NVD
EPSS 0% CVSS 4.9
MEDIUM This Month

The WebNavigator server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a (1) HTTP or (2) HTTPS request. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable. No vendor patch available.

Privilege Escalation Siemens Simatic Pcs7 +1
NVD
EPSS 0% CVSS 5.0
MEDIUM This Month

The WebNavigator server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote attackers to obtain sensitive information via an HTTP request. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure Siemens Simatic Pcs7 +1
NVD
EPSS 1% CVSS 5.8
MEDIUM This Month

CRLF injection vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote attackers to inject arbitrary HTTP headers via unspecified vectors. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

RCE Code Injection Siemens +6
NVD VulDB
EPSS 68% 4.4 CVSS 4.3
MEDIUM POC THREAT This Month

Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote attackers to inject arbitrary web script or HTML via unspecified. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. Public exploit code available and EPSS exploitation probability 68.0%.

XSS Siemens Simatic S7 Cpu 1200 Firmware +5
NVD Exploit-DB VulDB
EPSS 0% CVSS 5.0
MEDIUM This Month

Siemens SINEMA Server before 12 SP1 allows remote attackers to cause a denial of service (web-interface outage) via crafted HTTP requests to port (1) 4999 or (2) 80. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Siemens Sinema Server
NVD VulDB
EPSS 0% CVSS 5.0
MEDIUM This Month

Multiple directory traversal vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to access arbitrary files via HTTP traffic to port (1) 4999 or. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Siemens Sinema Server
NVD VulDB
EPSS 2% CVSS 9.3
CRITICAL Act Now

Multiple unspecified vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to execute arbitrary code via HTTP traffic to port (1) 4999 or (2) 80. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

RCE Siemens Sinema Server
NVD VulDB
EPSS 0% CVSS 5.0
MEDIUM This Month

The web management interface in Siemens RuggedCom ROS before 3.11, ROS 3.11 before 3.11.5 for RS950G, ROS 3.12, and ROS 4.0 for RSG2488 allows remote attackers to cause a denial of service (interface. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Siemens Authentication Bypass +1
NVD VulDB
EPSS 0% CVSS 7.8
HIGH This Week

Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTPS packets, a different vulnerability than. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Siemens Simatic S7 Cpu 1200 Firmware +5
NVD VulDB
EPSS 1% CVSS 7.8
HIGH This Week

Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted ISO-TSAP packets, a different vulnerability. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Siemens Simatic S7 Cpu 1200 Firmware +5
NVD VulDB
EPSS 0% CVSS 7.8
HIGH This Week

Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTP packets, a different vulnerability than. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Siemens Simatic S7 Cpu 1200 Firmware +5
NVD VulDB
EPSS 0% CVSS 6.1
MEDIUM This Month

Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted PROFINET packets, a different vulnerability. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Siemens Simatic S7 Cpu 1200 Firmware +5
NVD VulDB
EPSS 2% CVSS 8.3
HIGH This Week

The random-number generator on Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 does not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Siemens Simatic S7 Cpu 1200 Firmware +5
NVD VulDB
EPSS 2% CVSS 7.8
HIGH PATCH This Week

Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTPS packets. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
EPSS 1% CVSS 7.8
HIGH PATCH This Week

Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted ISO-TSAP packets. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
EPSS 2% CVSS 7.8
HIGH PATCH This Week

Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTP packets. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity.

Denial Of Service Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
EPSS 0% CVSS 6.1
MEDIUM PATCH This Month

Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted Profinet packets. Rated medium severity (CVSS 6.1), this vulnerability is low attack complexity.

Denial Of Service Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
EPSS 1% CVSS 8.3
HIGH PATCH This Week

The random-number generator on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 does not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable.

Information Disclosure Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
EPSS 0% CVSS 5.8
MEDIUM PATCH This Month

Cross-site request forgery (CSRF) vulnerability on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 and SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allows remote. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.

CSRF Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
EPSS 1% CVSS 4.3
MEDIUM PATCH This Month

Open redirect vulnerability in the integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to redirect users to arbitrary web sites and. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

Open Redirect Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
EPSS 1% CVSS 5.8
MEDIUM PATCH This Month

The integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to inject headers via unspecified vectors. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable.

Code Injection Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
EPSS 1% CVSS 4.3
MEDIUM PATCH This Month

Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to inject arbitrary web script or. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable.

XSS Siemens Simatic S7 1500 Cpu Firmware
NVD VulDB
EPSS 0% CVSS 7.8
HIGH This Week

The SNMP implementation in Siemens RuggedCom ROS before 3.11, ROS 3.11 for RS950G, ROS 3.12 before 3.12.4, and ROS 4.0 for RSG2488 allows remote attackers to cause a denial of service (device outage). Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Denial Of Service Ruggedcom Rugged Operating System
NVD
EPSS 1% CVSS 5.0
MEDIUM This Month

Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to cause a denial of service (monitoring-service outage) via malformed HTTP requests to port 4999. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Denial Of Service Simatic Wincc Open Architecture
NVD
EPSS 1% CVSS 5.0
MEDIUM This Month

Directory traversal vulnerability in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to read arbitrary files via crafted packets to TCP port 4999. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Path Traversal Simatic Wincc Open Architecture
NVD
EPSS 5% CVSS 7.5
HIGH This Week

The integrated web server in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to execute arbitrary code via crafted packets to TCP port 4999. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens RCE Simatic Wincc Open Architecture
NVD
EPSS 1% CVSS 5.0
MEDIUM This Month

Siemens SIMATIC WinCC OA before 3.12 P002 January uses a weak hash algorithm for passwords, which makes it easier for remote attackers to obtain access via a brute-force attack. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Information Disclosure Simatic Wincc Open Architecture
NVD
EPSS 0% CVSS 8.0
HIGH This Week

The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote authenticated users to bypass intended restrictions on administrative actions by leveraging access to a (1) guest or. Rated high severity (CVSS 8.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Authentication Bypass Ruggedcom Rugged Operating System
NVD
EPSS 1% CVSS 8.3
HIGH This Week

The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote attackers to hijack web sessions by predicting a session id value. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable. No vendor patch available.

Siemens Information Disclosure Ruggedcom Rugged Operating System
NVD
EPSS 0% CVSS 6.9
MEDIUM This Month

Siemens COMOS before 9.2.0.8.1, 10.0 before 10.0.3.1.40, and 10.1 before 10.1.0.0.2 allows local users to gain database privileges via unspecified vectors. Rated medium severity (CVSS 6.9). No vendor patch available.

Privilege Escalation Siemens Comos
NVD
EPSS 1% CVSS 10.0
CRITICAL Act Now

Siemens SINAMICS S/G controllers with firmware before 4.6.11 do not require authentication for FTP and TELNET sessions, which allows remote attackers to bypass intended access restrictions via TCP. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Authentication Bypass Sinamics S G Family Firmware +13
NVD
EPSS 1% CVSS 10.0
CRITICAL Act Now

The integrated web server on Siemens SCALANCE X-200 switches with firmware before 4.5.0 and X-200IRT switches with firmware before 5.1.0 does not properly enforce authentication requirements, which. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens Authentication Bypass Scalance X 200 Series Firmware +2
NVD
EPSS 1% CVSS 8.3
HIGH This Week

The authentication implementation in the web server on Siemens SCALANCE X-200 switches with firmware before 5.0.0 does not use a sufficient source of entropy for generating values of random numbers,. Rated high severity (CVSS 8.3), this vulnerability is remotely exploitable. No vendor patch available.

Siemens Information Disclosure Scalance X 200 Series Firmware +8
NVD
EPSS 0% CVSS 7.2
HIGH This Week

The client application in Siemens COMOS before 9.1 Update 458, 9.2 before 9.2.0.6.37, and 10.0 before 10.0.3.0.19 allows local users to gain privileges and bypass intended database-operation. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Privilege Escalation Siemens Comos
NVD
EPSS 1% CVSS 5.8
MEDIUM This Month

Open redirect vulnerability in Siemens WinCC (TIA Portal) 11 and 12 before 12 SP1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks by leveraging improper. Rated medium severity (CVSS 5.8), this vulnerability is remotely exploitable. No vendor patch available.

Siemens Open Redirect Wincc
NVD
EPSS 0% CVSS 6.8
MEDIUM This Month

Cross-site request forgery (CSRF) vulnerability in Siemens WinCC (TIA Portal) 11 and 12 before 12 SP1 allows remote attackers to hijack the authentication of unspecified victims by leveraging. Rated medium severity (CVSS 6.8), this vulnerability is remotely exploitable. No vendor patch available.

CSRF Siemens Wincc
NVD
EPSS 10% CVSS 10.0
CRITICAL Act Now

Unspecified vulnerability in the command-line management interface on Siemens Scalance W7xx devices with firmware before 4.5.4 allows remote attackers to bypass authentication and execute arbitrary. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Siemens RCE Scalance W700 Series Firmware +16
NVD
EPSS 0% CVSS 6.6
MEDIUM This Month

Siemens Scalance W7xx devices with firmware before 4.5.4 use the same hardcoded X.509 certificate across different customers' installations, which makes it easier for remote attackers to conduct. Rated medium severity (CVSS 6.6), this vulnerability is remotely exploitable. No vendor patch available.

Siemens Authentication Bypass Scalance W700 Series Firmware +16
NVD
EPSS 4% CVSS 10.0
CRITICAL Act Now

core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to execute. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP Siemens Command Injection +2
NVD
EPSS 0% CVSS 7.8
HIGH This Week

core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to read arbitrary. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP Siemens Information Disclosure +2
NVD
Prev Page 3 of 4 Next

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy