Skip to main content

Sinamics Sm150 Firmware

8 CVEs product

Monthly

CVE-2021-31337 CRITICAL Act Now

The Telnet service of the SIMATIC HMI Comfort Panels system component in affected products does not require authentication, which may allow a remote attacker to gain access to the device if the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Sinamics Sl150 Firmware Sinamics Sm150 Firmware Sinamics Sm150I Firmware
NVD
CVSS 3.1
9.8
EPSS
1.7%
CVE-2021-27388 CRITICAL Act Now

SINAMICS medium voltage routable products are affected by a vulnerability in the Sm@rtServer component for remote access that could allow an unauthenticated attacker to cause a denial-of-service. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Sinamics Sl150 Firmware Sinamics Sm150 Firmware Sinamics Sm150I Firmware
NVD
CVSS 3.1
9.8
EPSS
1.5%
CVE-2021-27386 HIGH This Week

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Simatic Wincc Runtime Advanced Sinamics Sh150 Firmware Sinamics Sm150I Firmware Sinamics Gh150 Firmware +14
NVD VulDB
CVSS 3.1
7.5
EPSS
0.6%
CVE-2021-27385 HIGH This Week

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Simatic Wincc Runtime Advanced Sinamics Sh150 Firmware Sinamics Sm150I Firmware Sinamics Gh150 Firmware +14
NVD VulDB
CVSS 3.1
7.5
EPSS
0.5%
CVE-2021-27384 CRITICAL PATCH Act Now

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

RCE Simatic Wincc Runtime Advanced Sinamics Sh150 Firmware Sinamics Sm150I Firmware Sinamics Gh150 Firmware +14
NVD VulDB
CVSS 3.1
9.8
EPSS
1.9%
CVE-2021-27383 HIGH This Week

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Simatic Wincc Runtime Advanced Sinamics Sh150 Firmware Sinamics Sm150I Firmware Sinamics Gh150 Firmware +14
NVD VulDB
CVSS 3.1
7.5
EPSS
0.6%
CVE-2020-15798 CRITICAL PATCH Act Now

A vulnerability has been identified in SIMATIC HMI Comfort Panels (incl. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Missing Authentication for Critical Function vulnerability could allow attackers to access critical functionality without authentication.

Authentication Bypass Simatic Hmi Comfort Panels Firmware Simatic Hmi Ktp Mobile Panels Firmware Sinamics Gh150 Firmware Sinamics Gl150 Firmware +6
NVD VulDB
CVSS 3.1
9.8
EPSS
1.7%
CVE-2019-6568 HIGH This Week

The webserver of the affected devices contains a vulnerability that may lead to a denial of service condition. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Information Disclosure Cp1604 Firmware Cp1616 Firmware +51
NVD
CVSS 3.1
7.5
EPSS
1.4%
EPSS 2% CVSS 9.8
CRITICAL Act Now

The Telnet service of the SIMATIC HMI Comfort Panels system component in affected products does not require authentication, which may allow a remote attacker to gain access to the device if the. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Authentication Bypass Sinamics Sl150 Firmware Sinamics Sm150 Firmware +1
NVD
EPSS 2% CVSS 9.8
CRITICAL Act Now

SINAMICS medium voltage routable products are affected by a vulnerability in the Sm@rtServer component for remote access that could allow an unauthenticated attacker to cause a denial-of-service. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Sinamics Sl150 Firmware Sinamics Sm150 Firmware +1
NVD
EPSS 1% CVSS 7.5
HIGH This Week

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Simatic Wincc Runtime Advanced Sinamics Sh150 Firmware +16
NVD VulDB
EPSS 1% CVSS 7.5
HIGH This Week

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Simatic Wincc Runtime Advanced Sinamics Sh150 Firmware +16
NVD VulDB
EPSS 2% CVSS 9.8
CRITICAL PATCH Act Now

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

RCE Simatic Wincc Runtime Advanced Sinamics Sh150 Firmware +16
NVD VulDB
EPSS 1% CVSS 7.5
HIGH This Week

A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Simatic Wincc Runtime Advanced Sinamics Sh150 Firmware +16
NVD VulDB
EPSS 2% CVSS 9.8
CRITICAL PATCH Act Now

A vulnerability has been identified in SIMATIC HMI Comfort Panels (incl. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. This Missing Authentication for Critical Function vulnerability could allow attackers to access critical functionality without authentication.

Authentication Bypass Simatic Hmi Comfort Panels Firmware Simatic Hmi Ktp Mobile Panels Firmware +8
NVD VulDB
EPSS 1% CVSS 7.5
HIGH This Week

The webserver of the affected devices contains a vulnerability that may lead to a denial of service condition. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Denial Of Service Buffer Overflow Information Disclosure +53
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy