Vulnerabilities (CVE)

Vendor filter

Siemens Subscribe

Filter

306 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-6579 1 Siemens 1 Spectrum Power 4 2019-04-18 7.5
A vulnerability has been identified in Spectrum Power? 4 (with Web Office Portal). An attacker with network access to the web server on port 80/TCP or 443/TCP could execute system commands with administrative privileges. The security...
CVE-2019-6575 1 Siemens 18 Simatic S7-1500 Software Controller, Simatic Wincc Runtime Advanced, Simatic Wincc Runtime Comfort and 15 more 2019-04-18 7.8
A vulnerability has been identified in SIMATIC CP443-1 OPC UA (All versions), SIMATIC ET 200 Open Controller CPU 1515SP PC2 (All versions), SIMATIC IPC DiagMonitor (All versions), SIMATIC NET PC Software (All versions), SIMATIC RF188C (All...
CVE-2018-13808 1 Siemens 2 Cp 1604 Firmware, Cp 1616 Firmware 2019-04-18 6.4
A vulnerability has been identified in CP 1604 (All versions < V2.8), CP 1616 (All versions < V2.8). An attacker with network access to port 23/tcp could extract internal communication data or cause a Denial-of-Service condition. Successful...
CVE-2018-13810 1 Siemens 2 Cp 1604 Firmware, Cp 1616 Firmware 2019-04-18 4.3
A vulnerability has been identified in CP 1604 (All versions < V2.8), CP 1616 (All versions < V2.8). The integrated configuration web server of the affected CP devices could allow a Cross-Site Request Forgery (CSRF) attack if an unsuspecting user...
CVE-2018-13809 1 Siemens 2 Cp 1604 Firmware, Cp 1616 Firmware 2019-04-18 4.3
A vulnerability has been identified in CP 1604 (All versions < V2.8), CP 1616 (All versions < V2.8). The integrated web server of the affected CP devices could allow Cross-Site Scripting (XSS) attacks if unsuspecting users are tricked into...
CVE-2018-16558 1 Siemens 1 Simatic S7-1500 Firmware 2019-04-18 7.8
A vulnerability has been identified in SIMATIC S7-1500 CPU (All versions >= V2.0 and < V2.5), SIMATIC S7-1500 CPU (All versions <= V1.8.5). Specially crafted network packets sent to port 80/tcp or 443/tcp could allow an unauthenticated remote...
CVE-2018-16559 1 Siemens 1 Simatic S7-1500 Firmware 2019-04-18 7.8
A vulnerability has been identified in SIMATIC S7-1500 CPU (All versions >= V2.0 and < V2.5), SIMATIC S7-1500 CPU (All versions <= V1.8.5). Specially crafted network packets sent to port 80/tcp or 443/tcp could allow an unauthenticated remote...
CVE-2019-10953 5 Abb, Phoenixcontact, Schneider-electric and 2 more 10 Pm554-tp-eth Firmware, Ilc 151 Eth Firmware, Modicon M221 Firmware and 7 more 2019-04-17 5.0
ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. Researchers have found some controllers are susceptible to a denial-of-service attack due to a flood of network packets.
CVE-2017-12741 1 Siemens 33 Dk Standard Ethernet Controller Firmware, Ek-ertec 200pn Io Firmware, Simatic Compact Field Unit Firmware and 30 more 2019-04-17 7.8
A vulnerability has been identified in SIMATIC S7-200 Smart (All versions < V2.03.01), SIMATIC S7-400 PN V6 (All versions < V6.0.6), SIMATIC S7-400 H V6 (All versions < V6.0.8), SIMATIC S7-400 PN/DP V7 (All versions < V7.0.2), SIMATIC S7-410 V8...
CVE-2018-3639 9 Arm, Intel, Mitel and 6 more 50 Cortex-a, Atom C, Atom E and 47 more 2019-04-09 4.9
Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user...
CVE-2018-16563 1 Siemens 6 En100 Ethernet Module Firmware, En100 Ethernet Module With Firmware Variant Dnp3 Tcp, En100 Ethernet Module With Firmware Variant Iec104 and 3 more 2019-04-08 4.3
A vulnerability has been identified in Firmware variant IEC 61850 for EN100 Ethernet module (All versions < V4.35), Firmware variant MODBUS TCP for EN100 Ethernet module (All versions), Firmware variant DNP3 TCP for EN100 Ethernet module (All...
CVE-2019-6569 1 Siemens 2 Scalance X-200 Firmware, Scalance X-300 Firmware 2019-04-08 6.4
A vulnerability has been identified in Scalance X-200 (All versions), Scalance X-300 (All versions), Scalance XP/XC/XF-200 (All versions <V4.1). The monitor barrier of the affected products insufficiently blocks data from being forwarded over the...
CVE-2018-4838 1 Siemens 4 En100 Ethernet Module Dnp3 Firmware, En100 Ethernet Module Iec 104 Firmware, En100 Ethernet Module Modbus Tcp Firmware and 1 more 2019-03-22 5.0
A vulnerability has been identified in EN100 Ethernet module IEC 61850 variant (All versions < V4.30), EN100 Ethernet module DNP3 variant (All versions < V1.04), EN100 Ethernet module PROFINET IO variant (All versions), EN100 Ethernet module...
CVE-2018-11452 1 Siemens 5 Cp200 Firmware, Dnp3 Tcp Firmware, Iec104 Firmware and 2 more 2019-03-22 7.8
A vulnerability has been identified in Firmware variant IEC 61850 for EN100 Ethernet module (All versions < V4.33), Firmware variant PROFINET IO for EN100 Ethernet module (All versions), Firmware variant Modbus TCP for EN100 Ethernet module (All...
CVE-2018-11451 1 Siemens 5 Cp200 Firmware, Dnp3 Tcp Firmware, Iec104 Firmware and 2 more 2019-03-22 7.8
A vulnerability has been identified in Firmware variant IEC 61850 for EN100 Ethernet module (All versions < V4.33), Firmware variant PROFINET IO for EN100 Ethernet module (All versions), Firmware variant Modbus TCP for EN100 Ethernet module (All...
CVE-2017-6865 1 Siemens 16 Pcs 7, Sinumerik 808d Programming Tool, Simatic Net Pc-software and 13 more 2019-03-21 6.1
A vulnerability has been identified in Primary Setup Tool (PST) (All versions < V4.2 HF1), SIMATIC Automation Tool (All versions < V3.0), SIMATIC NET PC-Software (All versions < V14 SP1), SIMATIC PCS 7 V8.1 (All versions), SIMATIC PCS 7 V8.2 (All...
CVE-2018-3991 2 Wibu, Siemens 2 Wibukey, Simatic Wincc Open Architecture 2019-02-28 7.5
An exploitable heap overflow vulnerability exists in the WkbProgramLow function of WibuKey Network server management, version 6.40.2402.500. A specially crafted TCP packet can cause a heap overflow, potentially leading to remote code execution....
CVE-2018-16557 1 Siemens 4 Simatic S7-400 Firmware, Simatic S7-400 Pn%2fdp V7 Firmware, Simatic S7-400h Firmware and 1 more 2019-02-14 7.8
A vulnerability has been identified in SIMATIC S7-400 (incl. F) V6 and below (All versions), SIMATIC S7-400 PN/DP V7 (incl. F) (All versions), SIMATIC S7-400H V4.5 and below (All versions), SIMATIC S7-400H V6 (All versions), SIMATIC S7-410 (All...
CVE-2018-16556 1 Siemens 4 Simatic S7-400 Firmware, Simatic S7-400 Pn%2fdp V7 Firmware, Simatic S7-400h Firmware and 1 more 2019-02-14 7.8
A vulnerability has been identified in SIMATIC S7-400 (incl. F) V6 and below (All versions), SIMATIC S7-400 PN/DP V7 (incl. F) (All versions), SIMATIC S7-400H V4.5 and below (All versions), SIMATIC S7-400H V6 (All versions), SIMATIC S7-410 (All...
CVE-2018-13815 1 Siemens 1 Simatic S7-1200 Firmware 2019-02-14 5.0
A vulnerability has been identified in SIMATIC S7-1200 (All versions), SIMATIC S7-1500 (All Versions < V2.6). An attacker could exhaust the available connection pool of an affected device by opening a sufficient number of connections to the...