| CVE-2020-15782 |
critical |
9.8 |
9.8 |
|
|
siemens |
5y ago |
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP… |
| CVE-2021-27384 |
critical |
9.8 |
9.8 |
|
|
siemens |
5y ago |
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. SIPLUS variants) (All versions < V15.1 Update 6), SIMATIC HMI Comfort Outdoor Panels V16 7\" & 15\" (in… |
| CVE-2020-15798 |
critical |
9.8 |
9.8 |
|
|
siemens |
5y ago |
A vulnerability has been identified in SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions < V16 Update 3a), SIMATIC HMI KTP Mobile Panels (All versions < V16 Update 3a), SINAMICS GH150 … |
| CVE-2020-15786 |
critical |
9.8 |
9.8 |
|
|
siemens |
6y ago |
A vulnerability has been identified in SIMATIC HMI Basic Panels 2nd Generation (incl. SIPLUS variants) (All versions < V16), SIMATIC HMI Comfort Panels (incl. SIPLUS variants) (All versions <= V16), … |
| CVE-2017-9939 |
critical |
9.8 |
9.8 |
|
|
siemens |
9y ago |
A vulnerability was discovered in Siemens SiPass integrated (All versions before V2.70) that could allow an attacker with network access to the SiPass integrated server to bypass the authentication m… |
| CVE-2017-6869 |
critical |
9.8 |
9.8 |
|
|
siemens |
9y ago |
A vulnerability was discovered in Siemens ViewPort for Web Office Portal before revision number 1453 that could allow an unauthenticated remote user to upload arbitrary code and execute it with the p… |
| CVE-2017-2684 |
critical |
9.0 |
9.0 |
|
|
siemens |
9y ago |
Siemens SIMATIC Logon prior to V1.5 SP3 Update 2 could allow an attacker with knowledge of a valid user name, and physical or network access to the affected system, to bypass the application-level au… |
| CVE-2016-8567 |
critical |
9.8 |
9.8 |
|
|
siemens |
9y ago |
An issue was discovered in Siemens SICAM PAS before 8.00. A factory account with hard-coded passwords is present in the SICAM PAS installations. Attackers might gain privileged access to the database… |
| CVE-2016-9157 |
critical |
9.8 |
9.8 |
|
|
siemens |
10y ago |
A vulnerability in Siemens SICAM PAS (all versions before V8.09) could allow a remote attacker to cause a Denial of Service condition and potentially lead to unauthenticated remote code execution by … |
| CVE-2016-8565 |
critical |
9.1 |
9.1 |
|
|
siemens |
10y ago |
Siemens Automation License Manager (ALM) before 5.3 SP3 allows remote attackers to write to files, rename files, create directories, or delete directories via crafted packets. |
| CVE-2016-7112 |
critical |
9.8 |
9.8 |
|
|
siemens |
10y ago |
A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions < V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions < V1.11.0… |
| CVE-2016-5743 |
critical |
9.8 |
9.8 |
|
|
siemens |
10y ago |
Siemens SIMATIC WinCC before 7.3 Update 10 and 7.4 before Update 1, SIMATIC BATCH before 8.1 SP1 Update 9 as distributed in SIMATIC PCS 7 through 8.1 SP1, SIMATIC OpenPCS 7 before 8.1 Update 3 as dis… |
| CVE-2014-8551 |
critical |
— |
10.0 |
|
|
siemens |
12y ago |
The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6 all… |
| CVE-2014-2731 |
critical |
— |
9.3 |
|
|
siemens |
12y ago |
Multiple unspecified vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to execute arbitrary code via HTTP traffic to port (1) 4999 or (2) 80. |
| CVE-2013-4781 |
critical |
— |
10.0 |
|
|
siemens |
13y ago |
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to execute arbitrar… |
| CVE-2013-0659 |
critical |
— |
10.0 |
|
|
siemens |
13y ago |
The debugging feature on the Siemens CP 1604 and CP 1616 interface cards with firmware before 2.5.2 allows remote attackers to execute arbitrary code via a crafted packet to UDP port 17185. |
| CVE-2012-5409 |
critical |
— |
10.0 |
EXP |
|
siemens |
14y ago |
AscoServer.exe in the server in Siemens SiPass integrated MP2.6 and earlier does not properly handle IOCP RPC messages received over an Ethernet network, which allows remote attackers to write data t… |
| CVE-2012-1799 |
critical |
— |
10.0 |
|
|
siemens |
14y ago |
The web server on the Siemens Scalance S Security Module firewall S602 V2, S612 V2, and S613 V2 with firmware before 2.3.0.3 does not limit the rate of authentication attempts, which makes it easier … |
| CVE-2011-4876 |
critical |
— |
10.0 |
EXP |
|
siemens |
15y ago |
Directory traversal vulnerability in HmiLoad in the runtime loader in Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 (aka TIA portal); the TP, OP, MP, Comfort Panels, and Mobile Panels … |
| CVE-2011-4875 |
critical |
— |
10.0 |
EXP |
|
siemens |
15y ago |
Stack-based buffer overflow in HmiLoad in the runtime loader in Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 (aka TIA portal); the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATI… |
| CVE-2011-4514 |
critical |
— |
10.0 |
|
|
siemens |
15y ago |
The TELNET daemon in Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 (aka TIA portal); the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; a… |
| CVE-2011-4513 |
critical |
— |
10.0 |
|
|
siemens |
15y ago |
Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 (aka TIA portal); the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Run… |
| CVE-2011-4509 |
critical |
— |
10.0 |
|
|
siemens |
15y ago |
The HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008; WinCC V11 (aka TIA portal); the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; … |
| CVE-2011-4508 |
critical |
— |
9.3 |
|
|
siemens |
15y ago |
The HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panel… |
| CVE-2011-4055 |
critical |
— |
9.3 |
|
|
siemens |
15y ago |
Buffer overflow in the WebClient ActiveX control in Siemens Tecnomatix FactoryLink 6.6.1 (aka 6.6 SP1), 7.5.217 (aka 7.5 SP2), and 8.0.2.54 allows remote attackers to execute arbitrary code via a lon… |
| CVE-2011-3321 |
critical |
— |
9.3 |
|
|
siemens |
15y ago |
Heap-based buffer overflow in the Siemens WinCC Runtime Advanced Loader, as used in SIMATIC WinCC flexible Runtime and SIMATIC WinCC (TIA Portal) Runtime Advanced, allows remote attackers to cause a … |
