Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
siemens vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2023-29130
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected device consists of improper access controls in the configuration files that leads to privilege escalation. An attacker could gain admin access with this vulnerability leading to complete dev...
Siemens Simatic Cn 4100
10
CVSSv3
CVE-2023-29131
A vulnerability has been identified in SIMATIC CN 4100 (All versions < V2.5). Affected device consists of an incorrect default value in the SSH configuration. This could allow an malicious user to bypass network isolation.
Siemens Simatic Cn 4100
10
CVSSv3
CVE-2022-34819
A vulnerability has been identified in SIMATIC CP 1242-7 V2 (All versions < V3.3.46), SIMATIC CP 1243-1 (All versions < V3.3.46), SIMATIC CP 1243-7 LTE EU (All versions < V3.3.46), SIMATIC CP 1243-7 LTE US (All versions < V3.3.46), SIMATIC CP 1243-8 IRC (All versions ...
Siemens Simatic Cp 1242-7 V2 Firmware
Siemens Simatic Cp 1243-1 Firmware
Siemens Simatic Cp 1243-7 Lte Eu Firmware
Siemens Simatic Cp 1243-7 Lte Us Firmware
Siemens Simatic Cp 1243-8 Irc Firmware
Siemens Simatic Cp 1542sp-1 Irc Firmware
Siemens Simatic Cp 1543-1 Firmware
Siemens Simatic Cp 1543sp-1 Firmware
Siemens Siplus Et 200sp Cp 1542sp-1 Irc Tx Rail Firmware
Siemens Siplus Et 200sp Cp 1543sp-1 Isec Firmware
Siemens Siplus Et 200sp Cp 1543sp-1 Isec Tx Rail Firmware
Siemens Siplus Net Cp 1242-7 V2 Firmware
Siemens Siplus Net Cp 1543-1 Firmware
Siemens Siplus S7-1200 Cp 1243-1 Firmware
Siemens Siplus S7-1200 Cp 1243-1 Rail Firmware
10
CVSSv3
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0
Apache Log4j
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Siemens Head-end System Universal Device Integration System
Siemens Gma-manager
Siemens Energyip 8.5
Siemens Energyip 8.6
Siemens Energyip 8.7
Siemens Energyip 9.0
Siemens Energy Engage 3.1
Siemens E-car Operation Center
2 Metasploit modules
1149 Github repositories
28 Articles
10
CVSSv3
CVE-2021-37181
A vulnerability has been identified in Cerberus DMS V4.0 (All versions), Cerberus DMS V4.1 (All versions), Cerberus DMS V4.2 (All versions), Cerberus DMS V5.0 (All versions < v5.0 QU1), Desigo CC Compact V4.0 (All versions), Desigo CC Compact V4.1 (All versions), Desigo CC Com...
Siemens Cerberus Dms 4.0
Siemens Cerberus Dms 4.1
Siemens Cerberus Dms 4.2
Siemens Cerberus Dms 5.0
Siemens Desigo Cc 4.0
Siemens Desigo Cc 4.1
Siemens Desigo Cc 4.2
Siemens Desigo Cc 5.0
Siemens Desigo Cc Compact 4.0
Siemens Desigo Cc Compact 4.1
Siemens Desigo Cc Compact 4.2
Siemens Desigo Cc Compact 5.0
10
CVSSv3
CVE-2021-31891
A vulnerability has been identified in Desigo CC (All versions with OIS Extension Module), GMA-Manager (All versions with OIS running on Debian 9 or earlier), Operation Scheduler (All versions with OIS running on Debian 9 or earlier), Siveillance Control (All versions with OIS ru...
Siemens Desigo Cc
Siemens Siveillance Control Pro
Siemens Gma-manager
Siemens Operation Scheduler
Siemens Siveillance Control
10
CVSSv3
CVE-2018-13816
A vulnerability has been identified in TIM 1531 IRC (All version < V2.0). The devices was missing proper authentication on port 102/tcp, although configured. Successful exploitation requires an malicious user to be able to send packets to port 102/tcp of the affected device. N...
Siemens Tim 1531 Irc Firmware
9.9
CVSSv3
CVE-2023-27407
A vulnerability has been identified in SCALANCE LPE9403 (All versions < V2.1). The web based management of affected device does not properly validate user input, making it susceptible to command injection. This could allow an authenticated remote malicious user to access the u...
Siemens Scalance Lpe9403 Firmware
9.9
CVSSv3
CVE-2021-40358
A vulnerability has been identified in SIMATIC PCS 7 V8.2 (All versions), SIMATIC PCS 7 V9.0 (All versions < V9.0 SP3 UC04), SIMATIC PCS 7 V9.1 (All versions < V9.1 SP1), SIMATIC WinCC V15 and previous versions (All versions < V15 SP1 Update 7), SIMATIC WinCC V16 (All ve...
Siemens Simatic Wincc 7.4
Siemens Simatic Pcs 7 8.2
Siemens Simatic Wincc 7.5
Siemens Simatic Wincc 15.1
Siemens Simatic Pcs 7 9.0
Siemens Simatic Wincc 17
Siemens Simatic Wincc 15
Siemens Simatic Wincc 16
Siemens Simatic Pcs 7 9.1
9.9
CVSSv3
CVE-2019-10940
A vulnerability has been identified in SINEMA Server (All versions < V14.0 SP2 Update 1). Incorrect session validation could allow an attacker with a valid session, with low privileges, to perform firmware updates and other administrative operations on connected devices. The s...
Siemens Sinema Server
Siemens Sinema Server 14.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »