Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
siemens simatic information server vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv3
CVE-2021-41057
In WIBU CodeMeter Runtime prior to 7.30a, creating a crafted CmDongles symbolic link will overwrite the linked file without checking permissions.
Wibu Codemeter Runtime
Siemens Simatic Pcs Neo
Siemens Sicam 230
Siemens Pss Odms
Siemens Pss E
Siemens Simit
Siemens Simatic Wincc Oa
Siemens Simatic Process Historian
Siemens Simatic Information Server 2019
Siemens Simatic Information Server
Siemens Pss Cape 14
9.1
CVSSv3
CVE-2021-20093
A buffer over-read vulnerability exists in Wibu-Systems CodeMeter versions < 7.21a. An unauthenticated remote attacker can exploit this issue to disclose heap memory contents or crash the CodeMeter Runtime Server.
Wibu Codemeter
Siemens Pss Cape -
Siemens Sicam 230 Firmware
Siemens Sinema Remote Connect Server
Siemens Sinema Remote Connect Server 3.0
Siemens Simatic Information Server 2019
Siemens Sinec Infrastructure Network Services
Siemens Simatic Pcs Neo
Siemens Simit Simulation Platform
Siemens Simit Simulation Platform 10.3
Siemens Simatic Wincc Oa 3.18
Siemens Simatic Wincc Oa 3.17
Siemens Simatic Process Historian
Siemens Simatic Process Historian 2020
Siemens Simatic Information Server 2020
Siemens Sinec Infrastructure Network Services 1.0.1
8.2
CVSSv3
CVE-2020-7587
A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2), Opcenter Execution Foundation (All versions < V3.2), Opcenter Execution Process (All versions < V3.2), Opcenter Intelligence (All versions < V3.3), Opcenter Quality (All versions...
Siemens Opcenter Execution Discrete
Siemens Opcenter Execution Foundation
Siemens Opcenter Execution Process
Siemens Opcenter Quality
Siemens Opcenter Rd&l 8.0
Siemens Simatic Step 7 16
Siemens Simatic Notifier Server
Siemens Soft Starter Es
Siemens Simocode Es 16
Siemens Simatic Step 7 15.1
Siemens Simocode Es
Siemens Simatic Pcs Neo
Siemens Simatic It Production Suite
Siemens Simatic It Lms
Siemens Simatic Pcs Neo 3.0
Siemens Simatic Step 7
Siemens Simocode Es 15.1
Siemens Soft Starter Es 15.1
Siemens Opcenter Intelligence
6.8
CVSSv3
CVE-2020-8745
Insufficient control flow management in subsystem for Intel(R) CSME versions prior to 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25 , Intel(R) TXE versions prior to 3.1.80 and 4.0.30 may allow an unauthenticated user to potentially enable escalation...
Intel Converged Security And Manageability Engine
Intel Trusted Execution Technology
Siemens Simatic Drive Controller Firmware
Siemens Simatic Et200sp 1515sp Pc2 Firmware
Siemens Simatic Field Pg M5 Firmware
Siemens Simatic Field Pg M6 Firmware -
Siemens Simatic Ipc127e Firmware
Siemens Simatic Ipc427e Firmware
Siemens Simatic Ipc477e Firmware
Siemens Simatic Ipc527g Firmware
Siemens Simatic Ipc547g Firmware
Siemens Simatic Ipc627e Firmware
Siemens Simatic Ipc647e Firmware
Siemens Simatic Ipc667e Firmware
Siemens Simatic Ipc847e Firmware
Siemens Simatic Itp1000 Firmware
Siemens Sinumerik 828d Hw Pu.4 Firmware
Siemens Sinumerik Mc Mcu 1720 Firmware
Siemens Sinumerik One Firmware -
Siemens Sinumerik 840d Sl Ht 10 Firmware -
Siemens Sinumerik One Ncu 1740 Firmware
Siemens Sinumerik One Ppu 1740 Firmware
NA
CVE-2014-4682
The WebNavigator server in Siemens SIMATIC WinCC prior to 7.3, as used in PCS7 and other products, allows remote malicious users to obtain sensitive information via an HTTP request.
Siemens Wincc 7.1
Siemens Simatic Pcs7 8.0
Siemens Wincc 6.0
Siemens Simatic Pcs7 7.1
Siemens Wincc 7.0
Siemens Simatic Pcs7
Siemens Wincc 5.0
Siemens Wincc
NA
CVE-2013-0677
The web server in Siemens WinCC prior to 7.2, as used in SIMATIC PCS7 prior to 8.0 SP1 and other products, allows remote malicious users to obtain sensitive information or cause a denial of service via a crafted project file.
Siemens Simatic Pcs7
Siemens Wincc 6.0
Siemens Simatic Pcs7 7.1
Siemens Wincc 7.0
Siemens Wincc 5.0
Siemens Wincc
7.5
CVSSv3
CVE-2019-15681
LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an malicious user to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack me...
Libvnc Project Libvncserver
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Siemens Simatic Itc1500 Firmware
Siemens Simatic Itc1500 Pro Firmware
Siemens Simatic Itc1900 Firmware
Siemens Simatic Itc1900 Pro Firmware
Siemens Simatic Itc2200 Firmware
Siemens Simatic Itc2200 Pro Firmware
7.8
CVSSv3
CVE-2020-8744
Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE versions prior to 4.0.30 Intel(R) SPS versions before E3_05.01.04.200 may allow a privileged user to potentially enable escalation of privilege via ...
Intel Trusted Execution Engine
Intel Server Platform Services
Intel Converged Security And Management Engine
Siemens Simatic S7-1518-4 Pn/dp Mfp Firmware -
Siemens Simatic S7-1518f-4 Pn/dp Mfp Firmware -
Siemens Simatic S7-1500 Firmware -
8.8
CVSSv3
CVE-2023-46098
A vulnerability has been identified in SIMATIC PCS neo (All versions < V4.1). When accessing the Information Server from affected products, the products use an overly permissive CORS policy. This could allow an malicious user to trick a legitimate user to trigger unwanted beha...
Siemens Simatic Pcs Neo
3.7
CVSSv3
CVE-2021-22924
libcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse, if one of them matches the setup.Due to errors in the logic, the config matching function did not take 'issuercert' into account and it compared the involved paths *case ins...
Haxx Libcurl
Fedoraproject Fedora 33
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp Cloud Backup -
Netapp Clustered Data Ontap -
Netapp Solidfire & Hci Management Node -
Netapp Solidfire Baseboard Management Controller Firmware -
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Peoplesoft Enterprise Peopletools 8.59
Oracle Mysql Server
Siemens Sinec Infrastructure Network Services
Siemens Sinema Remote Connect Server
Siemens Logo! Cmr2040 Firmware
Siemens Logo! Cmr2020 Firmware
Siemens Ruggedcomrm 1224 Lte Firmware
Siemens Scalance M804pb Firmware
Siemens Scalance M812-1 Firmware
Siemens Scalance M816-1 Firmware
Siemens Scalance M826-2 Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »