Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
siemens simatic step 7 13 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-1601
Siemens SIMATIC STEP 7 (TIA Portal) 12 and 13 prior to 13 SP1 Upd1 allows man-in-the-middle malicious users to obtain sensitive information or modify transmitted data via unspecified vectors.
Siemens Simatic Step 7 13
Siemens Simatic Step 7 12
Siemens Simatic Step 7
NA
CVE-2015-1602
Siemens SIMATIC STEP 7 (TIA Portal) 12 and 13 prior to 13 SP1 Upd1 improperly stores password data within project files, which makes it easier for local users to determine cleartext (1) protection-level passwords or (2) web-server passwords by leveraging the ability to read these...
Siemens Simatic Step 7 13.0
Siemens Simatic Step 7 12.0
Siemens Simatic Step 7
NA
CVE-2015-1594
Untrusted search path vulnerability in Siemens SIMATIC ProSave prior to 13 SP1; SIMATIC CFC prior to 8.0 SP4 Upd9 and 8.1 before Upd1; SIMATIC STEP 7 prior to 5.5 SP1 HF2, 5.5 SP2 before HF7, 5.5 SP3, and 5.5 SP4 before HF4; SIMOTION Scout prior to 4.4; and STARTER prior to 4.4 H...
Siemens Starter
Siemens Simatic Prosave 13.0
Siemens Simotion Scout
Siemens Simatic Cfc 8.1
Siemens Simatic Cfc
Siemens Simatic Step 7 5.5
Siemens Simatic Step 7
NA
CVE-2015-1355
Siemens SIMATIC STEP 7 (TIA Portal) prior to 13 SP1 uses a weak password-hash algorithm, which makes it easier for local users to determine cleartext passwords by reading a project file and conducting a brute-force attack.
Siemens Simatic Step 7
NA
CVE-2015-1356
Siemens SIMATIC STEP 7 (TIA Portal) prior to 13 SP1 determines a user's privileges on the basis of project-file fields that lack integrity protection, which allows remote malicious users to establish arbitrary authorization data via a modified file.
Siemens Simatic Step 7
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started