siemens

2,373 tracked vulnerabilities.

CVE-2024-30208 MEDIUM
SIMATIC RTLS Locating Manager -<V3.0.1.1 - Info Disclosure
May 14, 2024
CVSS 6.3
EPSS 0.00
CVE-2024-30207 CRITICAL
SIMATIC RTLS Locating Manager -<V3.0.1.1 - Info Disclosure
May 14, 2024
CVSS 10.0
EPSS 0.01
CVE-2024-30206 HIGH
SIMATIC RTLS Locating Manager -<V3.0.1.1 - Info Disclosure
May 14, 2024
CVSS 8.8
EPSS 0.00
CVE-2024-27947 MEDIUM
RUGGEDCOM CROSSBOW < V5.5 - Exposure of Sensitive Information via Log Message Forwarding
May 14, 2024
CVSS 5.3
EPSS 0.01
CVE-2024-27946 MEDIUM
RUGGEDCOM CROSSBOW < V5.5 - Authenticated Arbitrary File Overwrite via File Download
May 14, 2024
CVSS 6.5
EPSS 0.01
CVE-2024-27945 HIGH
RUGGEDCOM CROSSBOW < 5.5 - Authenticated Unrestricted File Upload via Bulk Import Feature
May 14, 2024
CVSS 7.2
EPSS 0.01
CVE-2024-27944 HIGH
RUGGEDCOM CROSSBOW < 5.5 - Authenticated Unrestricted Firmware Upload
May 14, 2024
CVSS 7.2
EPSS 0.01
CVE-2024-27943 HIGH
RUGGEDCOM CROSSBOW < 5.5 - Authenticated Arbitrary File Upload and Remote Code Execution
May 14, 2024
CVSS 7.2
EPSS 0.01
CVE-2024-27942 HIGH
RUGGEDCOM CROSSBOW < 5.5 - Unauthenticated Denial of Service via User Disconnection
May 14, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-27941 HIGH
RUGGEDCOM CROSSBOW < 5.5 - SQL Injection
May 14, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-27940 HIGH
RUGGEDCOM CROSSBOW < 5.5 - Authenticated SQL Injection
May 14, 2024
CVSS 8.8
EPSS 0.01
CVE-2024-27939 CRITICAL
RUGGEDCOM CROSSBOW < 5.5 - Unauthenticated Arbitrary File Upload and Remote Code Execution
May 14, 2024
CVSS 9.8
EPSS 0.01
CVE-2024-31978 HIGH
SINEC NMS < V2.0 SP2 - Path Traversal
Apr 09, 2024
CVSS 7.6
EPSS 0.00
CVE-2024-30191 HIGH
Siemens SCALANCE W Series - Authentication Bypass by Spoofing via Security Context Override
Apr 09, 2024
CVSS 8.4
EPSS 0.00
CVE-2024-30190 MEDIUM
Siemens SCALANCE W Series - Denial of Service via Power-Saving Mechanism Abuse
Apr 09, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-30189 MEDIUM
Siemens SCALANCE W Series - Authentication Bypass by Spoofing via Wi-Fi Frame Queue Leak
Apr 09, 2024
CVSS 6.1
EPSS 0.00
CVE-2024-26277 LOW
JT2Go, Parasolid, Teamcenter Visualization <V2312.0004 - Null Point...
Apr 09, 2024
CVSS 3.3
EPSS 0.00
CVE-2024-26276 LOW
Siemens JT2Go < 2312.0004 - Denial of Service via X_T File Parsing
Apr 09, 2024
CVSS 3.3
EPSS 0.00
CVE-2024-26275 HIGH
Siemens Parasolid < 35.1.254 - Out-of-bounds Read via X_T File Parsing
Apr 09, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-27907 HIGH
Simcenter Femap < V2306.0000 - Code Injection
Mar 12, 2024
CVSS 7.8
EPSS 0.00
CVE-2024-22045 HIGH
SINEMA Remote Connect Client < V3.1 SP1 - Info Disclosure
Mar 12, 2024
CVSS 7.6
EPSS 0.00
CVE-2024-22044 HIGH
SENTRON 3KC ATC6 Expansion Module - DoS
Mar 12, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-22041 HIGH
Siemens Cerberus PRO and Sinteso FS20 - Unauthenticated Denial of Service via X.509 Certificate Parsing
Mar 12, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-22040 HIGH
Siemens Cerberus PRO and Sinteso FS20 - Unauthenticated Denial of Service via HMAC Validation Buffer Overread
Mar 12, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-22039 CRITICAL
Siemens Cerberus PRO and Sinteso - Unauthenticated Remote Code Execution via X.509 Certificate Attribute Buffer Overflow
Mar 12, 2024
CVSS 10.0
EPSS 0.01