siemens

2,373 tracked vulnerabilities.

CVE-2021-46304 HIGH
CP-8000/8021/8022 - Info Disclosure
Aug 10, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-44222 CRITICAL
SIMATIC eaSie Core Package < 22.00 - Unauthenticated MQTT Service Request Injection
Jul 12, 2022
CVSS 9.1
EPSS 0.01
CVE-2021-44221 HIGH
SIMATIC eaSie Core Package < 22.00 - Denial of Service via Message Passing Framework
Jul 12, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-37182 HIGH
Siemens SCALANCE XM408-4C/XM408-8C/XM416-4C/XR524-8C/XR526-8C <6.5 - Information Disclosure
Jun 14, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-41545 HIGH
Desigo DXR2-PXC5 < V01.21.142.5-22 - DoS
May 10, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-42029 HIGH
SIMATIC STEP 7 V15, V16 < Update 5, V17 < Update 2 - Privilege Escalation via Web Server Access
Apr 12, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-40368 HIGH
SIMATIC S7-400 - Privilege Escalation
Apr 12, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-25220 MEDIUM
Juniper Junos < 19.3 - HTTP Request Smuggling
Mar 23, 2022
CVSS 6.8
EPSS 0.03
CVE-2021-45117 MEDIUM
OPC Foundation UA-NodeSet < 1.05.01 - NULL Pointer Dereference
Mar 21, 2022
CVSS 6.5
EPSS 0.01
CVE-2021-44478 MEDIUM
Polarion ALM < V21 R2 P2 and Polarion WebClient for SVN - Cross-Site Scripting via SVN WebClient
Mar 08, 2022
CVSS 6.1
EPSS 0.01
CVE-2021-42020 HIGH
Siemens RUGGEDCOM ROS - Denial of Service via TFTP Null Termination Check Bypass
Mar 08, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-42019 MEDIUM
Siemens RUGGEDCOM ROS - Integer Overflow in Partition Size Allocation
Mar 08, 2022
CVSS 5.9
EPSS 0.01
CVE-2021-42018 MEDIUM
Siemens RUGGEDCOM ROS - Heap-based Buffer Overflow in Memory Allocation
Mar 08, 2022
CVSS 5.9
EPSS 0.01
CVE-2021-42017 MEDIUM
Siemens RUGGEDCOM ROS - Improper Certificate Validation via CBC Encryption Mode
Mar 08, 2022
CVSS 5.9
EPSS 0.00
CVE-2021-42016 HIGH
Siemens RUGGEDCOM ROS - Observable Timing Discrepancy in Third-Party Component
Mar 08, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-41543 MEDIUM
Climatix POL909 Firmware < 11.36 (AWM) and < 11.44 (AWB) - Authenticated Information Disclosure via Log File Handling
Mar 08, 2022
CVSS 6.5
EPSS 0.01
CVE-2021-41542 MEDIUM
Climatix POL909 Firmware < 11.36 (AWM) and < 11.44 (AWB) - Stored Cross-Site Scripting in User Management Page
Mar 08, 2022
CVSS 6.1
EPSS 0.01
CVE-2021-41541 MEDIUM
Climatix POL909 Firmware < 11.44 - Cross-Site Scripting in Group Management Page
Mar 08, 2022
CVSS 6.1
EPSS 0.01
CVE-2021-37209 MEDIUM
Siemens RUGGEDCOM ROS - Inadequate Encryption Strength in SSH Server
Mar 08, 2022
CVSS 6.7
EPSS 0.00
CVE-2021-37208 CRITICAL
RUGGEDCOM ROS - Cross-Site Scripting in Web Server Configuration Page
Mar 08, 2022
CVSS 9.6
EPSS 0.01
CVE-2021-46699 HIGH
Simcenter Femap <V2022.1.1 - Buffer Overflow
Feb 22, 2022
CVSS 7.8
EPSS 0.01
CVE-2021-46162 HIGH
Simcenter Femap < V2022.1.1 - Code Injection
Feb 22, 2022
CVSS 7.8
EPSS 0.01
CVE-2021-46161 HIGH
Simcenter Femap V2020.2-V2021.1 - Code Injection
Feb 09, 2022
CVSS 7.8
EPSS 0.01
CVE-2021-46160 HIGH
Simcenter Femap V2020.2-V2021.1 - RCE
Feb 09, 2022
CVSS 7.8
EPSS 0.01
CVE-2021-46159 HIGH
Simcenter Femap V2020.2-V2021.1 - Code Injection
Feb 09, 2022
CVSS 7.8
EPSS 0.01