siemens

2,341 tracked vulnerabilities.

CVE-2021-46151 HIGH
Simcenter Femap V2020.2-V2021.1 - Code Injection
Feb 09, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-45106 MEDIUM
SICAM TOOLBOX II - Use of Hard-coded Credentials
Feb 09, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-44018 HIGH
Siemens JT2Go < 13.2.0.7 - Memory Corruption via Crafted PAR File Parsing
Feb 09, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-44016 HIGH
Siemens JT2Go < 13.2.0.7 - Memory Corruption via Crafted PAR File
Feb 09, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-44000 HIGH
Siemens JT2Go < 13.2.0.7 - Heap-based Buffer Overflow via PAR File Parsing
Feb 09, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-40363 HIGH
SIMATIC PCS 7, WinCC - Info Disclosure
Feb 09, 2022
CVSS 7.8
EPSS 0.00
CVE-2021-40360 HIGH
SIMATIC PCS 7 & WinCC - Info Disclosure
Feb 09, 2022
CVSS 8.8
EPSS 0.00
CVE-2021-37205 HIGH
SIMATIC Drive Controller, ET 200SP, S7-1200/1500 CPU - DoS via Port 102/tcp
Feb 09, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-37204 HIGH
SIMATIC Drive Controller family -<V2.9.2,ET 200SP Open Controller C...
Feb 09, 2022
CVSS 7.5
EPSS 0.02
CVE-2021-37194 HIGH
Siemens COMOS < V10.3.3.3, V10.4 < V10.4.1 - Unrestricted File Upload via Web Component
Feb 09, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-37185 HIGH
SIMATIC Drive Controller < 2.9.4 - Unauthenticated Denial of Service via Port 102/tcp
Feb 09, 2022
CVSS 7.5
EPSS 0.02
CVE-2021-42554 HIGH
Insyde InsydeH2O Kernel 5.0-5.5 - Out-of-bounds Write in FvbServicesRuntimeDxe
Feb 03, 2022
CVSS 8.2
EPSS 0.00
CVE-2021-42059 MEDIUM
Insyde InsydeH2O Kernel 5.0-5.4 - Out-of-bounds Write in UEFI DisplayTypeDxe DXE Driver
Feb 03, 2022
CVSS 6.7
EPSS 0.00
CVE-2021-41838 HIGH
InsydeH2O 5.1-5.5 - Unauthenticated Arbitrary Code Execution via SMM Callout
Feb 03, 2022
CVSS 8.2
EPSS 0.00
CVE-2021-41837 HIGH
Insyde InsydeH2O 5.0-5.5 - Untrusted Pointer Dereference in AhciBusDxe
Feb 03, 2022
CVSS 8.2
EPSS 0.00
CVE-2021-33627 HIGH
Insyde InsydeH2O Kernel <5.5 - Memory Corruption
Feb 03, 2022
CVSS 8.2
EPSS 0.00
CVE-2021-33625 HIGH
InsydeH2O Kernel 5.x - Use After Free
Feb 03, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-4160 MEDIUM
OpenSSL 1.0.2-1.0.2zb, 1.1.1-1.1.1l, 3.0.0 - Carry Propagation Bug in MIPS32/MIPS64 Squaring Procedure
Jan 28, 2022
CVSS 5.9
EPSS 0.00
CVE-2021-4034 HIGH KEV
Local Privilege Escalation in polkits pkexec
Jan 28, 2022
CVSS 7.8
EPSS 0.89
CVE-2021-45460 HIGH
SICAM PQ Analyzer Firmware < 3.18 - Unquoted Service Path Hijacking
Jan 11, 2022
CVSS 8.1
EPSS 0.00
CVE-2021-45034 HIGH
Siemens CP-8000 and CP-8021/8022 Master Modules < V16.20 - Unauthenticated Sensitive Data Exposure via Web Server
Jan 11, 2022
CVSS 7.5
EPSS 0.01
CVE-2021-45033 HIGH
Siemens CP-8000 and CP-8022 Master Modules < 16.20 - Hard-coded Credentials in Debug Port
Jan 11, 2022
CVSS 8.8
EPSS 0.00
CVE-2021-41769 HIGH
Siemens 6md85 Firmware < 8.83 - Improper Input Validation
Jan 11, 2022
CVSS 7.5
EPSS 0.00
CVE-2021-37198 HIGH
Siemens COMOS < 10.2, 10.3 < 10.3.3.3, 10.4 < 10.4.1 - Cross-Site Request Forgery in Web Component
Jan 11, 2022
CVSS 8.8
EPSS 0.00
CVE-2021-37197 HIGH
Siemens COMOS < 10.2, 10.3 < 10.3.3.3, 10.4 < 10.4.1 - SQL Injection in Web Component
Jan 11, 2022
CVSS 8.8
EPSS 0.00
Products
teamcenter_visualization 188 jt2go 166 tecnomatix_plant_simulation 85 simcenter_femap 77 telecontrol_server_basic 77 sinema_remote_connect_server 71 sinec_infrastructure_network_services 68 scalance_w1750d_firmware 62 parasolid 52 solid_edge 47 wincc 43 sinec_nms 42 sinec_ins 38 solid_edge_se2023 36 sppa-t3000_ms3000_migration_server 35 jt_utilities 32 comos 31 simatic_wincc 30 jt_open_toolkit 29 scalance_lpe9403_firmware 27 nucleus_net 25 nucleus_source_code 25 simatic_pcs7 25 simatic_pcs_7 25 scalance_s615_firmware 24 simatic_ipc427e_firmware 24 simatic_ipc477e_firmware 24 simatic_itp1000_firmware 24 simatic_pcs_neo 24 ruggedcom_rox_mx5000_firmware 23
Quick Filters
Critical CVEs With Exploits In CISA KEV