siemens

2,373 tracked vulnerabilities.

CVE-2021-40357 MEDIUM
Teamcenter Active Workspace < 4.3.10 - Path Traversal
Sep 14, 2021
CVSS 4.9
EPSS 0.01
CVE-2021-40356 HIGH
Teamcenter 12.4-13.2 - XML External Entity File Disclosure
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-40355 HIGH
Teamcenter 12.4-13.2 - Insecure Direct Object Reference
Sep 14, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-40354 HIGH
Teamcenter Visualization < 12.4.0.8 - Improper Privilege Management via Surrogate Functionality
Sep 14, 2021
CVSS 7.1
EPSS 0.01
CVE-2021-37206 HIGH
SIPROTEC 5 < 8.80 - Unauthenticated DoS via Malformed Ethernet Packets
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-37203 HIGH
Siemens NX 1980 Series < V1984 and Solid Edge < SE2021MP8 - Out-of-bounds Read in plmxmlAdapterIFC.dll
Sep 14, 2021
CVSS 7.1
EPSS 0.01
CVE-2021-37202 HIGH
Siemens NX 1980 Series < V1984 and Solid Edge < SE2021MP8 - Use-After-Free in IFC Adapter
Sep 14, 2021
CVSS 7.8
EPSS 0.01
CVE-2021-37201 HIGH
SINEC NMS < 1.0 SP1 - Cross-Site Request Forgery
Sep 14, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-37200 HIGH
SINEC NMS < 1.0 SP1 - Path Traversal via Crafted HTTP Request
Sep 14, 2021
CVSS 7.7
EPSS 0.37
CVE-2021-37193 MEDIUM
SINEMA Remote Connect Server <V3.0 SP2 - Auth Bypass
Sep 14, 2021
CVSS 4.3
EPSS 0.00
CVE-2021-37192 MEDIUM
SINEMA Remote Connect Server < V3.0 SP2 - Unauthorized Exposure of Managed Network Devices
Sep 14, 2021
CVSS 4.3
EPSS 0.00
CVE-2021-37191 MEDIUM
SINEMA Remote Connect Server <V3.0 SP2 - Info Disclosure
Sep 14, 2021
CVSS 4.3
EPSS 0.00
CVE-2021-37190 MEDIUM
SINEMA Remote Connect Server < 3.0 SP2 - Unauthorized VPN Connection Information Disclosure
Sep 14, 2021
CVSS 4.3
EPSS 0.00
CVE-2021-37186 MEDIUM
Siemens LOGO! CMR2020/CMR2040 < 2.2 & SIMATIC RTU3010C/RTU3030C/RTU3031C/RTU3041C < 4.0.9 - Predictable TCP ISN
Sep 14, 2021
CVSS 5.4
EPSS 0.00
CVE-2021-37184 CRITICAL
Industrial Edge Management < 1.3 - Unauthenticated Password Change via User Impersonation
Sep 14, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-37183 MEDIUM
SINEMA Remote Connect Server < 3.0 SP2 - Unauthenticated Denial of Service via Send-to-Sleep Notifications
Sep 14, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-37181 CRITICAL
Siemens Cerberus DMS and Desigo CC - Unauthenticated Remote Code Execution via Untrusted Data Deserialization
Sep 14, 2021
CVSS 10.0
EPSS 0.02
CVE-2021-37177 MEDIUM
SINEMA Remote Connect Server <V3.0 SP2 - Info Disclosure
Sep 14, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-37176 LOW
Simcenter Femap V2020.2 and V2021.1 - Out-of-bounds Read in modfem File Parser
Sep 14, 2021
CVSS 3.3
EPSS 0.01
CVE-2021-37175 MEDIUM
Siemens RUGGEDCOM ROX Firmware < 2.14.1 - Unauthenticated Directory Traversal
Sep 14, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-37174 HIGH
Siemens RUGGEDCOM ROX Firmware < 2.14.1 - Privilege Escalation to Root
Sep 14, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-37173 HIGH
Siemens RUGGEDCOM ROX Firmware < 2.14.1 - Privilege Escalation via File Operation Restrictions
Sep 14, 2021
CVSS 8.8
EPSS 0.02
CVE-2021-33737 HIGH
SIMATIC CP 343-1 and CP 443-1 - Denial of Service via Crafted Packet to Port 102/tcp
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-33720 HIGH
SIPROTEC 5 with CPU variants CP050, CP100, CP300 < 8.80 - Denial of Service via Crafted Packets to Port 4443
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-33719 CRITICAL
SIPROTEC 5 - DoS/Remote Code Execution
Sep 14, 2021
CVSS 9.8
EPSS 0.02