siemens

2,373 tracked vulnerabilities.

CVE-2020-26980 HIGH
Siemens JT2Go and Teamcenter Visualization < 13.1.0 - Remote Code Execution via JT File Parsing
Jan 12, 2021
CVSS 8.8
EPSS 0.03
CVE-2020-25226 CRITICAL
SCALANCE X-200 and X-200IRT Firmware < 5.5.0 - Denial of Service via Web Server Buffer Overflow
Jan 12, 2021
CVSS 9.8
EPSS 0.02
CVE-2020-15800 CRITICAL
SCALANCE X-200IRT/X-300 Switch Family < V5.5.0/V4.1.0 - Heap-based Buffer Overflow via Webserver Request
Jan 12, 2021
CVSS 9.8
EPSS 0.02
CVE-2020-15799 MEDIUM
SCALANCE X-200 and X-200IRT Switch Families < V5.5.0 - Unauthenticated Denial of Service via Web Server URL
Jan 12, 2021
CVSS 6.5
EPSS 0.01
CVE-2020-8287 MEDIUM
Node.js <10.23.1, 12.20.1, 14.15.4, 15.5.1 - SSRF
Jan 06, 2021
CVSS 6.5
EPSS 0.16
CVE-2020-8265 HIGH
Node.js <10.23.1, 12.20.1, 14.15.4, 15.5.1 - Use After Free
Jan 06, 2021
CVSS 8.1
EPSS 0.09
CVE-2020-28396 HIGH
SICAM A8000 CP-8000/8021/8022 Firmware < V16 - Use of Broken Cryptographic Algorithm via Web Server Misconfiguration
Dec 14, 2020
CVSS 7.3
EPSS 0.01
CVE-2020-25235 HIGH
LOGO! 8 BM Firmware <8.3 - Insufficiently Protected Credentials
Dec 14, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-25234 HIGH
Siemens LOGO! 8 BM Firmware < 8.3 - Use of Hard-coded Cryptographic Key
Dec 14, 2020
CVSS 7.7
EPSS 0.00
CVE-2020-25233 MEDIUM
LOGO! 8 BM Firmware < 8.3 - Use of Hard-coded Cryptographic Key
Dec 14, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-25232 HIGH
LOGO! 8 BM Firmware <8.3 - Key Extraction via Insecure Random Number Generation
Dec 14, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-25231 MEDIUM
LOGO! 8 BM and LOGO! Soft Comfort <8.3 - Use of Hard-coded Cryptographic Key
Dec 14, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-25230 HIGH
Siemens LOGO! 8 BM Firmware <8.3 - Encryption Key Extraction via Outdated Cipher Mode on Port 10005/tcp
Dec 14, 2020
CVSS 7.5
EPSS 0.00
CVE-2020-25229 HIGH
Siemens LOGO! 8 BM Firmware <8.3 - Replay Attack via Static Encryption Key
Dec 14, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-25228 CRITICAL
Siemens LOGO! 8 BM Firmware <8.3 - Unauthenticated Remote Code Execution via Port 10005
Dec 14, 2020
CVSS 9.8
EPSS 0.01
CVE-2020-15796 HIGH
SIMATIC ET 200SP Open Controller - DoS
Dec 14, 2020
CVSS 7.5
EPSS 0.02
CVE-2020-8286 HIGH
libcurl 7.41.0-7.73.0 - Improper Certificate Validation via OCSP Response
Dec 14, 2020
CVSS 7.5
EPSS 0.05
CVE-2020-8285 HIGH
libcurl 7.21.0-7.73.0 - Uncontrolled Recursion via FTP Wildcard Match Parsing
Dec 14, 2020
CVSS 7.5
EPSS 0.10
CVE-2020-8284 LOW
curl < 7.73.0 - Exposure of Sensitive Information via FTP PASV Response
Dec 14, 2020
CVSS 3.7
EPSS 0.04
CVE-2020-8231 HIGH
libcurl 7.29.0-7.71.1 - Use-After-Free via Dangling Pointer
Dec 14, 2020
CVSS 7.5
EPSS 0.04
CVE-2020-8177 HIGH
curl 7.20.0-7.70.0 - Arbitrary File Overwrite via -J Flag
Dec 14, 2020
CVSS 7.8
EPSS 0.01
CVE-2020-8169 HIGH
curl 7.62.0-7.70.0 - Information Disclosure via Password Leak
Dec 14, 2020
CVSS 7.5
EPSS 0.03
CVE-2020-17437 HIGH
uIP < 1.0 - Out-of-bounds Write via TCP Urgent Pointer Handling
Dec 11, 2020
CVSS 8.2
EPSS 0.03
CVE-2020-13987 HIGH
uip < 1.0 - Out-of-Bounds Read in IP Packet Checksum Calculation
Dec 11, 2020
CVSS 7.5
EPSS 0.03
CVE-2020-7793 HIGH
ua-parser-js < 0.7.23 - Regular Expression Denial of Service
Dec 11, 2020
CVSS 7.5
EPSS 0.04