Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / siemens

siemens

2,341 tracked vulnerabilities.

CVE-2019-18289 CRITICAL

SPPA-T3000 MS3000 Migration Server - Denial of Service and Remote Code Execution via Crafted Packets to Port 5010/tcp

CVE-2019-18288 HIGH

SPPA-T3000 Application Server < R8.2 SP2 - Authenticated Remote Code Execution via Unsecured File Upload

CVE-2019-18287 MEDIUM

SPPA-T3000 Application Server < R8.2 SP2 - Unauthenticated Sensitive Information Exposure via Directory Listing

CVE-2019-18286 MEDIUM

SPPA-T3000 Application Server < R8.2 SP2 - Unauthenticated Sensitive Information Exposure via Directory Listing

CVE-2019-18285 MEDIUM

SPPA-T3000 Application Server < R8.2 SP2 - Cleartext Transmission of Sensitive Information via RMI Communication

CVE-2019-18284 CRITICAL

SPPA-T3000 Application Server < R8.2 SP2 - Unauthenticated Password Hash Exposure and Password Change via AdminService

CVE-2019-18283 CRITICAL

SPPA-T3000 Application Server < R8.2 SP2 - Unauthenticated Remote Code Execution via AdminService Deserialization

CVE-2019-13947 MEDIUM

Control Center Server < V1.5.0 - Info Disclosure

CVE-2019-13944 MEDIUM

Siemens EN100 Ethernet Module - Unauthenticated Path Traversal via Web Server

CVE-2019-13943 MEDIUM

Siemens EN100 Ethernet Module - Unauthenticated Stored Cross-Site Scripting

CVE-2019-13942 HIGH

Siemens EN100 Ethernet Module - Denial of Service via Webserver Buffer Overflow

CVE-2019-13932 CRITICAL

Siemens XHQ < 6.0.0.2 - Unauthenticated Script Import and Malicious Link Generation

CVE-2019-13931 MEDIUM

Siemens XHQ < 6.0.0.2 - Authenticated Cross-Site Scripting

CVE-2019-13930 HIGH

Siemens XHQ < 6.0.0.2 - Authenticated Cross-Site Request Forgery

CVE-2019-13945 MEDIUM

SIMATIC S7-1200 and S7-200 SMART CPU Families - Unauthenticated Exposed Dangerous Method via UART Interface

CVE-2019-13927 MEDIUM

Siemens Desigo PX Automation Controllers - Denial of Service via Crafted HTTP Message

CVE-2019-19646 CRITICAL

SQLite < 3.30.1 - Denial of Service via Integrity Check PRAGMA with Generated Columns

CVE-2019-19603 HIGH

SQLite 3.30.1 - Denial of Service via SELECT with Nonexistent VIEW

CVE-2019-19645 MEDIUM

SQLite < 3.30.1 - Denial of Service via Infinite Recursion in ALTER TABLE

CVE-2019-19317 CRITICAL

SQLite 3.30.1 - Denial of Service via Generated Column Bitmask Handling

CVE-2019-19242 MEDIUM

SQLite 3.30.1 - NULL Pointer Dereference in expr.c

CVE-2019-13936 LOW

Siemens Polarion < 19.2 - Stored Cross-Site Scripting in Webclient

CVE-2019-13935 LOW

Siemens Polarion < 19.2 - Reflected Cross-Site Scripting in Webclient

CVE-2019-13934 LOW

Siemens Polarion < 19.2 - Reflected Cross-Site Scripting in Webclient

CVE-2019-19244 HIGH

SQLite 3.30.1 - Denial of Service via DISTINCT and Window Function Sub-Select

Previous Page 75 of 94 Next

Products

teamcenter_visualization 188 jt2go 166 tecnomatix_plant_simulation 85 simcenter_femap 77 telecontrol_server_basic 77 sinema_remote_connect_server 71 sinec_infrastructure_network_services 68 scalance_w1750d_firmware 62 parasolid 52 solid_edge 47 wincc 43 sinec_nms 42 sinec_ins 38 solid_edge_se2023 36 sppa-t3000_ms3000_migration_server 35 jt_utilities 32 comos 31 simatic_wincc 30 jt_open_toolkit 29 scalance_lpe9403_firmware 27 nucleus_net 25 nucleus_source_code 25 simatic_pcs7 25 simatic_pcs_7 25 scalance_s615_firmware 24 simatic_ipc427e_firmware 24 simatic_ipc477e_firmware 24 simatic_itp1000_firmware 24 simatic_pcs_neo 24 ruggedcom_rox_mx5000_firmware 23

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy