siemens

2,373 tracked vulnerabilities.

CVE-2019-18296 CRITICAL
SPPA-T3000 MS3000 Migration Server - Denial of Service and Remote Code Execution via Crafted Packets to Port 5010/tcp
Dec 12, 2019
CVSS 9.8
EPSS 0.05
CVE-2019-18295 CRITICAL
SPPA-T3000 MS3000 Migration Server - Denial of Service and Remote Code Execution via Crafted Packets to Port 5010/tcp
Dec 12, 2019
CVSS 9.8
EPSS 0.05
CVE-2019-18294 HIGH
SPPA-T3000 MS3000 Migration Server - Denial of Service via Crafted Packets to Port 5010/tcp
Dec 12, 2019
CVSS 7.5
EPSS 0.02
CVE-2019-18293 CRITICAL
SPPA-T3000 MS3000 Migration Server - Denial of Service and Remote Code Execution via Crafted Packets to Port 5010/tcp
Dec 12, 2019
CVSS 9.8
EPSS 0.05
CVE-2019-18292 HIGH
SPPA-T3000 MS3000 Migration Server - Denial of Service via Crafted Packets to Port 5010/tcp
Dec 12, 2019
CVSS 7.5
EPSS 0.03
CVE-2019-18291 HIGH
SPPA-T3000 MS3000 Migration Server - Denial of Service via Crafted Packets to Port 5010/tcp
Dec 12, 2019
CVSS 7.5
EPSS 0.02
CVE-2019-18290 HIGH
SPPA-T3000 MS3000 Migration Server - Denial of Service via Crafted Packets to Port 5010/tcp
Dec 12, 2019
CVSS 7.5
EPSS 0.02
CVE-2019-18289 CRITICAL
SPPA-T3000 MS3000 Migration Server - Denial of Service and Remote Code Execution via Crafted Packets to Port 5010/tcp
Dec 12, 2019
CVSS 9.8
EPSS 0.05
CVE-2019-18288 HIGH
SPPA-T3000 Application Server < R8.2 SP2 - Authenticated Remote Code Execution via Unsecured File Upload
Dec 12, 2019
CVSS 8.8
EPSS 0.04
CVE-2019-18287 MEDIUM
SPPA-T3000 Application Server < R8.2 SP2 - Unauthenticated Sensitive Information Exposure via Directory Listing
Dec 12, 2019
CVSS 5.3
EPSS 0.02
CVE-2019-18286 MEDIUM
SPPA-T3000 Application Server < R8.2 SP2 - Unauthenticated Sensitive Information Exposure via Directory Listing
Dec 12, 2019
CVSS 5.3
EPSS 0.02
CVE-2019-18285 MEDIUM
SPPA-T3000 Application Server < R8.2 SP2 - Cleartext Transmission of Sensitive Information via RMI Communication
Dec 12, 2019
CVSS 5.9
EPSS 0.01
CVE-2019-18284 CRITICAL
SPPA-T3000 Application Server < R8.2 SP2 - Unauthenticated Password Hash Exposure and Password Change via AdminService
Dec 12, 2019
CVSS 9.8
EPSS 0.02
CVE-2019-18283 CRITICAL
SPPA-T3000 Application Server < R8.2 SP2 - Unauthenticated Remote Code Execution via AdminService Deserialization
Dec 12, 2019
CVSS 9.8
EPSS 0.05
CVE-2019-13947 MEDIUM
Control Center Server < V1.5.0 - Info Disclosure
Dec 12, 2019
CVSS 4.9
EPSS 0.01
CVE-2019-13944 MEDIUM
Siemens EN100 Ethernet Module - Unauthenticated Path Traversal via Web Server
Dec 12, 2019
CVSS 5.3
EPSS 0.02
CVE-2019-13943 MEDIUM
Siemens EN100 Ethernet Module - Unauthenticated Stored Cross-Site Scripting
Dec 12, 2019
CVSS 6.1
EPSS 0.01
CVE-2019-13942 HIGH
Siemens EN100 Ethernet Module - Denial of Service via Webserver Buffer Overflow
Dec 12, 2019
CVSS 7.5
EPSS 0.02
CVE-2019-13932 CRITICAL
Siemens XHQ < 6.0.0.2 - Unauthenticated Script Import and Malicious Link Generation
Dec 12, 2019
CVSS 9.1
EPSS 0.01
CVE-2019-13931 MEDIUM
Siemens XHQ < 6.0.0.2 - Authenticated Cross-Site Scripting
Dec 12, 2019
CVSS 5.4
EPSS 0.01
CVE-2019-13930 HIGH
Siemens XHQ < 6.0.0.2 - Authenticated Cross-Site Request Forgery
Dec 12, 2019
CVSS 8.1
EPSS 0.00
CVE-2019-13945 MEDIUM
SIMATIC S7-1200 and S7-200 SMART CPU Families - Unauthenticated Exposed Dangerous Method via UART Interface
Dec 12, 2019
CVSS 6.8
EPSS 0.01
CVE-2019-13927 MEDIUM
Siemens Desigo PX Automation Controllers - Denial of Service via Crafted HTTP Message
Dec 12, 2019
CVSS 5.3
EPSS 0.02
CVE-2019-19646 CRITICAL
SQLite < 3.30.1 - Denial of Service via Integrity Check PRAGMA with Generated Columns
Dec 09, 2019
CVSS 9.8
EPSS 0.05
CVE-2019-19603 HIGH
SQLite 3.30.1 - Denial of Service via SELECT with Nonexistent VIEW
Dec 09, 2019
CVSS 7.5
EPSS 0.08