Vulnerabilities > Siemens

DATE CVE VULNERABILITY TITLE RISK
2021-10-12 CVE-2021-27395 Missing Authentication for Critical Function vulnerability in Siemens products
A vulnerability has been identified in SIMATIC Process Historian 2013 and earlier (All versions), SIMATIC Process Historian 2014 (All versions < SP3 Update 6), SIMATIC Process Historian 2019 (All versions), SIMATIC Process Historian 2020 (All versions).
network
low complexity
siemens CWE-306
5.5
2021-10-12 CVE-2021-33722 Path Traversal vulnerability in Siemens Sinec NMS 1.0
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1).
network
low complexity
siemens CWE-22
4.0
2021-10-12 CVE-2021-33723 Improper Authorization vulnerability in Siemens Sinec NMS 1.0
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1).
network
low complexity
siemens CWE-285
4.0
2021-10-12 CVE-2021-33724 Path Traversal vulnerability in Siemens Sinec NMS 1.0
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1).
network
low complexity
siemens CWE-22
5.0
2021-10-12 CVE-2021-33725 Path Traversal vulnerability in Siemens Sinec NMS 1.0
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1).
network
low complexity
siemens CWE-22
5.0
2021-10-12 CVE-2021-33726 Path Traversal vulnerability in Siemens Sinec NMS 1.0
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1).
network
low complexity
siemens CWE-22
5.0
2021-10-12 CVE-2021-33727 Information Exposure vulnerability in Siemens Sinec NMS 1.0
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1).
network
low complexity
siemens CWE-200
4.0
2021-10-12 CVE-2021-33728 Deserialization of Untrusted Data vulnerability in Siemens Sinec NMS 1.0
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1).
network
low complexity
siemens CWE-502
critical
9.0
2021-10-12 CVE-2021-33729 SQL Injection vulnerability in Siemens Sinec NMS 1.0
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1).
network
low complexity
siemens CWE-89
6.5
2021-10-12 CVE-2021-33730 SQL Injection vulnerability in Siemens Sinec NMS 1.0
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1).
network
low complexity
siemens CWE-89
6.5