Vulnerabilities > Siemens
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-12-10 | CVE-2024-54093 | Heap-based Buffer Overflow vulnerability in Siemens Solid Edge Se2024 224.0 A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 5). | 7.8 |
| 2024-12-10 | CVE-2024-54094 | Heap-based Buffer Overflow vulnerability in Siemens Solid Edge Se2024 224.0 A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 5). | 7.8 |
| 2024-12-10 | CVE-2024-54095 | Integer Underflow (Wrap or Wraparound) vulnerability in Siemens Solid Edge Se2024 224.0 A vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 10). | 7.8 |
| 2024-11-18 | CVE-2024-52572 | Out-of-bounds Write vulnerability in Siemens Tecnomatix Plant Simulation A vulnerability has been identified in Teamcenter Visualization V14.2 (All versions < V14.2.0.14), Teamcenter Visualization V14.3 (All versions < V14.3.0.12), Teamcenter Visualization V2312 (All versions < V2312.0008), Teamcenter Visualization V2406 (All versions < V2406.0005), Tecnomatix Plant Simulation V2302 (All versions < V2302.0018), Tecnomatix Plant Simulation V2404 (All versions < V2404.0007). | 7.8 |
| 2024-11-12 | CVE-2024-29119 | Unspecified vulnerability in Siemens Spectrum Power 7 2.20/2.30/23Q3 A vulnerability has been identified in Spectrum Power 7 (All versions < V24Q3). | 7.8 |
| 2024-11-12 | CVE-2024-36140 | Cross-site Scripting vulnerability in Siemens Ozw672 Firmware and Ozw772 Firmware A vulnerability has been identified in OZW672 (All versions < V5.2), OZW772 (All versions < V5.2). | 5.4 |
| 2024-11-12 | CVE-2024-44102 | Deserialization of Untrusted Data vulnerability in Siemens Telecontrol Server Basic 3.1 A vulnerability has been identified in PP TeleControl Server Basic 1000 to 5000 V3.1 (6NH9910-0AA31-0AE1) (All versions < V3.1.2.1 with redundancy configured), PP TeleControl Server Basic 256 to 1000 V3.1 (6NH9910-0AA31-0AD1) (All versions < V3.1.2.1 with redundancy configured), PP TeleControl Server Basic 32 to 64 V3.1 (6NH9910-0AA31-0AF1) (All versions < V3.1.2.1 with redundancy configured), PP TeleControl Server Basic 64 to 256 V3.1 (6NH9910-0AA31-0AC1) (All versions < V3.1.2.1 with redundancy configured), PP TeleControl Server Basic 8 to 32 V3.1 (6NH9910-0AA31-0AB1) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic 1000 V3.1 (6NH9910-0AA31-0AD0) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic 256 V3.1 (6NH9910-0AA31-0AC0) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic 32 V3.1 (6NH9910-0AA31-0AF0) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic 5000 V3.1 (6NH9910-0AA31-0AE0) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic 64 V3.1 (6NH9910-0AA31-0AB0) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic 8 V3.1 (6NH9910-0AA31-0AA0) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic Serv Upgr (6NH9910-0AA31-0GA1) (All versions < V3.1.2.1 with redundancy configured), TeleControl Server Basic Upgr V3.1 (6NH9910-0AA31-0GA0) (All versions < V3.1.2.1 with redundancy configured). | 10.0 |
| 2024-11-12 | CVE-2024-46888 | Path Traversal vulnerability in Siemens Sinec INS 1.0 A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 3). | 9.9 |
| 2024-11-12 | CVE-2024-46889 | Use of Hard-coded Cryptographic Key vulnerability in Siemens Sinec INS 1.0 A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 3). | 5.3 |
| 2024-11-12 | CVE-2024-46890 | OS Command Injection vulnerability in Siemens Sinec INS 1.0 A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 3). | 9.1 |