Vulnerabilities > Siemens > Comos > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-11-14 CVE-2023-43505 Improper Access Control vulnerability in Siemens Comos
A vulnerability has been identified in COMOS (All versions).
network
low complexity
siemens CWE-284
6.5
2022-01-11 CVE-2021-37195 Cross-site Scripting vulnerability in Siemens Comos
A vulnerability has been identified in COMOS V10.2 (All versions only if web components are used), COMOS V10.3 (All versions < V10.3.3.3 only if web components are used), COMOS V10.4 (All versions < V10.4.1 only if web components are used).
network
low complexity
siemens CWE-79
6.1
2022-01-11 CVE-2021-37196 Path Traversal vulnerability in Siemens Comos
A vulnerability has been identified in COMOS V10.2 (All versions only if web components are used), COMOS V10.3 (All versions < V10.3.3.3 only if web components are used), COMOS V10.3 (All versions >= V10.3.3.3 only if web components are used), COMOS V10.4 (All versions < V10.4.1 only if web components are used).
network
low complexity
siemens CWE-22
6.5