Vulnerabilities > Siemens

DATE	CVE	VULNERABILITY TITLE	RISK
2020-12-14	CVE-2020-8177	Injection vulnerability in multiple products curl 7.20.0 through 7.70.0 is vulnerable to improper restriction of names for files and other resources that can lead too overwriting a local file when the -J flag is used. local low complexity haxx debian fujitsu siemens splunk CWE-74	7.8
2020-12-14	CVE-2020-8169	Information Exposure vulnerability in multiple products curl 7.62.0 through 7.70.0 is vulnerable to an information disclosure vulnerability that can lead to a partial password being leaked over the network and to the DNS server(s). network low complexity haxx siemens debian splunk CWE-200	7.5
2020-12-11	CVE-2020-17437	Out-of-bounds Write vulnerability in multiple products An issue was discovered in uIP 1.0, as used in Contiki 3.0 and other products. network low complexity uip-project open-iscsi-project siemens CWE-787	8.2
2020-12-11	CVE-2020-13987	Out-of-bounds Read vulnerability in multiple products An issue was discovered in Contiki through 3.0. network low complexity uip-project open-iscsi-project siemens CWE-125	7.5
2020-12-11	CVE-2020-7793	The package ua-parser-js before 0.7.23 are vulnerable to Regular Expression Denial of Service (ReDoS) in multiple regexes (see linked commit for more info). network low complexity ua-parser-js-project siemens	7.5
2020-12-08	CVE-2020-1971	NULL Pointer Dereference vulnerability in multiple products The X.509 GeneralName type is a generic type for representing different types of names. network high complexity openssl debian fedoraproject oracle netapp tenable siemens nodejs CWE-476	5.9
2020-11-17	CVE-2020-7774	The package y18n before 3.2.2, 4.0.1 and 5.0.5, is vulnerable to Prototype Pollution. network low complexity y18n-project oracle siemens critical	9.8
2020-11-12	CVE-2020-15783	Unspecified vulnerability in Siemens products A vulnerability has been identified in SIMATIC S7-300 CPU family (incl. network low complexity siemens	7.5
2020-11-12	CVE-2020-8745	Insufficient control flow management in subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25 , Intel(R) TXE versions before 3.1.80 and 4.0.30 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. low complexity intel siemens	6.8
2020-11-12	CVE-2020-8744	Improper Initialization vulnerability in multiple products Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TXE versions before 4.0.30 Intel(R) SPS versions before E3_05.01.04.200 may allow a privileged user to potentially enable escalation of privilege via local access. local low complexity intel siemens CWE-665	7.8

Vulnerabilities > Siemens {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Siemens"}]}

Vulnerabilities > Siemens