Vulnerabilities > Siemens

DATE CVE VULNERABILITY TITLE RISK
2020-07-14 CVE-2020-7584 Resource Exhaustion vulnerability in Siemens products
A vulnerability has been identified in SIMATIC S7-200 SMART CPU family (All versions >= V2.2 < V2.5.1).
network
low complexity
siemens CWE-400
5.0
2020-07-14 CVE-2020-7581 Unquoted Search Path or Element vulnerability in Siemens products
A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2), Opcenter Execution Foundation (All versions < V3.2), Opcenter Execution Process (All versions < V3.2), Opcenter Intelligence (All versions < V3.3), Opcenter Quality (All versions < V11.3), Opcenter RD&L (V8.0), SIMATIC Notifier Server for Windows (All versions), SIMATIC PCS neo (All versions < V3.0 SP1), SIMATIC STEP 7 (TIA Portal) V15 (All versions < V15.1 Update 5), SIMATIC STEP 7 (TIA Portal) V16 (All versions < V16 Update 2), SIMOCODE ES V15.1 (All versions < V15.1 Update 4), SIMOCODE ES V16 (All versions < V16 Update 1), Soft Starter ES V15.1 (All versions < V15.1 Update 3), Soft Starter ES V16 (All versions < V16 Update 1).
local
low complexity
siemens CWE-428
6.7
2020-07-14 CVE-2020-7578 Improper Privilege Management vulnerability in Siemens Opcenter Execution Core
A vulnerability has been identified in Camstar Enterprise Platform (All versions), Opcenter Execution Core (All versions < V8.2).
network
low complexity
siemens CWE-269
5.5
2020-07-14 CVE-2020-7577 SQL Injection vulnerability in Siemens Opcenter Execution Core
A vulnerability has been identified in Camstar Enterprise Platform (All versions), Opcenter Execution Core (All versions < V8.2).
network
low complexity
siemens CWE-89
5.5
2020-07-14 CVE-2020-7576 Cross-site Scripting vulnerability in Siemens Opcenter Execution Core
A vulnerability has been identified in Camstar Enterprise Platform (All versions), Opcenter Execution Core (All versions < V8.2), Opcenter Execution Core (V8.2).
network
low complexity
siemens CWE-79
5.4
2020-07-14 CVE-2020-10045 Authentication Bypass by Capture-replay vulnerability in Siemens products
A vulnerability has been identified in SICAM MMU (All versions < V2.05), SICAM SGU (All versions), SICAM T (All versions < V2.18).
network
siemens CWE-294
6.8
2020-07-14 CVE-2020-10044 Missing Authentication for Critical Function vulnerability in Siemens products
A vulnerability has been identified in SICAM MMU (All versions < V2.05), SICAM SGU (All versions), SICAM T (All versions < V2.18).
network
low complexity
siemens CWE-306
5.0
2020-07-14 CVE-2020-10043 Cross-site Scripting vulnerability in Siemens products
A vulnerability has been identified in SICAM MMU (All versions < V2.05), SICAM SGU (All versions), SICAM T (All versions < V2.18).
network
siemens CWE-79
4.3
2020-07-14 CVE-2020-10042 Classic Buffer Overflow vulnerability in Siemens products
A vulnerability has been identified in SICAM MMU (All versions < V2.05), SICAM SGU (All versions), SICAM T (All versions < V2.18).
network
low complexity
siemens CWE-120
7.5
2020-07-14 CVE-2020-10041 Cross-site Scripting vulnerability in Siemens products
A vulnerability has been identified in SICAM MMU (All versions < V2.05), SICAM SGU (All versions), SICAM T (All versions < V2.18).
network
siemens CWE-79
4.3