Vulnerabilities > Siemens

DATE CVE VULNERABILITY TITLE RISK
2018-07-09 CVE-2018-11450 Cross-site Scripting vulnerability in Siemens Teamcenter Product Lifecycle Management 9.1.2.5
A reflected Cross-Site-Scripting (XSS) vulnerability has been identified in Siemens PLM Software TEAMCENTER (V9.1.2.5).
network
low complexity
siemens CWE-79
6.1
2018-07-09 CVE-2018-4858 Unspecified vulnerability in Siemens products
A vulnerability has been identified in IEC 61850 system configurator (All versions < V5.80), DIGSI 5 (affected as IEC 61850 system configurator is incorporated) (All versions < V7.80), DIGSI 4 (All versions < V4.93), SICAM PAS/PQS (All versions < V8.11), SICAM PQ Analyzer (All versions < V3.11), SICAM SCC (All versions < V9.02 HF3).
local
low complexity
siemens
7.8
2018-07-05 CVE-2017-11175 Cross-site Scripting vulnerability in Siemens FIN Stack 4.0
In J2 Innovations FIN Stack 4.0, the authentication webform is vulnerable to reflected XSS via the query string to /login.
network
low complexity
siemens CWE-79
6.1
2018-07-03 CVE-2018-4856 Unspecified vulnerability in Siemens Siclock Tc100 Firmware and Siclock Tc400 Firmware
A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions).
network
low complexity
siemens
4.9
2018-07-03 CVE-2018-4855 Missing Encryption of Sensitive Data vulnerability in Siemens Siclock Tc100 Firmware and Siclock Tc400 Firmware
A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions).
network
low complexity
siemens CWE-311
6.5
2018-07-03 CVE-2018-4854 Unspecified vulnerability in Siemens Siclock Tc100 Firmware and Siclock Tc400 Firmware
A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions).
network
low complexity
siemens
8.8
2018-07-03 CVE-2018-4853 Unspecified vulnerability in Siemens Siclock Tc100 Firmware and Siclock Tc400 Firmware
A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions).
network
low complexity
siemens
critical
9.8
2018-07-03 CVE-2018-4852 Improper Authentication vulnerability in Siemens Siclock Tc100 Firmware and Siclock Tc400 Firmware
A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions).
network
low complexity
siemens CWE-287
critical
9.8
2018-07-03 CVE-2018-4851 Improper Input Validation vulnerability in Siemens Siclock Tc100 Firmware and Siclock Tc400 Firmware
A vulnerability has been identified in SICLOCK TC100 (All versions) and SICLOCK TC400 (All versions).
network
low complexity
siemens CWE-20
8.2
2018-06-26 CVE-2018-4861 Information Exposure vulnerability in Siemens Scalance M875 Firmware
A vulnerability has been identified in SCALANCE M875 (All versions).
network
low complexity
siemens CWE-200
4.9