Vulnerabilities > Siemens

DATE CVE VULNERABILITY TITLE RISK
2023-07-11 CVE-2023-37374 Out-of-bounds Write vulnerability in Siemens Tecnomatix 2201/2302
A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < V2201.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0002).
local
low complexity
siemens CWE-787
7.8
2023-07-11 CVE-2023-37375 Out-of-bounds Write vulnerability in Siemens Tecnomatix 2201/2302
A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < V2201.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0002).
local
low complexity
siemens CWE-787
7.8
2023-07-11 CVE-2023-37376 Type Confusion vulnerability in Siemens Tecnomatix 2201/2302
A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < V2201.0008), Tecnomatix Plant Simulation V2302 (All versions < V2302.0002).
local
low complexity
siemens CWE-843
7.8
2023-06-13 CVE-2023-25910 Code Injection vulnerability in Siemens Simatic PCS 7, Simatic S7-Pm and Simatic Step 7
A vulnerability has been identified in SIMATIC PCS 7 (All versions < V9.1 SP2 UC04), SIMATIC S7-PM (All versions < V5.7 SP1 HF1), SIMATIC S7-PM (All versions < V5.7 SP2 HF1), SIMATIC STEP 7 V5 (All versions < V5.7).
network
low complexity
siemens CWE-94
8.8
2023-06-13 CVE-2023-27465 Information Exposure vulnerability in Siemens products
A vulnerability has been identified in SIMOTION C240 (All versions >= V5.4 < V5.5 SP1), SIMOTION C240 PN (All versions >= V5.4 < V5.5 SP1), SIMOTION D410-2 DP (All versions >= V5.4 < V5.5 SP1), SIMOTION D410-2 DP/PN (All versions >= V5.4 < V5.5 SP1), SIMOTION D425-2 DP (All versions >= V5.4 < V5.5 SP1), SIMOTION D425-2 DP/PN (All versions >= V5.4 < V5.5 SP1), SIMOTION D435-2 DP (All versions >= V5.4 < V5.5 SP1), SIMOTION D435-2 DP/PN (All versions >= V5.4 < V5.5 SP1), SIMOTION D445-2 DP/PN (All versions >= V5.4), SIMOTION D445-2 DP/PN (All versions >= V5.4 < V5.5 SP1), SIMOTION D455-2 DP/PN (All versions >= V5.4 < V5.5 SP1), SIMOTION P320-4 E (All versions >= V5.4), SIMOTION P320-4 S (All versions >= V5.4).
low complexity
siemens CWE-200
4.6
2023-06-13 CVE-2023-28829 Unspecified vulnerability in Siemens products
A vulnerability has been identified in SIMATIC NET PC Software V14 (All versions), SIMATIC NET PC Software V15 (All versions), SIMATIC PCS 7 V8.2 (All versions), SIMATIC PCS 7 V9.0 (All versions), SIMATIC PCS 7 V9.1 (All versions), SIMATIC WinCC (All versions < V8.0), SINAUT Software ST7sc (All versions).
network
low complexity
siemens
8.8
2023-06-13 CVE-2023-30757 Unspecified vulnerability in Siemens Totally Integrated Automation Portal
A vulnerability has been identified in Totally Integrated Automation Portal (TIA Portal) V14 (All versions), Totally Integrated Automation Portal (TIA Portal) V15 (All versions), Totally Integrated Automation Portal (TIA Portal) V15.1 (All versions), Totally Integrated Automation Portal (TIA Portal) V16 (All versions), Totally Integrated Automation Portal (TIA Portal) V17 (All versions), Totally Integrated Automation Portal (TIA Portal) V18 (All versions), Totally Integrated Automation Portal (TIA Portal) V19 (All versions), Totally Integrated Automation Portal (TIA Portal) V20 (All versions).
local
low complexity
siemens
5.5
2023-06-13 CVE-2023-30897 Incorrect Permission Assignment for Critical Resource vulnerability in Siemens Wincc
A vulnerability has been identified in SIMATIC WinCC (All versions < V7.5.2.13).
local
low complexity
siemens CWE-732
7.8
2023-06-13 CVE-2023-30901 Cross-Site Request Forgery (CSRF) vulnerability in Siemens Q200 Firmware
A vulnerability has been identified in POWER METER SICAM Q100 (All versions < V2.60), POWER METER SICAM Q100 (All versions < V2.60), POWER METER SICAM Q100 (All versions < V2.60), POWER METER SICAM Q100 (All versions < V2.60).
network
low complexity
siemens CWE-352
8.8
2023-06-13 CVE-2023-31238 Incorrect Permission Assignment for Critical Resource vulnerability in Siemens Q200 Firmware
A vulnerability has been identified in POWER METER SICAM Q100 (All versions < V2.60), POWER METER SICAM Q100 (All versions < V2.60), POWER METER SICAM Q100 (All versions < V2.60), POWER METER SICAM Q100 (All versions < V2.60).
network
high complexity
siemens CWE-732
4.8