Vulnerabilities > Siemens

DATE CVE VULNERABILITY TITLE RISK
2022-12-13 CVE-2022-46353 Use of Insufficiently Random Values vulnerability in Siemens products
A vulnerability has been identified in SCALANCE X204RNA (HSR) (All versions < V3.2.7), SCALANCE X204RNA (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (HSR) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP/HSR) (All versions < V3.2.7).
network
low complexity
siemens CWE-330
critical
9.8
2022-12-13 CVE-2022-46354 Unspecified vulnerability in Siemens products
A vulnerability has been identified in SCALANCE X204RNA (HSR) (All versions < V3.2.7), SCALANCE X204RNA (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (HSR) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP/HSR) (All versions < V3.2.7).
network
low complexity
siemens
5.3
2022-12-13 CVE-2022-46355 Information Exposure vulnerability in Siemens products
A vulnerability has been identified in SCALANCE X204RNA (HSR) (All versions < V3.2.7), SCALANCE X204RNA (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (HSR) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP/HSR) (All versions < V3.2.7).
network
low complexity
siemens CWE-200
7.5
2022-12-13 CVE-2022-46664 Unspecified vulnerability in Siemens Mendix Workflow Commons
A vulnerability has been identified in Mendix Workflow Commons (All versions < V2.4.0), Mendix Workflow Commons V2.1 (All versions < V2.1.4), Mendix Workflow Commons V2.3 (All versions < V2.3.2).
network
low complexity
siemens
8.1
2022-12-05 CVE-2022-35255 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability in multiple products
A weak randomness in WebCrypto keygen vulnerability exists in Node.js 18 due to a change with EntropySource() in SecretKeyGenTraits::DoKeyGen() in src/crypto/crypto_keygen.cc.
network
low complexity
nodejs siemens debian CWE-338
critical
9.1
2022-12-05 CVE-2022-35256 HTTP Request Smuggling vulnerability in multiple products
The llhttp parser in the http module in Node v18.7.0 does not correctly handle header fields that are not terminated with CLRF.
network
low complexity
nodejs llhttp siemens debian CWE-444
6.5
2022-11-17 CVE-2022-42732 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Siemens Syngo Dynamics Cardiovascular Imaging and Information System
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01).
network
low complexity
siemens CWE-610
7.5
2022-11-17 CVE-2022-42733 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Siemens Syngo Dynamics Cardiovascular Imaging and Information System
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01).
network
low complexity
siemens CWE-610
7.5
2022-11-17 CVE-2022-42734 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Siemens Syngo Dynamics Cardiovascular Imaging and Information System
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01).
network
low complexity
siemens CWE-610
7.5
2022-11-17 CVE-2022-42891 Externally Controlled Reference to a Resource in Another Sphere vulnerability in Siemens Syngo Dynamics Cardiovascular Imaging and Information System
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01).
network
low complexity
siemens CWE-610
7.5