Vulnerabilities > Siemens

DATE CVE VULNERABILITY TITLE RISK
2022-10-07 CVE-2022-37886 Classic Buffer Overflow vulnerability in multiple products
There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211).
network
low complexity
arubanetworks siemens CWE-120
critical
9.8
2022-10-07 CVE-2022-37887 Classic Buffer Overflow vulnerability in multiple products
There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211).
network
low complexity
arubanetworks siemens CWE-120
critical
9.8
2022-10-07 CVE-2022-37889 Classic Buffer Overflow vulnerability in multiple products
There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211).
network
low complexity
arubanetworks siemens CWE-120
critical
9.8
2022-10-07 CVE-2022-37890 Classic Buffer Overflow vulnerability in multiple products
Unauthenticated buffer overflow vulnerabilities exist within the Aruba InstantOS and ArubaOS 10 web management interface.
network
low complexity
arubanetworks siemens CWE-120
critical
9.8
2022-10-07 CVE-2022-37891 Classic Buffer Overflow vulnerability in multiple products
Unauthenticated buffer overflow vulnerabilities exist within the Aruba InstantOS and ArubaOS 10 web management interface.
network
low complexity
arubanetworks siemens CWE-120
critical
9.8
2022-10-07 CVE-2022-37892 Cross-site Scripting vulnerability in multiple products
A vulnerability in the Aruba InstantOS and ArubaOS 10 web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface.
network
low complexity
arubanetworks siemens CWE-79
5.4
2022-10-06 CVE-2022-37888 Classic Buffer Overflow vulnerability in multiple products
There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211).
network
low complexity
arubanetworks siemens CWE-120
critical
9.8
2022-09-13 CVE-2022-38466 Incorrect Default Permissions vulnerability in Siemens Coreshield One-Way Gateway
A vulnerability has been identified in CoreShield One-Way Gateway (OWG) Software (All versions < V2.2).
local
low complexity
siemens CWE-276
7.8
2022-09-13 CVE-2022-39137 Unspecified vulnerability in Siemens Parasolid and Simcenter Femap
A vulnerability has been identified in Parasolid V33.1 (All versions < V33.1.262), Parasolid V34.0 (All versions < V34.0.252), Parasolid V34.1 (All versions < V34.1.242), Parasolid V35.0 (All versions < V35.0.161), Simcenter Femap V2022.1 (All versions < V2022.1.3), Simcenter Femap V2022.2 (All versions < V2022.2.2).
local
low complexity
siemens
7.8
2022-09-13 CVE-2022-39138 Unspecified vulnerability in Siemens Parasolid and Simcenter Femap
A vulnerability has been identified in Parasolid V33.1 (All versions < V33.1.262), Parasolid V34.0 (All versions < V34.0.252), Parasolid V34.1 (All versions < V34.1.242), Parasolid V35.0 (All versions < V35.0.161), Simcenter Femap V2022.1 (All versions < V2022.1.3), Simcenter Femap V2022.2 (All versions < V2022.2.2).
local
low complexity
siemens
7.8