Vulnerabilities > Siemens
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-11-11 | CVE-2002-20001 | Resource Exhaustion vulnerability in multiple products The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)at or D(HE)ater attack. | 7.5 |
| 2021-11-09 | CVE-2020-10052 | Information Exposure Through Log Files vulnerability in Siemens Simatic Rtls Locating Manager 2.10/2.10.2/2.9.3 A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.12). | 2.1 |
| 2021-11-09 | CVE-2020-10053 | Cleartext Storage of Sensitive Information vulnerability in Siemens Simatic Rtls Locating Manager 2.10/2.10.2/2.9.3 A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.12). | 2.1 |
| 2021-11-09 | CVE-2020-10054 | Unspecified vulnerability in Siemens Simatic Rtls Locating Manager 2.10/2.10.2/2.9.3 A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.12). | 2.1 |
| 2021-11-09 | CVE-2021-31344 | Type Confusion vulnerability in Siemens products A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), PLUSCONTROL 1st Gen (All versions), SIMOTICS CONNECT 400 (All versions < V0.5.0.0), SIMOTICS CONNECT 400 (All versions < V1.0.0.0). | 5.3 |
| 2021-11-09 | CVE-2021-31345 | Improper Validation of Specified Quantity in Input vulnerability in Siemens products A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), PLUSCONTROL 1st Gen (All versions). | 9.1 |
| 2021-11-09 | CVE-2021-31346 | Improper Validation of Specified Quantity in Input vulnerability in Siemens products A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303), PLUSCONTROL 1st Gen (All versions), SIMOTICS CONNECT 400 (All versions < V0.5.0.0), SIMOTICS CONNECT 400 (All versions < V1.0.0.0). | 9.1 |
| 2021-11-09 | CVE-2021-31881 | Out-of-bounds Read vulnerability in Siemens products A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303). | 7.5 |
| 2021-11-09 | CVE-2021-31882 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Siemens products A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303). | 7.5 |
| 2021-11-09 | CVE-2021-31883 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Siemens products A vulnerability has been identified in Capital Embedded AR Classic 431-422 (All versions), Capital Embedded AR Classic R20-11 (All versions < V2303). | 7.5 |