Vulnerabilities > Siemens > Critical

DATE CVE VULNERABILITY TITLE RISK
2019-12-12 CVE-2019-18295 Out-of-bounds Write vulnerability in Siemens Sppa-T3000 Ms3000 Migration Server
A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions).
network
low complexity
siemens CWE-787
critical
 9.8
9.8
2019-12-12 CVE-2019-18293 Out-of-bounds Write vulnerability in Siemens Sppa-T3000 Ms3000 Migration Server
A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions).
network
low complexity
siemens CWE-787
critical
 9.8
9.8
2019-12-12 CVE-2019-18289 Out-of-bounds Write vulnerability in Siemens Sppa-T3000 Ms3000 Migration Server
A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions).
network
low complexity
siemens CWE-787
critical
 9.8
9.8
2019-12-12 CVE-2019-18284 Missing Authentication for Critical Function vulnerability in Siemens Sppa-T3000 Application Server R8.2
A vulnerability has been identified in SPPA-T3000 Application Server (All versions < Service Pack R8.2 SP2).
network
low complexity
siemens CWE-306
critical
 9.8
9.8
2019-12-12 CVE-2019-18283 Deserialization of Untrusted Data vulnerability in Siemens Sppa-T3000 Application Server R8.2
A vulnerability has been identified in SPPA-T3000 Application Server (All versions < Service Pack R8.2 SP2).
network
low complexity
siemens CWE-502
critical
 9.8
9.8
2019-12-12 CVE-2019-13932 Improper Input Validation vulnerability in Siemens XHQ 6.0.0.0
A vulnerability has been identified in XHQ (All versions < V6.0.0.2).
network
low complexity
siemens CWE-20
critical
 9.1
9.1
2019-12-09 CVE-2019-19646 Improper Check for Unusual or Exceptional Conditions vulnerability in multiple products
pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns.
network
low complexity
sqlite siemens tenable oracle netapp CWE-754
critical
 9.8
9.8
2019-12-05 CVE-2019-19317 Incorrect Conversion between Numeric Types vulnerability in multiple products
lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service or possibly have unspecified other impact.
network
low complexity
sqlite netapp oracle siemens CWE-681
critical
 9.8
9.8
2019-09-13 CVE-2019-13923 Cross-site Scripting vulnerability in Siemens Ie/Wsn-Pa Link Wirelesshart Gateway Firmware
A vulnerability has been identified in IE/WSN-PA Link WirelessHART Gateway (All versions).
network
low complexity
siemens CWE-79
critical
 9.6
9.6
2019-09-13 CVE-2019-13918 Weak Password Requirements vulnerability in Siemens Sinema Remote Connect Server 2.0
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0 SP1).
network
low complexity
siemens CWE-521
critical
 9.8
9.8