Vulnerabilities > Siemens > Critical

DATE CVE VULNERABILITY TITLE RISK
2022-12-13 CVE-2022-46353 Use of Insufficiently Random Values vulnerability in Siemens products
A vulnerability has been identified in SCALANCE X204RNA (HSR) (All versions < V3.2.7), SCALANCE X204RNA (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (HSR) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP/HSR) (All versions < V3.2.7).
network
low complexity
siemens CWE-330
critical
 9.8
9.8
2022-12-05 CVE-2022-35255 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) vulnerability in multiple products
A weak randomness in WebCrypto keygen vulnerability exists in Node.js 18 due to a change with EntropySource() in SecretKeyGenTraits::DoKeyGen() in src/crypto/crypto_keygen.cc.
network
low complexity
nodejs siemens debian CWE-338
critical
 9.1
9.1
2022-10-21 CVE-2022-43400 Improper Authentication vulnerability in Siemens Siveillance Video Mobile Server
A vulnerability has been identified in Siveillance Video Mobile Server V2022 R2 (All versions < V22.2a (80)).
network
low complexity
siemens CWE-287
critical
 9.8
9.8
2022-10-07 CVE-2022-37885 Classic Buffer Overflow vulnerability in multiple products
There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211).
network
low complexity
arubanetworks siemens CWE-120
critical
 9.8
9.8
2022-10-07 CVE-2022-37886 Classic Buffer Overflow vulnerability in multiple products
There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211).
network
low complexity
arubanetworks siemens CWE-120
critical
 9.8
9.8
2022-10-07 CVE-2022-37887 Classic Buffer Overflow vulnerability in multiple products
There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211).
network
low complexity
arubanetworks siemens CWE-120
critical
 9.8
9.8
2022-10-07 CVE-2022-37889 Classic Buffer Overflow vulnerability in multiple products
There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211).
network
low complexity
arubanetworks siemens CWE-120
critical
 9.8
9.8
2022-10-07 CVE-2022-37890 Classic Buffer Overflow vulnerability in multiple products
Unauthenticated buffer overflow vulnerabilities exist within the Aruba InstantOS and ArubaOS 10 web management interface.
network
low complexity
arubanetworks siemens CWE-120
critical
 9.8
9.8
2022-10-07 CVE-2022-37891 Classic Buffer Overflow vulnerability in multiple products
Unauthenticated buffer overflow vulnerabilities exist within the Aruba InstantOS and ArubaOS 10 web management interface.
network
low complexity
arubanetworks siemens CWE-120
critical
 9.8
9.8
2022-10-06 CVE-2022-37888 Classic Buffer Overflow vulnerability in multiple products
There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211).
network
low complexity
arubanetworks siemens CWE-120
critical
 9.8
9.8