Vulnerabilities > Siemens > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-14 | CVE-2023-45794 | Authentication Bypass by Capture-replay vulnerability in Siemens Mendix A vulnerability has been identified in Mendix Applications using Mendix 10 (All versions < V10.4.0), Mendix Applications using Mendix 7 (All versions < V7.23.37), Mendix Applications using Mendix 8 (All versions < V8.18.27), Mendix Applications using Mendix 9 (All versions < V9.24.10). | 8.1 |
| 2023-11-14 | CVE-2023-46097 | SQL Injection vulnerability in Siemens Simatic PCS NEO 3.0/3.1/4.0 A vulnerability has been identified in SIMATIC PCS neo (All versions < V4.1). | 8.0 |
| 2023-11-14 | CVE-2023-46098 | Overly Permissive Cross-domain Whitelist vulnerability in Siemens Simatic PCS NEO 3.0/3.1/4.0 A vulnerability has been identified in SIMATIC PCS neo (All versions < V4.1). | 8.8 |
| 2023-11-14 | CVE-2023-46590 | XXE vulnerability in Siemens OPC UA Modeling Editor A vulnerability has been identified in Siemens OPC UA Modelling Editor (SiOME) (All versions < V2.8). | 7.5 |
| 2023-11-14 | CVE-2023-46601 | Improper Access Control vulnerability in Siemens Comos A vulnerability has been identified in COMOS (All versions). | 7.5 |
| 2023-10-10 | CVE-2022-30527 | Incorrect Permission Assignment for Critical Resource vulnerability in Siemens Sinec NMS 1.0/1.0.3 A vulnerability has been identified in SINEC NMS (All versions < V2.0). | 7.8 |
| 2023-10-10 | CVE-2023-30900 | Stack-based Buffer Overflow vulnerability in Siemens Xpedition Layout Browser A vulnerability has been identified in Xpedition Layout Browser (All versions < VX.2.14). | 7.8 |
| 2023-10-10 | CVE-2023-36380 | Use of Hard-coded Credentials vulnerability in Siemens Cp-8031 Firmware and Cp-8050 Firmware A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05.11 (only with activated debug support)), CP-8050 MASTER MODULE (All versions < CPCI85 V05.11 (only with activated debug support)). | 7.8 |
| 2023-10-10 | CVE-2023-42796 | Path Traversal vulnerability in Siemens Cp-8031 Firmware and Cp-8050 Firmware A vulnerability has been identified in CP-8031 MASTER MODULE (All versions < CPCI85 V05.11), CP-8050 MASTER MODULE (All versions < CPCI85 V05.11). | 8.8 |
| 2023-10-10 | CVE-2023-44081 | Out-of-bounds Write vulnerability in Siemens Tecnomatix A vulnerability has been identified in Tecnomatix Plant Simulation V2201 (All versions < V2201.0009), Tecnomatix Plant Simulation V2302 (All versions < V2302.0003). | 7.8 |