Vulnerabilities > Siemens > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-01 | CVE-2021-33626 | Inclusion of Functionality from Untrusted Control Sphere vulnerability in multiple products A vulnerability exists in SMM (System Management Mode) branch that registers a SWSMI handler that does not sufficiently check or validate the allocated buffer pointer(QWORD values for CommBuffer). | 7.8 |
| 2021-09-29 | CVE-2021-22946 | Cleartext Transmission of Sensitive Information vulnerability in multiple products A user can tell curl >= 7.20.0 and <= 7.78.0 to require a successful upgrade to TLS when speaking to an IMAP, POP3 or FTP server (`--ssl-reqd` on the command line or`CURLOPT_USE_SSL` set to `CURLUSESSL_CONTROL` or `CURLUSESSL_ALL` withlibcurl). | 7.5 |
| 2021-09-28 | CVE-2021-41535 | Use After Free vulnerability in Siemens products A vulnerability has been identified in NX 1953 Series (All versions < V1973.3700), NX 1980 Series (All versions < V1988), Solid Edge SE2021 (All versions < SE2021MP8). | 7.8 |
| 2021-09-28 | CVE-2021-41536 | Use After Free vulnerability in Siemens Solid Edge Se2020/Se2021 A vulnerability has been identified in Solid Edge SE2021 (All versions < SE2021MP8). | 7.8 |
| 2021-09-28 | CVE-2021-41537 | Use After Free vulnerability in Siemens Solid Edge Se2020/Se2021 A vulnerability has been identified in Solid Edge SE2021 (All versions < SE2021MP8). | 7.8 |
| 2021-09-28 | CVE-2021-41539 | Use After Free vulnerability in Siemens Solid Edge Se2020/Se2021 A vulnerability has been identified in Solid Edge SE2021 (All versions < SE2021MP8). | 7.8 |
| 2021-09-28 | CVE-2021-41540 | Use After Free vulnerability in Siemens Solid Edge Se2020/Se2021 A vulnerability has been identified in Solid Edge SE2021 (All versions < SE2021MP8). | 7.8 |
| 2021-09-16 | CVE-2021-34798 | NULL Pointer Dereference vulnerability in multiple products Malformed requests may cause the server to dereference a NULL pointer. | 7.5 |
| 2021-09-14 | CVE-2021-25665 | Out-of-bounds Write vulnerability in Siemens Simcenter Star-Ccm+ A vulnerability has been identified in Simcenter STAR-CCM+ Viewer (All versions < V2021.2.1). | 7.8 |
| 2021-09-14 | CVE-2021-33720 | Classic Buffer Overflow vulnerability in Siemens products A vulnerability has been identified in SIPROTEC 5 relays with CPU variants CP050 (All versions < V8.80), SIPROTEC 5 relays with CPU variants CP100 (All versions < V8.80), SIPROTEC 5 relays with CPU variants CP300 (All versions < V8.80). | 7.5 |