Vulnerabilities > Siemens > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-12-12 | CVE-2018-11457 | Unspecified vulnerability in Siemens products A vulnerability has been identified in SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < V4.8 SP3). | 8.1 |
| 2018-10-10 | CVE-2018-13805 | Resource Exhaustion vulnerability in Siemens products A vulnerability has been identified in SIMATIC ET 200SP Open Controller (All versions >= V2.0 and < V2.1.6), SIMATIC S7-1500 Software Controller (All versions >= V2.0 and < V2.5), SIMATIC S7-1500 incl. | 7.5 |
| 2018-10-10 | CVE-2018-13802 | Improper Privilege Management vulnerability in Siemens ROX II Firmware A vulnerability has been identified in ROX II (All versions < V2.12.1). | 7.2 |
| 2018-10-10 | CVE-2018-13801 | Improper Privilege Management vulnerability in Siemens ROX II Firmware A vulnerability has been identified in ROX II (All versions < V2.12.1). | 8.8 |
| 2018-10-10 | CVE-2018-13800 | Cross-Site Request Forgery (CSRF) vulnerability in Siemens Simatic S7-1200 V4 Firmware A vulnerability has been identified in SIMATIC S7-1200 CPU family version 4 (All versions < V4.2.3). | 7.3 |
| 2018-09-12 | CVE-2018-13807 | Improper Input Validation vulnerability in Siemens products A vulnerability has been identified in SCALANCE X300 (All versions < V4.0.0), SCALANCE X408 (All versions < V4.0.0), SCALANCE X414 (All versions). | 8.6 |
| 2018-09-12 | CVE-2018-13806 | Uncontrolled Search Path Element vulnerability in Siemens TD Keypad Designer A vulnerability has been identified in SIEMENS TD Keypad Designer (All versions). | 7.8 |
| 2018-09-06 | CVE-2018-5391 | Improper Input Validation vulnerability in multiple products The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. | 7.5 |
| 2018-08-07 | CVE-2018-11455 | Path Traversal vulnerability in Siemens Automation License Manager A vulnerability has been identified in Automation License Manager 5 (All versions < 5.3.4.4), Automation License Manager 6 (All versions < 6.0.1). | 8.8 |
| 2018-08-07 | CVE-2018-11454 | Incorrect Permission Assignment for Critical Resource vulnerability in Siemens products A vulnerability has been identified in SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V10, V11, V12 (All versions), SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V13 (All versions < V13 SP2 Update 2), SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V14 (All versions < V14 SP1 Update 6), SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V15 (All versions < V15 Update 2). | 8.6 |