Vulnerabilities > Siemens > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-04-17 | CVE-2019-10953 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products ABB, Phoenix Contact, Schneider Electric, Siemens, WAGO - Programmable Logic Controllers, multiple versions. | 7.5 |
| 2019-04-17 | CVE-2019-6575 | Uncaught Exception vulnerability in Siemens products A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. | 7.5 |
| 2019-04-17 | CVE-2019-6570 | Improper Handling of Insufficient Permissions or Privileges vulnerability in Siemens Sinema Remote Connect Server A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V2.0). | 8.8 |
| 2019-04-17 | CVE-2019-6568 | Out-of-bounds Read vulnerability in Siemens products The webserver of the affected devices contains a vulnerability that may lead to a denial of service condition. | 7.5 |
| 2019-04-17 | CVE-2018-16561 | Unspecified vulnerability in Siemens products A vulnerability has been identified in SIMATIC S7-300 CPUs (All versions < V3.X.16). | 7.5 |
| 2019-04-17 | CVE-2018-16559 | Improper Input Validation vulnerability in Siemens Simatic S7-1500 Firmware A vulnerability has been identified in SIMATIC S7-1500 CPU (All versions >= V2.0 and < V2.5), SIMATIC S7-1500 CPU (All versions <= V1.8.5). | 7.5 |
| 2019-04-17 | CVE-2018-16558 | Improper Input Validation vulnerability in Siemens Simatic S7-1500 Firmware A vulnerability has been identified in SIMATIC S7-1500 CPU (All versions >= V2.0 and < V2.5), SIMATIC S7-1500 CPU (All versions <= V1.8.5). | 7.5 |
| 2019-03-21 | CVE-2018-13798 | Improper Input Validation vulnerability in Siemens products A vulnerability has been identified in SICAM A8000 CP-8000 (All versions < V14), SICAM A8000 CP-802X (All versions < V14), SICAM A8000 CP-8050 (All versions < V2.00). | 7.5 |
| 2019-03-08 | CVE-2019-8277 | Improper Initialization vulnerability in multiple products UltraVNC revision 1211 contains multiple memory leaks (CWE-665) in VNC server code, which allows an attacker to read stack memory and can be abused for information disclosure. | 7.5 |
| 2019-03-08 | CVE-2019-8276 | Out-of-bounds Write vulnerability in multiple products UltraVNC revision 1211 has a stack buffer overflow vulnerability in VNC server code inside file transfer request handler, which can result in Denial of Service (DoS). | 7.5 |