Vulnerabilities > Siemens > High

DATE CVE VULNERABILITY TITLE RISK
2018-12-12 CVE-2018-11465 Out-of-bounds Read vulnerability in Siemens products
A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < V4.8 SP3).
local
low complexity
siemens CWE-125
7.8
7.8
2018-12-12 CVE-2018-11463 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Siemens products
A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < V4.8 SP3).
local
low complexity
siemens CWE-119
7.8
7.8
2018-12-12 CVE-2018-11460 Unspecified vulnerability in Siemens products
A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < V4.8 SP3).
local
low complexity
siemens
7.8
7.8
2018-12-12 CVE-2018-11459 Unspecified vulnerability in Siemens products
A vulnerability has been identified in SINUMERIK 808D V4.7 (All versions), SINUMERIK 808D V4.8 (All versions), SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < V4.8 SP3).
local
low complexity
siemens
7.8
7.8
2018-12-12 CVE-2018-11458 Unspecified vulnerability in Siemens products
A vulnerability has been identified in SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < V4.8 SP3).
network
high complexity
siemens
8.1
8.1
2018-12-12 CVE-2018-11457 Unspecified vulnerability in Siemens products
A vulnerability has been identified in SINUMERIK 828D V4.7 (All versions < V4.7 SP6 HF1), SINUMERIK 840D sl V4.7 (All versions < V4.7 SP6 HF5), SINUMERIK 840D sl V4.8 (All versions < V4.8 SP3).
network
high complexity
siemens
8.1
8.1
2018-10-10 CVE-2018-13805 Resource Exhaustion vulnerability in Siemens products
A vulnerability has been identified in SIMATIC ET 200SP Open Controller (All versions >= V2.0 and < V2.1.6), SIMATIC S7-1500 Software Controller (All versions >= V2.0 and < V2.5), SIMATIC S7-1500 incl.
network
low complexity
siemens CWE-400
7.5
7.5
2018-10-10 CVE-2018-13802 Improper Privilege Management vulnerability in Siemens ROX II Firmware
A vulnerability has been identified in ROX II (All versions < V2.12.1).
network
low complexity
siemens CWE-269
7.2
7.2
2018-10-10 CVE-2018-13801 Improper Privilege Management vulnerability in Siemens ROX II Firmware
A vulnerability has been identified in ROX II (All versions < V2.12.1).
network
low complexity
siemens CWE-269
8.8
8.8
2018-10-10 CVE-2018-13800 Cross-Site Request Forgery (CSRF) vulnerability in Siemens Simatic S7-1200 V4 Firmware
A vulnerability has been identified in SIMATIC S7-1200 CPU family version 4 (All versions < V4.2.3).
network
low complexity
siemens CWE-352
7.3
7.3