Vulnerabilities > Siemens > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-12 | CVE-2022-34285 | Out-of-bounds Read vulnerability in Siemens Pads Viewer A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). | 5.5 |
| 2022-07-12 | CVE-2022-34287 | Out-of-bounds Write vulnerability in Siemens Pads Viewer A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). | 5.5 |
| 2022-07-12 | CVE-2022-34288 | Out-of-bounds Read vulnerability in Siemens Pads Viewer A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). | 5.5 |
| 2022-07-12 | CVE-2022-34290 | Out-of-bounds Write vulnerability in Siemens Pads Viewer A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). | 5.5 |
| 2022-07-12 | CVE-2022-34291 | Out-of-bounds Write vulnerability in Siemens Pads Viewer A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). | 5.5 |
| 2022-07-12 | CVE-2022-34464 | Exposure of Resource to Wrong Sphere vulnerability in Siemens products A vulnerability has been identified in SICAM GridEdge Essential ARM (All versions), SICAM GridEdge Essential Intel (All versions < V2.7.3), SICAM GridEdge Essential with GDS ARM (All versions), SICAM GridEdge Essential with GDS Intel (All versions < V2.7.3). | 5.5 |
| 2022-07-07 | CVE-2022-32205 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products A malicious server can serve excessive amounts of `Set-Cookie:` headers in a HTTP response to curl and curl < 7.84.0 stores all of them. | 4.3 |
| 2022-07-07 | CVE-2022-32206 | Allocation of Resources Without Limits or Throttling vulnerability in multiple products curl < 7.84.0 supports "chained" HTTP compression algorithms, meaning that a serverresponse can be compressed multiple times and potentially with different algorithms. | 6.5 |
| 2022-07-05 | CVE-2022-2097 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. | 5.3 |
| 2022-06-14 | CVE-2022-27219 | Improper Restriction of Rendered UI Layers or Frames vulnerability in Siemens Sinema Remote Connect Server A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2). | 4.3 |