Vulnerabilities > Siemens > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-07-14 | CVE-2022-32213 | HTTP Request Smuggling vulnerability in multiple products The llhttp parser <v14.20.1, <v16.17.1 and <v18.9.1 in the http module in Node.js does not correctly parse and validate Transfer-Encoding headers and can lead to HTTP Request Smuggling (HRS). | 6.5 |
| 2022-07-14 | CVE-2022-32215 | HTTP Request Smuggling vulnerability in multiple products The llhttp parser <v14.20.1, <v16.17.1 and <v18.9.1 in the http module in Node.js does not correctly handle multi-line Transfer-Encoding headers. | 6.5 |
| 2022-07-14 | CVE-2022-32222 | Uncontrolled Search Path Element vulnerability in multiple products A cryptographic vulnerability exists on Node.js on linux in versions of 18.x prior to 18.40.0 which allowed a default path for openssl.cnf that might be accessible under some circumstances to a non-admin user instead of /etc/ssl as was the case in versions prior to the upgrade to OpenSSL 3. | 5.3 |
| 2022-07-12 | CVE-2021-44221 | Improper Input Validation vulnerability in Siemens Simatic Easie Core Package A vulnerability has been identified in SIMATIC eaSie Core Package (All versions < V22.00). | 5.0 |
| 2022-07-12 | CVE-2021-44222 | Missing Authentication for Critical Function vulnerability in Siemens Simatic Easie Core Package A vulnerability has been identified in SIMATIC eaSie Core Package (All versions < V22.00). | 6.4 |
| 2022-07-12 | CVE-2022-33137 | Insufficient Session Expiration vulnerability in Siemens products A vulnerability has been identified in SIMATIC MV540 H (All versions < V3.3), SIMATIC MV540 S (All versions < V3.3), SIMATIC MV550 H (All versions < V3.3), SIMATIC MV550 S (All versions < V3.3), SIMATIC MV560 U (All versions < V3.3), SIMATIC MV560 X (All versions < V3.3). | 6.0 |
| 2022-07-12 | CVE-2022-33138 | Missing Authentication for Critical Function vulnerability in Siemens products A vulnerability has been identified in SIMATIC MV540 H (All versions < V3.3), SIMATIC MV540 S (All versions < V3.3), SIMATIC MV550 H (All versions < V3.3), SIMATIC MV550 S (All versions < V3.3), SIMATIC MV560 U (All versions < V3.3), SIMATIC MV560 X (All versions < V3.3). | 5.0 |
| 2022-07-12 | CVE-2022-34272 | Out-of-bounds Read vulnerability in Siemens Pads Viewer A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). | 6.8 |
| 2022-07-12 | CVE-2022-34273 | Out-of-bounds Write vulnerability in Siemens Pads Viewer A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). | 6.8 |
| 2022-07-12 | CVE-2022-34274 | Out-of-bounds Write vulnerability in Siemens Pads Viewer A vulnerability has been identified in PADS Standard/Plus Viewer (All versions). | 6.8 |