Vulnerabilities > Siemens > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-09-14 CVE-2021-37192 Unspecified vulnerability in Siemens Sinema Remote Connect Server
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2).
low complexity
siemens
4.3
4.3
2021-09-14 CVE-2021-37193 Unspecified vulnerability in Siemens Sinema Remote Connect Server
A vulnerability has been identified in SINEMA Remote Connect Server (All versions < V3.0 SP2).
low complexity
siemens
4.3
4.3
2021-09-14 CVE-2021-40357 Unspecified vulnerability in Siemens Teamcenter Active Workspace
A vulnerability has been identified in Teamcenter Active Workspace V4.3 (All versions < V4.3.10), Teamcenter Active Workspace V5.0 (All versions < V5.0.8), Teamcenter Active Workspace V5.1 (All versions < V5.1.5), Teamcenter Active Workspace V5.2 (All versions < V5.2.1).
network
low complexity
siemens
4.9
4.9
2021-09-07 CVE-2019-5318 Cross-Site Request Forgery (CSRF) vulnerability in multiple products
A remote cross-site request forgery (csrf) vulnerability was discovered in Aruba Operating System Software version(s): 6.x.x.x: all versions, 8.x.x.x: all versions prior to 8.8.0.0.
network
low complexity
arubanetworks siemens CWE-352
6.5
6.5
2021-09-07 CVE-2021-37728 Path Traversal vulnerability in multiple products
A remote path traversal vulnerability was discovered in Aruba Operating System Software version(s): Prior to 8.8.0.1, 8.7.1.4, 8.6.0.11, 8.5.0.13.
network
low complexity
arubanetworks siemens CWE-22
6.5
6.5
2021-09-07 CVE-2021-37729 Path Traversal vulnerability in multiple products
A remote path traversal vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.0-2.2.0.4; Prior to 8.7.1.3, 8.6.0.9, 8.5.0.12, 8.3.0.16, 6.5.4.19, 6.4.4.25.
network
low complexity
arubanetworks siemens CWE-22
6.5
6.5
2021-09-07 CVE-2021-37731 Path Traversal vulnerability in multiple products
A local path traversal vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.0-2.2.0.4; Prior to 8.7.1.1, 8.6.0.7, 8.5.0.12, 8.3.0.16.
low complexity
arubanetworks siemens CWE-22
6.2
6.2
2021-09-07 CVE-2021-37733 Path Traversal vulnerability in multiple products
A remote path traversal vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.4-2.2.0.4; Prior to 8.7.1.1, 8.6.0.7, 8.5.0.11, 8.3.0.16.
network
low complexity
arubanetworks siemens CWE-22
4.9
4.9
2021-08-16 CVE-2021-22939 Improper Certificate Validation vulnerability in multiple products
If the Node.js https API was used incorrectly and "undefined" was in passed for the "rejectUnauthorized" parameter, no error was returned and connections to servers with an expired certificate would have been accepted.
network
low complexity
nodejs oracle netapp siemens debian CWE-295
5.3
5.3
2021-08-10 CVE-2020-28397 Incorrect Authorization vulnerability in Siemens products
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl.
network
low complexity
siemens CWE-863
5.3
5.3