Vulnerabilities > Siemens > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-05-11 CVE-2020-26140 Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products
An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H.
6.5
2021-05-11 CVE-2020-26141 Improper Validation of Integrity Check Value vulnerability in multiple products
An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H.
low complexity
alfa cisco siemens CWE-354
6.5
2021-05-11 CVE-2020-26143 Improper Input Validation vulnerability in multiple products
An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH.
low complexity
alfa arista siemens CWE-20
6.5
2021-05-11 CVE-2020-26144 Improper Input Validation vulnerability in multiple products
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices.
low complexity
samsung arista siemens CWE-20
6.5
2021-05-11 CVE-2020-26145 Improper Input Validation vulnerability in multiple products
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices.
low complexity
samsung siemens CWE-20
6.5
2021-05-11 CVE-2020-26146 Improper Input Validation vulnerability in multiple products
An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices.
high complexity
samsung arista siemens CWE-20
5.3
2021-05-11 CVE-2020-26147 An issue was discovered in the Linux kernel 5.8.9.
high complexity
linux debian arista siemens
5.4
2021-04-29 CVE-2021-25214 Reachable Assertion vulnerability in multiple products
In BIND 9.8.5 -> 9.8.8, 9.9.3 -> 9.11.29, 9.12.0 -> 9.16.13, and versions BIND 9.9.3-S1 -> 9.11.29-S1 and 9.16.8-S1 -> 9.16.13-S1 of BIND 9 Supported Preview Edition, as well as release versions 9.17.0 -> 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a malformed IXFR triggering the flaw described above, the named process will terminate due to a failed assertion the next time the transferred secondary zone is refreshed.
network
low complexity
isc debian fedoraproject siemens netapp CWE-617
6.5
2021-04-22 CVE-2020-27737 Out-of-bounds Read vulnerability in Siemens products
A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5.5), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.20), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.3), Nucleus ReadyStart V4 (All versions < V4.1.0), Nucleus Source Code (Versions including affected DNS modules), SIMOTICS CONNECT 400 (All versions < V0.5.0.0), TALON TC Compact (BACnet) (All versions < V3.5.5), TALON TC Modular (BACnet) (All versions < V3.5.5).
network
high complexity
siemens CWE-125
6.5
2021-04-22 CVE-2020-27736 Out-of-bounds Read vulnerability in Siemens products
A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5.5), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.20), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.3), Nucleus ReadyStart V4 (All versions < V4.1.0), Nucleus Source Code (Versions including affected DNS modules), SIMOTICS CONNECT 400 (All versions < V0.5.0.0), TALON TC Compact (BACnet) (All versions < V3.5.5), TALON TC Modular (BACnet) (All versions < V3.5.5).
network
high complexity
siemens CWE-125
6.5