Vulnerabilities > Siemens > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-09-09 | CVE-2020-15789 | Cross-Site Request Forgery (CSRF) vulnerability in Siemens Polarion Subversion Webclient A vulnerability has been identified in Polarion Subversion Webclient (All versions). | 5.8 |
| 2020-09-09 | CVE-2020-15788 | Cross-site Scripting vulnerability in Siemens Polarion Subversion Webclient A vulnerability has been identified in Polarion Subversion Webclient (All versions). | 4.3 |
| 2020-09-09 | CVE-2020-15787 | Authentication Bypass by Primary Weakness vulnerability in Siemens Simatic HMI United Comfort Panels Firmware A vulnerability has been identified in SIMATIC HMI Unified Comfort Panels (All versions <= V16). | 5.0 |
| 2020-09-09 | CVE-2020-15786 | Improper Restriction of Excessive Authentication Attempts vulnerability in Siemens products A vulnerability has been identified in SIMATIC HMI Basic Panels 2nd Generation (incl. | 5.0 |
| 2020-09-09 | CVE-2020-15785 | Cleartext Transmission of Sensitive Information vulnerability in Siemens Siveillance Video Client A vulnerability has been identified in Siveillance Video Client (All versions). | 5.3 |
| 2020-09-09 | CVE-2020-15784 | Cleartext Storage of Sensitive Information vulnerability in Siemens Spectrum Power 4 4.70 A vulnerability has been identified in Spectrum Power 4 (All versions < V4.70 SP8). | 5.0 |
| 2020-09-09 | CVE-2020-10049 | Incorrect Default Permissions vulnerability in Siemens Simatic Rtls Locating Manager 2.10/2.9.3 A vulnerability has been identified in SIMATIC RTLS Locating Manager (All versions < V2.10.2). | 4.4 |
| 2020-08-14 | CVE-2020-7583 | Incorrect Authorization vulnerability in Siemens Automation License Manager A vulnerability has been identified in Automation License Manager 5 (All versions), Automation License Manager 6 (All versions < V6.0.8). | 4.6 |
| 2020-08-14 | CVE-2020-15781 | Cross-site Scripting vulnerability in Siemens Sicam A8000 Firmware A vulnerability has been identified in SICAM WEB firmware for SICAM A8000 RTUs (All versions < V05.30). | 6.8 |
| 2020-07-14 | CVE-2020-7588 | Improper Input Validation vulnerability in Siemens products A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2), Opcenter Execution Foundation (All versions < V3.2), Opcenter Execution Process (All versions < V3.2), Opcenter Intelligence (All versions < V3.3), Opcenter Quality (All versions < V11.3), Opcenter RD&L (V8.0), SIMATIC IT LMS (All versions < V2.6), SIMATIC IT Production Suite (All versions < V8.0), SIMATIC Notifier Server for Windows (All versions), SIMATIC PCS neo (All versions < V3.0 SP1), SIMATIC STEP 7 (TIA Portal) V15 (All versions < V15.1 Update 5), SIMATIC STEP 7 (TIA Portal) V16 (All versions < V16 Update 2), SIMOCODE ES V15.1 (All versions < V15.1 Update 4), SIMOCODE ES V16 (All versions < V16 Update 1), Soft Starter ES V15.1 (All versions < V15.1 Update 3), Soft Starter ES V16 (All versions < V16 Update 1). | 5.3 |