Vulnerabilities > Siemens > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-04-09 CVE-2020-11655 Improper Initialization vulnerability in multiple products
SQLite through 3.31.1 allows attackers to cause a denial of service (segmentation fault) via a malformed window-function query because the AggInfo object's initialization is mishandled. 		5.0
5.0
2020-03-10 CVE-2020-7579 Cross-site Scripting vulnerability in Siemens Spectrum Power 5 5.50
A vulnerability has been identified in Spectrum Power™ 5 (All versions < v5.50 HF02).
network
siemens CWE-79
4.3
4.3
2020-03-10 CVE-2019-6585 Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Siemens products
A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627-2M (All versions >= V3.0 and < V4.1).
network
low complexity
siemens CWE-80
6.1
6.1
2020-03-10 CVE-2019-19296 Path Traversal vulnerability in Siemens products
A vulnerability has been identified in SiNVR/SiVMS Video Server (All versions < V5.0.0).
network
high complexity
siemens CWE-22
6.8
6.8
2020-03-10 CVE-2019-19295 Insufficient Logging vulnerability in Siemens products
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0).
network
low complexity
siemens CWE-778
4.3
4.3
2020-03-10 CVE-2019-19294 Cross-site Scripting vulnerability in Siemens products
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0).
network
high complexity
siemens CWE-79
6.3
6.3
2020-03-10 CVE-2019-19293 Cross-site Scripting vulnerability in Siemens products
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0).
network
high complexity
siemens CWE-79
6.1
6.1
2020-03-10 CVE-2019-19291 Cleartext Storage in a File or on Disk vulnerability in Siemens products
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0), SiNVR/SiVMS Video Server (All versions < V5.0.0).
network
high complexity
siemens CWE-313
5.3
5.3
2020-03-10 CVE-2019-19290 Path Traversal vulnerability in Siemens products
A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0).
network
low complexity
siemens CWE-22
6.5
6.5
2020-03-10 CVE-2019-19277 Unspecified vulnerability in Siemens Siport MP 2.2/3.0.3
A vulnerability has been identified in SIPORT MP (All versions < 3.1.4).
network
low complexity
siemens
5.5
5.5