Vulnerabilities > Siemens > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-10-10 CVE-2023-38640 Incorrect Permission Assignment for Critical Resource vulnerability in Siemens Sicam Pas/Pqs
A vulnerability has been identified in SICAM PAS/PQS (All versions >= V8.00 < V8.22).
local
low complexity
siemens CWE-732
4.4
2023-10-10 CVE-2023-44315 Cross-site Scripting vulnerability in Siemens Sinec NMS 1.0/1.0.3
A vulnerability has been identified in SINEC NMS (All versions < V2.0).
network
low complexity
siemens CWE-79
5.4
2023-09-14 CVE-2023-38558 Exposure of Resource to Wrong Sphere vulnerability in Siemens Simatic PCS NEO 4.0
A vulnerability has been identified in SIMATIC PCS neo (Administration Console) V4.0 (All versions), SIMATIC PCS neo (Administration Console) V4.0 Update 1 (All versions).
local
low complexity
siemens CWE-668
5.5
2023-09-12 CVE-2023-40725 Information Exposure Through an Error Message vulnerability in Siemens QMS Automotive 12.30
A vulnerability has been identified in QMS Automotive (All versions < V12.39).
local
low complexity
siemens CWE-209
4.0
2023-08-14 CVE-2023-39950 Improper Input Validation vulnerability in Siemens Efibootguard
efibootguard is a simple UEFI boot loader with support for safely switching between current and updated partition sets.
low complexity
siemens CWE-20
5.2
2023-08-08 CVE-2023-38532 Allocation of Resources Without Limits or Throttling vulnerability in Siemens Parasolid and Teamcenter Visualization
A vulnerability has been identified in Parasolid V34.1 (All versions < V34.1.258), Parasolid V35.0 (All versions < V35.0.254), Parasolid V35.1 (All versions < V35.1.171), Teamcenter Visualization V14.1 (All versions < V14.1.0.11), Teamcenter Visualization V14.2 (All versions < V14.2.0.6), Teamcenter Visualization V14.3 (All versions < V14.3.0.3).
local
low complexity
siemens CWE-770
5.5
2023-07-11 CVE-2022-29562 Unspecified vulnerability in Siemens products
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUGGEDCOM ROX MX5000RE (All versions < V2.16.0), RUGGEDCOM ROX RX1400 (All versions < V2.16.0), RUGGEDCOM ROX RX1500 (All versions < V2.16.0), RUGGEDCOM ROX RX1501 (All versions < V2.16.0), RUGGEDCOM ROX RX1510 (All versions < V2.16.0), RUGGEDCOM ROX RX1511 (All versions < V2.16.0), RUGGEDCOM ROX RX1512 (All versions < V2.16.0), RUGGEDCOM ROX RX1524 (All versions < V2.16.0), RUGGEDCOM ROX RX1536 (All versions < V2.16.0), RUGGEDCOM ROX RX5000 (All versions < V2.16.0).
network
low complexity
siemens
5.3
2023-07-11 CVE-2023-36386 Cross-site Scripting vulnerability in Siemens products
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUGGEDCOM ROX MX5000RE (All versions < V2.16.0), RUGGEDCOM ROX RX1400 (All versions < V2.16.0), RUGGEDCOM ROX RX1500 (All versions < V2.16.0), RUGGEDCOM ROX RX1501 (All versions < V2.16.0), RUGGEDCOM ROX RX1510 (All versions < V2.16.0), RUGGEDCOM ROX RX1511 (All versions < V2.16.0), RUGGEDCOM ROX RX1512 (All versions < V2.16.0), RUGGEDCOM ROX RX1524 (All versions < V2.16.0), RUGGEDCOM ROX RX1536 (All versions < V2.16.0), RUGGEDCOM ROX RX5000 (All versions < V2.16.0).
network
low complexity
siemens CWE-79
6.1
2023-07-11 CVE-2023-36389 Cross-site Scripting vulnerability in Siemens products
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUGGEDCOM ROX MX5000RE (All versions < V2.16.0), RUGGEDCOM ROX RX1400 (All versions < V2.16.0), RUGGEDCOM ROX RX1500 (All versions < V2.16.0), RUGGEDCOM ROX RX1501 (All versions < V2.16.0), RUGGEDCOM ROX RX1510 (All versions < V2.16.0), RUGGEDCOM ROX RX1511 (All versions < V2.16.0), RUGGEDCOM ROX RX1512 (All versions < V2.16.0), RUGGEDCOM ROX RX1524 (All versions < V2.16.0), RUGGEDCOM ROX RX1536 (All versions < V2.16.0), RUGGEDCOM ROX RX5000 (All versions < V2.16.0).
network
low complexity
siemens CWE-79
6.1
2023-07-11 CVE-2023-36390 Cross-site Scripting vulnerability in Siemens products
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.16.0), RUGGEDCOM ROX MX5000RE (All versions < V2.16.0), RUGGEDCOM ROX RX1400 (All versions < V2.16.0), RUGGEDCOM ROX RX1500 (All versions < V2.16.0), RUGGEDCOM ROX RX1501 (All versions < V2.16.0), RUGGEDCOM ROX RX1510 (All versions < V2.16.0), RUGGEDCOM ROX RX1511 (All versions < V2.16.0), RUGGEDCOM ROX RX1512 (All versions < V2.16.0), RUGGEDCOM ROX RX1524 (All versions < V2.16.0), RUGGEDCOM ROX RX1536 (All versions < V2.16.0), RUGGEDCOM ROX RX5000 (All versions < V2.16.0).
network
low complexity
siemens CWE-79
6.1