Vulnerabilities > Siemens > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-06-12 CVE-2019-6582 Permissions, Privileges, and Access Controls vulnerability in Siemens products
A vulnerability has been identified in Siveillance VMS 2017 R2 (All versions < V11.2a), Siveillance VMS 2018 R1 (All versions < V12.1a), Siveillance VMS 2018 R2 (All versions < V12.2a), Siveillance VMS 2018 R3 (All versions < V12.3a), Siveillance VMS 2019 R1 (All versions < V13.1a).
network
low complexity
siemens CWE-264
5.5
5.5
2019-06-12 CVE-2019-6581 Unspecified vulnerability in Siemens products
A vulnerability has been identified in Siveillance VMS 2017 R2 (All versions < V11.2a), Siveillance VMS 2018 R1 (All versions < V12.1a), Siveillance VMS 2018 R2 (All versions < V12.2a), Siveillance VMS 2018 R3 (All versions < V12.3a), Siveillance VMS 2019 R1 (All versions < V13.1a).
network
low complexity
siemens
6.5
6.5
2019-06-12 CVE-2019-10925 Improper Access Control vulnerability in Siemens Simatic Mv420 Firmware and Simatic Mv440 Firmware
A vulnerability has been identified in SIMATIC MV400 family (All Versions < V7.0.6).
network
low complexity
siemens CWE-284
5.5
5.5
2019-05-14 CVE-2019-6578 Improper Input Validation vulnerability in Siemens products
A vulnerability has been identified in SINAMICS PERFECT HARMONY GH180 with NXG I control, MLFBs: 6SR2...-, 6SR3...-, 6SR4...- (All Versions with option G28), SINAMICS PERFECT HARMONY GH180 with NXG II control, MLFBs: 6SR2...-, 6SR3...-, 6SR4...- (All Versions with option G28).
network
low complexity
siemens CWE-20
5.0
5.0
2019-05-14 CVE-2019-6576 Cryptographic Issues vulnerability in Siemens products
A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1 Update 1), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (All versions < V15.1 Update 1), SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 und KTP900F (All versions < V15.1 Update 1), SIMATIC WinCC Runtime Advanced (All versions < V15.1 Update 1), SIMATIC WinCC Runtime Professional (All versions < V15.1 Update 1), SIMATIC WinCC (TIA Portal) (All versions < V15.1 Update 1), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel) (All versions).
network
low complexity
siemens CWE-310
5.0
5.0
2019-05-14 CVE-2019-6574 Improper Access Control vulnerability in Siemens products
A vulnerability has been identified in SINAMICS PERFECT HARMONY GH180 with NXG I control, MLFBs: 6SR2...-, 6SR3...-, 6SR4...- (All Versions with option G21, G22, G23, G26, G28, G31, G32, G38, G43 or G46), SINAMICS PERFECT HARMONY GH180 with NXG II control, MLFBs: 6SR2...-, 6SR3...-, 6SR4...- (All Versions with option G21, G22, G23, G26, G28, G31, G32, G38, G43 or G46).
network
low complexity
siemens CWE-284
5.0
5.0
2019-05-14 CVE-2019-6572 Permissions, Privileges, and Access Controls vulnerability in Siemens products
A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1 Update 1), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (All versions < V15.1 Update 1), SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 und KTP900F (All versions < V15.1 Update 1), SIMATIC WinCC Runtime Advanced (All versions < V15.1 Update 1), SIMATIC WinCC Runtime Professional (All versions < V15.1 Update 1), SIMATIC WinCC (TIA Portal) (All versions < V15.1 Update 1), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel) (All versions).
network
low complexity
siemens CWE-264
6.4
6.4
2019-05-14 CVE-2019-10924 Deserialization of Untrusted Data vulnerability in Siemens Logo! Soft Comfort
A vulnerability has been identified in LOGO! Soft Comfort (All versions < V8.3).
network
siemens CWE-502
6.8
6.8
2019-05-14 CVE-2019-10921 Unprotected Storage of Credentials vulnerability in Siemens Logo!8 BM Firmware
A vulnerability has been identified in LOGO! 8 BM (incl.
network
low complexity
siemens CWE-256
5.0
5.0
2019-05-14 CVE-2019-10920 Use of Hard-coded Cryptographic Key vulnerability in Siemens Logo!8 BM Firmware
A vulnerability has been identified in LOGO! 8 BM (incl.
network
low complexity
siemens CWE-321
5.0
5.0