Vulnerabilities > Siemens > Simatic Drive Controller CPU 1504D TF Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-09-12 CVE-2023-28831 Integer Overflow or Wraparound vulnerability in Siemens products
The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation. This could allow an unauthenticated remote attacker to create a denial of service condition by sending a specially crafted certificate.
network
low complexity
siemens CWE-190
7.5
2023-01-10 CVE-2022-38773 Unspecified vulnerability in Siemens products
Affected devices do not contain an Immutable Root of Trust in Hardware.
low complexity
siemens
6.8
2022-10-11 CVE-2022-38465 Unspecified vulnerability in Siemens products
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl.
local
low complexity
siemens
7.8