Vulnerabilities > Siemens > Simatic HMI KTP Mobile Panels Ktp900 Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2021-05-12 CVE-2021-25660 Access of Memory Location After End of Buffer vulnerability in Siemens products
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl.
network
low complexity
siemens CWE-788
7.5
2021-05-12 CVE-2021-25661 Access of Memory Location After End of Buffer vulnerability in Siemens products
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl.
network
low complexity
siemens CWE-788
7.5
2021-05-12 CVE-2021-25662 Improper Handling of Exceptional Conditions vulnerability in Siemens products
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl.
network
low complexity
siemens CWE-755
7.5
2021-05-12 CVE-2021-27383 Allocation of Resources Without Limits or Throttling vulnerability in Siemens products
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl.
network
low complexity
siemens CWE-770
7.5
2021-05-12 CVE-2021-27385 Infinite Loop vulnerability in Siemens products
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl.
network
low complexity
siemens CWE-835
7.5
2021-05-12 CVE-2021-27386 Memory Leak vulnerability in Siemens products
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl.
network
low complexity
siemens CWE-401
7.5
2019-05-14 CVE-2019-6576 Cryptographic Issues vulnerability in Siemens products
A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1 Update 1), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (All versions < V15.1 Update 1), SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 und KTP900F (All versions < V15.1 Update 1), SIMATIC WinCC Runtime Advanced (All versions < V15.1 Update 1), SIMATIC WinCC Runtime Professional (All versions < V15.1 Update 1), SIMATIC WinCC (TIA Portal) (All versions < V15.1 Update 1), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel) (All versions).
network
low complexity
siemens CWE-310
7.5
2019-04-17 CVE-2019-6575 Uncaught Exception vulnerability in Siemens products
A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl.
network
low complexity
siemens CWE-248
7.5
2019-04-17 CVE-2019-6568 Out-of-bounds Read vulnerability in Siemens products
The webserver of the affected devices contains a vulnerability that may lead to a denial of service condition.
network
low complexity
siemens CWE-125
7.5
2018-12-13 CVE-2018-13814 Improper Input Validation vulnerability in Siemens products
A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V14), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (All versions < V14), SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 and KTP900F (All versions < V14), SIMATIC WinCC Runtime Advanced (All versions < V14), SIMATIC WinCC Runtime Professional (All versions < V14), SIMATIC WinCC (TIA Portal) (All versions < V14), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel) (All versions).
network
low complexity
siemens CWE-20
8.8