Vulnerabilities > Siemens > Simatic S7 1500 Software Controller > High

DATE CVE VULNERABILITY TITLE RISK
2022-10-11 CVE-2022-38465 Insufficiently Protected Credentials vulnerability in Siemens products
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl.
local
low complexity
siemens CWE-522
7.8
2022-02-09 CVE-2021-37185 Operation on a Resource after Expiration or Release vulnerability in Siemens products
A vulnerability has been identified in SIMATIC Drive Controller family (All versions >= V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl.
network
low complexity
siemens CWE-672
7.5
2022-02-09 CVE-2021-37204 Operation on a Resource after Expiration or Release vulnerability in Siemens products
A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC Drive Controller family (All versions >= V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl.
network
low complexity
siemens CWE-672
7.5
2022-02-09 CVE-2021-37205 Memory Leak vulnerability in Siemens products
A vulnerability has been identified in SIMATIC Drive Controller family (All versions >= V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl.
network
low complexity
siemens CWE-401
7.5
2019-08-13 CVE-2019-10943 Missing Support for Integrity Check vulnerability in Siemens products
A vulnerability has been identified in SIMATIC Drive Controller family (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl.
network
low complexity
siemens CWE-353
7.5
2019-04-17 CVE-2019-6575 Uncaught Exception vulnerability in Siemens products
A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl.
network
low complexity
siemens CWE-248
7.5
2019-04-17 CVE-2019-6568 Out-of-bounds Read vulnerability in Siemens products
The webserver of the affected devices contains a vulnerability that may lead to a denial of service condition.
network
low complexity
siemens CWE-125
7.5