Vulnerabilities > Siemens > Sinamics S G Family Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2013-12-07 CVE-2013-6920 Improper Authentication vulnerability in Siemens products
Siemens SINAMICS S/G controllers with firmware before 4.6.11 do not require authentication for FTP and TELNET sessions, which allows remote attackers to bypass intended access restrictions via TCP traffic to port (1) 21 or (2) 23.
network
low complexity
siemens CWE-287
critical
10.0