Vulnerabilities > Siemens > Spectrum Power 7

DATE CVE VULNERABILITY TITLE RISK
2024-11-12 CVE-2024-29119 Unspecified vulnerability in Siemens Spectrum Power 7 2.20/2.30/23Q3
A vulnerability has been identified in Spectrum Power 7 (All versions < V24Q3).
local
low complexity
siemens
7.8
2024-01-09 CVE-2023-44120 Incorrect Permission Assignment for Critical Resource vulnerability in Siemens Spectrum Power 7 2.20/2.30/23Q3
A vulnerability has been identified in Spectrum Power 7 (All versions < V23Q4).
local
low complexity
siemens CWE-732
7.8
2023-09-14 CVE-2023-38557 Incorrect Permission Assignment for Critical Resource vulnerability in Siemens Spectrum Power 7 2.20/2.30
A vulnerability has been identified in Spectrum Power 7 (All versions < V23Q3).
local
low complexity
siemens CWE-732
7.8
2022-06-14 CVE-2022-26476 Use of Hard-coded Credentials vulnerability in Siemens products
A vulnerability has been identified in Spectrum Power 4 (All versions using Shared HIS), Spectrum Power 7 (All versions using Shared HIS), Spectrum Power MGMS (All versions using Shared HIS).
low complexity
siemens CWE-798
8.8
2021-12-14 CVE-2021-45046 Expression Language Injection vulnerability in multiple products
It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations.
network
high complexity
apache intel cvat siemens debian sonicwall fedoraproject CWE-917
critical
9.0
2021-12-10 CVE-2021-44228 Deserialization of Untrusted Data vulnerability in multiple products
Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints.
10.0
2019-07-11 CVE-2019-10933 Cross-site Scripting vulnerability in Siemens products
A vulnerability has been identified in Spectrum Power 3 (Corporate User Interface) (All versions <= v3.11), Spectrum Power 4 (Corporate User Interface) (Version v4.75), Spectrum Power 5 (Corporate User Interface) (All versions < v5.50), Spectrum Power 7 (Corporate User Interface) (All versions <= v2.20).
network
low complexity
siemens CWE-79
6.1