← Back

Simatic Pcs Firmware

simatic_pcs_firmware

Vendor: Siemens • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-30694
1Siemens
1136ag1151 8ab01 7ab0 Firmware
6ag1151 8fb01 2ab0 Firmware6ag1314 6eh04 7ab0 Firmware+110 more
Nov 21, 2024
Nov 8, 2022
N/A· v4
3.5 LOW· v3
N/A· v2
The login endpoint /FormLogin in affected web services does not apply proper origin checking. This could allow authenticated remote attackers to track the activities of other users via a login cross-site request forge...Show more
The login endpoint /FormLogin in affected web services does not apply proper origin checking. This could allow authenticated remote attackers to track the activities of other users via a login cross-site request forgery attack.Show less
CVE-2021-31893
1Siemens
4Simatic Pcs Firmware
Simatic Pdm FirmwareSimatic Step 7 Firmware+1 more
Nov 21, 2024
Jul 13, 2021
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS 7 V9.0 (All versions < V9.0 SP3), SIMATIC PDM (All versions < V9.2), SIMATIC STEP 7 V5.X (All versions < V5.6 SP2 HF3), SI...Show more
A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS 7 V9.0 (All versions < V9.0 SP3), SIMATIC PDM (All versions < V9.2), SIMATIC STEP 7 V5.X (All versions < V5.6 SP2 HF3), SINAMICS STARTER (containing STEP 7 OEM version) (All versions < V5.4 HF2). The affected software contains a buffer overflow vulnerability while handling certain files that could allow a local attacker to trigger a denial-of-service condition or potentially lead to remote code execution.Show less