← Back

Siemens

siemens

2,161 CVEs • 4,155 products

Products (4,155)

Click to collapse
Toggle
Teamcenter Visualization
teamcenter_visualization
188 CVEs
Jt2go
jt2go
166 CVEs
Tecnomatix Plant Simulation
tecnomatix_plant_simulation
85 CVEs
Telecontrol Server Basic
telecontrol_server_basic
77 CVEs
Simcenter Femap
simcenter_femap
77 CVEs
Sinema Remote Connect Server
sinema_remote_connect_server
71 CVEs
Sinec Infrastructure Network Services
sinec_infrastructure_network_services
68 CVEs
Scalance W1750d Firmware
scalance_w1750d_firmware
62 CVEs
Parasolid
parasolid
52 CVEs
Solid Edge
solid_edge
47 CVEs
Wincc
wincc
43 CVEs
Sinec Nms
sinec-nms
43 CVEs
Sinec Ins
sinec_ins
42 CVEs
Solid Edge Se2023
solid_edge_se2023
36 CVEs
Sppa T3000 Ms3000 Migration Server
sppa-t3000_ms3000_migration_server
35 CVEs
Jt Utilities
jt_utilities
32 CVEs
Comos
comos
31 CVEs
Simatic Wincc
simatic_wincc
30 CVEs
Jt Open Toolkit
jt_open_toolkit
29 CVEs
Scalance Lpe9403 Firmware
scalance_lpe9403_firmware
27 CVEs
Simatic Pcs 7
simatic_pcs_7
25 CVEs
Simatic Pcs7
simatic_pcs7
25 CVEs
Nucleus Net
nucleus_net
25 CVEs
Nucleus Source Code
nucleus_source_code
25 CVEs
Scalance S615 Firmware
scalance_s615_firmware
24 CVEs
Simatic Itp1000 Firmware
simatic_itp1000_firmware
24 CVEs
Simatic Ipc477e Firmware
simatic_ipc477e_firmware
24 CVEs
Simatic Ipc427e Firmware
simatic_ipc427e_firmware
24 CVEs
Simatic Pcs Neo
simatic_pcs_neo
24 CVEs
Ruggedcom Rox Mx5000 Firmware
ruggedcom_rox_mx5000_firmware
23 CVEs
Ruggedcom Rox Rx1400 Firmware
ruggedcom_rox_rx1400_firmware
23 CVEs
Ruggedcom Rox Rx1500 Firmware
ruggedcom_rox_rx1500_firmware
23 CVEs
Ruggedcom Rox Rx1501 Firmware
ruggedcom_rox_rx1501_firmware
23 CVEs
Ruggedcom Rox Rx1510 Firmware
ruggedcom_rox_rx1510_firmware
23 CVEs
Ruggedcom Rox Rx1511 Firmware
ruggedcom_rox_rx1511_firmware
23 CVEs
Ruggedcom Rox Rx1512 Firmware
ruggedcom_rox_rx1512_firmware
23 CVEs
Ruggedcom Rox Rx5000 Firmware
ruggedcom_rox_rx5000_firmware
23 CVEs
Simatic Field Pg M5 Firmware
simatic_field_pg_m5_firmware
22 CVEs
Nucleus Readystart V3
nucleus_readystart_v3
20 CVEs
Pads Viewer
pads_viewer
20 CVEs
Solid Edge Se2024
solid_edge_se2024
20 CVEs
Simatic Step 7
simatic_step_7
19 CVEs
Simatic Itc1500 Firmware
simatic_itc1500_firmware
19 CVEs
Simatic Itc1500 Pro Firmware
simatic_itc1500_pro_firmware
19 CVEs
Simatic Itc1900 Firmware
simatic_itc1900_firmware
19 CVEs
Simatic Itc1900 Pro Firmware
simatic_itc1900_pro_firmware
19 CVEs
Simatic Itc2200 Firmware
simatic_itc2200_firmware
19 CVEs
Simatic Itc2200 Pro Firmware
simatic_itc2200_pro_firmware
19 CVEs
Sppa T3000 Application Server
sppa-t3000_application_server
19 CVEs
Simatic Ipc627e Firmware
simatic_ipc627e_firmware
19 CVEs
Simatic Ipc647e Firmware
simatic_ipc647e_firmware
19 CVEs
Simatic Ipc847e Firmware
simatic_ipc847e_firmware
19 CVEs
Ruggedcom Rox Rx1524 Firmware
ruggedcom_rox_rx1524_firmware
19 CVEs
Ruggedcom Rox Rx1536 Firmware
ruggedcom_rox_rx1536_firmware
19 CVEs
Tecnomatix
tecnomatix
19 CVEs
Simatic Field Pg M6 Firmware
simatic_field_pg_m6_firmware
18 CVEs
Simatic Ipc677e Firmware
simatic_ipc677e_firmware
18 CVEs
Sinema Server
sinema_server
17 CVEs
Opcenter Quality
opcenter_quality
17 CVEs
Simatic S7 1200 Cpu 1211c Firmware
simatic_s7-1200_cpu_1211c_firmware
16 CVEs
Simatic S7 1200 Cpu 1212c Firmware
simatic_s7-1200_cpu_1212c_firmware
16 CVEs
Simatic S7 1200 Cpu 1214c Firmware
simatic_s7-1200_cpu_1214c_firmware
16 CVEs
Sipass Integrated
sipass_integrated
16 CVEs
Logo! 8 Bm Firmware
logo!_8_bm_firmware
16 CVEs
Apogee Pxc Modular Firmware
apogee_pxc_modular_firmware
16 CVEs
Talon Tc Compact Firmware
talon_tc_compact_firmware
16 CVEs
Tim 1531 Irc Firmware
tim_1531_irc_firmware
16 CVEs
Scalance Xf204 Firmware
scalance_xf204_firmware
16 CVEs
Scalance Xf204 2ba Irt Firmware
scalance_xf204-2ba_irt_firmware
16 CVEs
Ruggedcom Crossbow
ruggedcom_crossbow
16 CVEs
Simatic Cn 4100 Firmware
simatic_cn_4100_firmware
16 CVEs
Sinec Traffic Analyzer
sinec_traffic_analyzer
16 CVEs
Scalance X308 2m Firmware
scalance_x308-2m_firmware
15 CVEs
Simatic S7 1200 Cpu 1215c Firmware
simatic_s7-1200_cpu_1215c_firmware
15 CVEs
Simatic S7 1200 Cpu 1217c Firmware
simatic_s7-1200_cpu_1217c_firmware
15 CVEs
Talon Tc Modular Firmware
talon_tc_modular_firmware
15 CVEs
Simatic Hmi Ktp Mobile Panels Ktp400f Firmware
simatic_hmi_ktp_mobile_panels_ktp400f_firmware
15 CVEs
Simatic Hmi Ktp Mobile Panels Ktp700 Firmware
simatic_hmi_ktp_mobile_panels_ktp700_firmware
15 CVEs
Simatic Hmi Ktp Mobile Panels Ktp700f Firmware
simatic_hmi_ktp_mobile_panels_ktp700f_firmware
15 CVEs
Simatic Hmi Ktp Mobile Panels Ktp900 Firmware
simatic_hmi_ktp_mobile_panels_ktp900_firmware
15 CVEs
Simatic Hmi Ktp Mobile Panels Ktp900f Firmware
simatic_hmi_ktp_mobile_panels_ktp900f_firmware
15 CVEs
Apogee Modular Equiment Controller Firmware
apogee_modular_equiment_controller_firmware
15 CVEs
Apogee Modular Building Controller Firmware
apogee_modular_building_controller_firmware
15 CVEs
Solid Edge Se2021 Firmware
solid_edge_se2021_firmware
15 CVEs
Automation License Manager
automation_license_manager
14 CVEs
Simatic S7 1500 Cpu Firmware
simatic_s7-1500_cpu_firmware
14 CVEs
Simatic Wincc (tia Portal)
simatic_wincc_(tia_portal)
14 CVEs
Sinvr 3 Central Control Server
sinvr_3_central_control_server
14 CVEs
Sinvr 3 Video Server
sinvr_3_video_server
14 CVEs
Capital Vstar
capital_vstar
14 CVEs
Scalance X307 3 Firmware
scalance_x307-3_firmware
14 CVEs
Scalance X307 3ld Firmware
scalance_x307-3ld_firmware
14 CVEs
Scalance X308 2 Firmware
scalance_x308-2_firmware
14 CVEs
Scalance X308 2ld Firmware
scalance_x308-2ld_firmware
14 CVEs
Scalance X308 2lh Firmware
scalance_x308-2lh_firmware
14 CVEs
Scalance X308 2m Ts Firmware
scalance_x308-2m_ts_firmware
14 CVEs
Scalance X310 Firmware
scalance_x310_firmware
14 CVEs
Scalance X310fe Firmware
scalance_x310fe_firmware
14 CVEs
Scalance X320 1fe Firmware
scalance_x320-1fe_firmware
14 CVEs
Scalance Xr324 12m Firmware
scalance_xr324-12m_firmware
14 CVEs

CVEs (2,161)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2014-5232
1Siemens
1Simatic Wincc Sm@rtclient
May 6, 2026
Jan 14, 2015
N/A· v4
N/A· v3
1.9 LOW· v2
The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows local users to bypass an intended application-password requirement by leveraging the running of the app in the background state.
CVE-2014-5231
1Siemens
1Simatic Wincc Sm@rtclient
May 6, 2026
Jan 14, 2015
N/A· v4
N/A· v3
2.1 LOW· v2
The Siemens SIMATIC WinCC Sm@rtClient app before 1.0.2 for iOS allows physically proximate attackers to extract the password from storage via unspecified vectors.
CVE-2014-8552
1Siemens
4Simatic Pcs7
Simatic Pcs 7Simatic Tiaportal+1 more
May 6, 2026
Nov 26, 2014
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6 allows remote attackers...Show more
The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6 allows remote attackers to read arbitrary files via crafted packets.Show less
CVE-2014-8551
1Siemens
4Simatic Pcs7
Simatic Pcs 7Simatic Tiaportal+1 more
May 6, 2026
Nov 26, 2014
N/A· v4
N/A· v3
10.0 HIGH· v2
The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6 allows remote attackers...Show more
The WinCC server in Siemens SIMATIC WinCC 7.0 through SP3, 7.2 before Update 9, and 7.3 before Update 2; SIMATIC PCS 7 7.1 through SP4, 8.0 through SP2, and 8.1; and TIA Portal 13 before Update 6 allows remote attackers to execute arbitrary code via crafted packets.Show less
CVE-2014-5074
1Siemens
8Simatic S7 1500 Cpu Firmware
Simatic S7 1511 1 Pn CpuSimatic S7 1513 1 Pn Cpu+5 more
May 6, 2026
Aug 17, 2014
N/A· v4
N/A· v3
7.1 HIGH· v2
Siemens SIMATIC S7-1500 CPU devices with firmware before 1.6 allow remote attackers to cause a denial of service (device restart and STOP transition) via crafted TCP packets.
CVE-2014-4686
1Siemens
2Simatic Pcs7
Wincc
May 6, 2026
Jul 24, 2014
N/A· v4
N/A· v3
6.8 MEDIUM· v2
The Project administration application in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, has a hardcoded encryption key, which allows remote attackers to obtain sensitive information by extracting...Show more
The Project administration application in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, has a hardcoded encryption key, which allows remote attackers to obtain sensitive information by extracting this key from another product installation and then employing this key during the sniffing of network traffic on TCP port 1030.Show less
CVE-2014-4685
1Siemens
2Simatic Pcs7
Wincc
May 6, 2026
Jul 24, 2014
N/A· v4
N/A· v3
4.6 MEDIUM· v2
Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows local users to gain privileges by leveraging weak system-object access control.
CVE-2014-4684
1Siemens
2Simatic Pcs7
Wincc
May 6, 2026
Jul 24, 2014
N/A· v4
N/A· v3
6.0 MEDIUM· v2
The database server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a request to TCP port 1433.
CVE-2014-4683
1Siemens
2Simatic Pcs7
Wincc
May 6, 2026
Jul 24, 2014
N/A· v4
N/A· v3
4.9 MEDIUM· v2
The WebNavigator server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote authenticated users to gain privileges via a (1) HTTP or (2) HTTPS request.
CVE-2014-4682
1Siemens
2Simatic Pcs7
Wincc
May 6, 2026
Jul 24, 2014
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The WebNavigator server in Siemens SIMATIC WinCC before 7.3, as used in PCS7 and other products, allows remote attackers to obtain sensitive information via an HTTP request.
CVE-2014-0224
9Fedoraproject
Filezilla ProjectMariadb+6 more
16Application Processing Engine Firmware
Cp1543 1 FirmwareEnterprise Linux+13 more
May 6, 2026
Jun 5, 2014
N/A· v4
7.4 HIGH· v3
5.8 MEDIUM· v2
OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key...Show more
OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the "CCS Injection" vulnerability.Show less
CVE-2014-2909
1Siemens
6Simatic S7 Cpu 1211c
Simatic S7 Cpu 1200 FirmwareSimatic S7 Cpu 1212c+3 more
May 6, 2026
Apr 25, 2014
N/A· v4
N/A· v3
5.8 MEDIUM· v2
CRLF injection vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote attackers to inject arbitrary HTTP headers via unspecified vectors.
CVE-2014-2908
1Siemens
6Simatic S7 Cpu 1211c
Simatic S7 Cpu 1200 FirmwareSimatic S7 Cpu 1212c+3 more
May 6, 2026
Apr 25, 2014
N/A· v4
N/A· v3
4.3 MEDIUM· v2
Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2014-2733
1Siemens
1Sinema Server
May 6, 2026
Apr 19, 2014
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Siemens SINEMA Server before 12 SP1 allows remote attackers to cause a denial of service (web-interface outage) via crafted HTTP requests to port (1) 4999 or (2) 80.
CVE-2014-2732
1Siemens
1Sinema Server
May 6, 2026
Apr 19, 2014
N/A· v4
N/A· v3
5.0 MEDIUM· v2
Multiple directory traversal vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to access arbitrary files via HTTP traffic to port (1) 4999 or (2) 80.
CVE-2014-2731
1Siemens
1Sinema Server
May 6, 2026
Apr 19, 2014
N/A· v4
N/A· v3
9.3 HIGH· v2
Multiple unspecified vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to execute arbitrary code via HTTP traffic to port (1) 4999 or (2) 80.
CVE-2014-0160
13Broadcom
CanonicalDebian+10 more
28Application Processing Engine Firmware
Cp 1543 1 FirmwareDebian Linux+25 more
Apr 21, 2026
Apr 7, 2014
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted pa...Show more
The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote attackers to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrated by reading private keys, related to d1_both.c and t1_lib.c, aka the Heartbleed bug.Show less
CVE-2014-2590
1Siemens
1Ruggedcom Rugged Operating System
May 6, 2026
Apr 1, 2014
N/A· v4
N/A· v3
5.0 MEDIUM· v2
The web management interface in Siemens RuggedCom ROS before 3.11, ROS 3.11 before 3.11.5 for RS950G, ROS 3.12, and ROS 4.0 for RSG2488 allows remote attackers to cause a denial of service (interface outage) via crafted...Show more
The web management interface in Siemens RuggedCom ROS before 3.11, ROS 3.11 before 3.11.5 for RS950G, ROS 3.12, and ROS 4.0 for RSG2488 allows remote attackers to cause a denial of service (interface outage) via crafted HTTP packets.Show less
CVE-2014-2258
1Siemens
6Simatic S7 Cpu 1211c
Simatic S7 Cpu 1200 FirmwareSimatic S7 Cpu 1212c+3 more
May 6, 2026
Mar 24, 2014
N/A· v4
N/A· v3
7.8 HIGH· v2
Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTPS packets, a different vulnerability than CVE-2014-2259.
CVE-2014-2256
1Siemens
6Simatic S7 Cpu 1211c
Simatic S7 Cpu 1200 FirmwareSimatic S7 Cpu 1212c+3 more
May 6, 2026
Mar 24, 2014
N/A· v4
N/A· v3
7.8 HIGH· v2
Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted ISO-TSAP packets, a different vulnerability than CVE-2014-2257.