Siemens

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2014-2254 1Siemens 6Simatic S7 Cpu 1211c Simatic S7 Cpu 1200 FirmwareSimatic S7 Cpu 1212c+3 more May 6, 2026 Mar 24, 2014 N/A· v4 N/A· v3 7.8 HIGH· v2 Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTP packets, a different vulnerability than CVE-2014-2255.
CVE-2014-2252 1Siemens 6Simatic S7 Cpu 1211c Simatic S7 Cpu 1200 FirmwareSimatic S7 Cpu 1212c+3 more May 6, 2026 Mar 24, 2014 N/A· v4 N/A· v3 6.1 MEDIUM· v2 Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted PROFINET packets, a different vulnerability than CVE-2014-2253.
CVE-2014-2250 1Siemens 6Simatic S7 Cpu 1211c Simatic S7 Cpu 1200 FirmwareSimatic S7 Cpu 1212c+3 more May 6, 2026 Mar 24, 2014 N/A· v4 N/A· v3 8.3 HIGH· v2 The random-number generator on Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 does not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic protection mechanisms a...Show more The random-number generator on Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 does not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic protection mechanisms and hijack sessions via unspecified vectors, a different vulnerability than CVE-2014-2251.Show less
CVE-2014-2259 1Siemens 1Simatic S7 1500 Cpu Firmware May 6, 2026 Mar 16, 2014 N/A· v4 N/A· v3 7.8 HIGH· v2 Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTPS packets.
CVE-2014-2257 1Siemens 1Simatic S7 1500 Cpu Firmware May 6, 2026 Mar 16, 2014 N/A· v4 N/A· v3 7.8 HIGH· v2 Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted ISO-TSAP packets.
CVE-2014-2255 1Siemens 1Simatic S7 1500 Cpu Firmware May 6, 2026 Mar 16, 2014 N/A· v4 N/A· v3 7.8 HIGH· v2 Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTP packets.
CVE-2014-2253 1Siemens 1Simatic S7 1500 Cpu Firmware May 6, 2026 Mar 16, 2014 N/A· v4 N/A· v3 6.1 MEDIUM· v2 Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted Profinet packets.
CVE-2014-2251 1Siemens 1Simatic S7 1500 Cpu Firmware May 6, 2026 Mar 16, 2014 N/A· v4 N/A· v3 8.3 HIGH· v2 The random-number generator on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 does not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic protection mechanisms...Show more The random-number generator on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 does not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic protection mechanisms and hijack sessions via unspecified vectors.Show less
CVE-2014-2249 1Siemens 1Simatic S7 1500 Cpu Firmware May 6, 2026 Mar 16, 2014 N/A· v4 N/A· v3 5.8 MEDIUM· v2 Cross-site request forgery (CSRF) vulnerability on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 and SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allows remote attackers to hijack the aut...Show more Cross-site request forgery (CSRF) vulnerability on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 and SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.Show less
CVE-2014-2248 1Siemens 1Simatic S7 1500 Cpu Firmware May 6, 2026 Mar 16, 2014 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Open redirect vulnerability in the integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks...Show more Open redirect vulnerability in the integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.Show less
CVE-2014-2247 1Siemens 1Simatic S7 1500 Cpu Firmware May 6, 2026 Mar 16, 2014 N/A· v4 N/A· v3 5.8 MEDIUM· v2 The integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to inject headers via unspecified vectors.
CVE-2014-2246 1Siemens 1Simatic S7 1500 Cpu Firmware May 6, 2026 Mar 16, 2014 N/A· v4 N/A· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to inject arbitrary web script or HTML via unspecified v...Show more Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.Show less
CVE-2014-1966 1Siemens 1Ruggedcom Rugged Operating System Apr 29, 2026 Feb 24, 2014 N/A· v4 N/A· v3 7.8 HIGH· v2 The SNMP implementation in Siemens RuggedCom ROS before 3.11, ROS 3.11 for RS950G, ROS 3.12 before 3.12.4, and ROS 4.0 for RSG2488 allows remote attackers to cause a denial of service (device outage) via crafted packets.
CVE-2014-1699 1Siemens 1Simatic Wincc Open Architecture Apr 29, 2026 Feb 7, 2014 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to cause a denial of service (monitoring-service outage) via malformed HTTP requests to port 4999.
CVE-2014-1698 1Siemens 1Simatic Wincc Open Architecture Apr 29, 2026 Feb 7, 2014 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Directory traversal vulnerability in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to read arbitrary files via crafted packets to TCP port 4999.
CVE-2014-1697 1Siemens 1Simatic Wincc Open Architecture Apr 29, 2026 Feb 7, 2014 N/A· v4 N/A· v3 7.5 HIGH· v2 The integrated web server in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to execute arbitrary code via crafted packets to TCP port 4999.
CVE-2014-1696 1Siemens 1Simatic Wincc Open Architecture Apr 29, 2026 Feb 7, 2014 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Siemens SIMATIC WinCC OA before 3.12 P002 January uses a weak hash algorithm for passwords, which makes it easier for remote attackers to obtain access via a brute-force attack.
CVE-2013-6926 1Siemens 1Ruggedcom Rugged Operating System Apr 29, 2026 Dec 17, 2013 N/A· v4 N/A· v3 8.0 HIGH· v2 The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote authenticated users to bypass intended restrictions on administrative actions by leveraging access to a (1) guest or (2) operator account.
CVE-2013-6925 1Siemens 1Ruggedcom Rugged Operating System Apr 29, 2026 Dec 17, 2013 N/A· v4 N/A· v3 8.3 HIGH· v2 The integrated HTTPS server in Siemens RuggedCom ROS before 3.12.2 allows remote attackers to hijack web sessions by predicting a session id value.
CVE-2013-6840 1Siemens 1Comos Apr 29, 2026 Dec 10, 2013 N/A· v4 N/A· v3 6.9 MEDIUM· v2 Siemens COMOS before 9.2.0.8.1, 10.0 before 10.0.3.1.40, and 10.1 before 10.1.0.0.2 allows local users to gain database privileges via unspecified vectors.

Previous 1...102103104...109 Next