← Back

Siemens

siemens

2,161 CVEs • 4,155 products

Products (4,155)

Click to collapse
Toggle
Teamcenter Visualization
teamcenter_visualization
188 CVEs
Jt2go
jt2go
166 CVEs
Tecnomatix Plant Simulation
tecnomatix_plant_simulation
85 CVEs
Telecontrol Server Basic
telecontrol_server_basic
77 CVEs
Simcenter Femap
simcenter_femap
77 CVEs
Sinema Remote Connect Server
sinema_remote_connect_server
71 CVEs
Sinec Infrastructure Network Services
sinec_infrastructure_network_services
68 CVEs
Scalance W1750d Firmware
scalance_w1750d_firmware
62 CVEs
Parasolid
parasolid
52 CVEs
Solid Edge
solid_edge
47 CVEs
Wincc
wincc
43 CVEs
Sinec Nms
sinec-nms
43 CVEs
Sinec Ins
sinec_ins
42 CVEs
Solid Edge Se2023
solid_edge_se2023
36 CVEs
Sppa T3000 Ms3000 Migration Server
sppa-t3000_ms3000_migration_server
35 CVEs
Jt Utilities
jt_utilities
32 CVEs
Comos
comos
31 CVEs
Simatic Wincc
simatic_wincc
30 CVEs
Jt Open Toolkit
jt_open_toolkit
29 CVEs
Scalance Lpe9403 Firmware
scalance_lpe9403_firmware
27 CVEs
Simatic Pcs 7
simatic_pcs_7
25 CVEs
Simatic Pcs7
simatic_pcs7
25 CVEs
Nucleus Net
nucleus_net
25 CVEs
Nucleus Source Code
nucleus_source_code
25 CVEs
Scalance S615 Firmware
scalance_s615_firmware
24 CVEs
Simatic Itp1000 Firmware
simatic_itp1000_firmware
24 CVEs
Simatic Ipc477e Firmware
simatic_ipc477e_firmware
24 CVEs
Simatic Ipc427e Firmware
simatic_ipc427e_firmware
24 CVEs
Simatic Pcs Neo
simatic_pcs_neo
24 CVEs
Ruggedcom Rox Mx5000 Firmware
ruggedcom_rox_mx5000_firmware
23 CVEs
Ruggedcom Rox Rx1400 Firmware
ruggedcom_rox_rx1400_firmware
23 CVEs
Ruggedcom Rox Rx1500 Firmware
ruggedcom_rox_rx1500_firmware
23 CVEs
Ruggedcom Rox Rx1501 Firmware
ruggedcom_rox_rx1501_firmware
23 CVEs
Ruggedcom Rox Rx1510 Firmware
ruggedcom_rox_rx1510_firmware
23 CVEs
Ruggedcom Rox Rx1511 Firmware
ruggedcom_rox_rx1511_firmware
23 CVEs
Ruggedcom Rox Rx1512 Firmware
ruggedcom_rox_rx1512_firmware
23 CVEs
Ruggedcom Rox Rx5000 Firmware
ruggedcom_rox_rx5000_firmware
23 CVEs
Simatic Field Pg M5 Firmware
simatic_field_pg_m5_firmware
22 CVEs
Nucleus Readystart V3
nucleus_readystart_v3
20 CVEs
Pads Viewer
pads_viewer
20 CVEs
Solid Edge Se2024
solid_edge_se2024
20 CVEs
Simatic Step 7
simatic_step_7
19 CVEs
Simatic Itc1500 Firmware
simatic_itc1500_firmware
19 CVEs
Simatic Itc1500 Pro Firmware
simatic_itc1500_pro_firmware
19 CVEs
Simatic Itc1900 Firmware
simatic_itc1900_firmware
19 CVEs
Simatic Itc1900 Pro Firmware
simatic_itc1900_pro_firmware
19 CVEs
Simatic Itc2200 Firmware
simatic_itc2200_firmware
19 CVEs
Simatic Itc2200 Pro Firmware
simatic_itc2200_pro_firmware
19 CVEs
Sppa T3000 Application Server
sppa-t3000_application_server
19 CVEs
Simatic Ipc627e Firmware
simatic_ipc627e_firmware
19 CVEs
Simatic Ipc647e Firmware
simatic_ipc647e_firmware
19 CVEs
Simatic Ipc847e Firmware
simatic_ipc847e_firmware
19 CVEs
Ruggedcom Rox Rx1524 Firmware
ruggedcom_rox_rx1524_firmware
19 CVEs
Ruggedcom Rox Rx1536 Firmware
ruggedcom_rox_rx1536_firmware
19 CVEs
Tecnomatix
tecnomatix
19 CVEs
Simatic Field Pg M6 Firmware
simatic_field_pg_m6_firmware
18 CVEs
Simatic Ipc677e Firmware
simatic_ipc677e_firmware
18 CVEs
Sinema Server
sinema_server
17 CVEs
Opcenter Quality
opcenter_quality
17 CVEs
Simatic S7 1200 Cpu 1211c Firmware
simatic_s7-1200_cpu_1211c_firmware
16 CVEs
Simatic S7 1200 Cpu 1212c Firmware
simatic_s7-1200_cpu_1212c_firmware
16 CVEs
Simatic S7 1200 Cpu 1214c Firmware
simatic_s7-1200_cpu_1214c_firmware
16 CVEs
Sipass Integrated
sipass_integrated
16 CVEs
Logo! 8 Bm Firmware
logo!_8_bm_firmware
16 CVEs
Apogee Pxc Modular Firmware
apogee_pxc_modular_firmware
16 CVEs
Talon Tc Compact Firmware
talon_tc_compact_firmware
16 CVEs
Tim 1531 Irc Firmware
tim_1531_irc_firmware
16 CVEs
Scalance Xf204 Firmware
scalance_xf204_firmware
16 CVEs
Scalance Xf204 2ba Irt Firmware
scalance_xf204-2ba_irt_firmware
16 CVEs
Ruggedcom Crossbow
ruggedcom_crossbow
16 CVEs
Simatic Cn 4100 Firmware
simatic_cn_4100_firmware
16 CVEs
Sinec Traffic Analyzer
sinec_traffic_analyzer
16 CVEs
Scalance X308 2m Firmware
scalance_x308-2m_firmware
15 CVEs
Simatic S7 1200 Cpu 1215c Firmware
simatic_s7-1200_cpu_1215c_firmware
15 CVEs
Simatic S7 1200 Cpu 1217c Firmware
simatic_s7-1200_cpu_1217c_firmware
15 CVEs
Talon Tc Modular Firmware
talon_tc_modular_firmware
15 CVEs
Simatic Hmi Ktp Mobile Panels Ktp400f Firmware
simatic_hmi_ktp_mobile_panels_ktp400f_firmware
15 CVEs
Simatic Hmi Ktp Mobile Panels Ktp700 Firmware
simatic_hmi_ktp_mobile_panels_ktp700_firmware
15 CVEs
Simatic Hmi Ktp Mobile Panels Ktp700f Firmware
simatic_hmi_ktp_mobile_panels_ktp700f_firmware
15 CVEs
Simatic Hmi Ktp Mobile Panels Ktp900 Firmware
simatic_hmi_ktp_mobile_panels_ktp900_firmware
15 CVEs
Simatic Hmi Ktp Mobile Panels Ktp900f Firmware
simatic_hmi_ktp_mobile_panels_ktp900f_firmware
15 CVEs
Apogee Modular Equiment Controller Firmware
apogee_modular_equiment_controller_firmware
15 CVEs
Apogee Modular Building Controller Firmware
apogee_modular_building_controller_firmware
15 CVEs
Solid Edge Se2021 Firmware
solid_edge_se2021_firmware
15 CVEs
Automation License Manager
automation_license_manager
14 CVEs
Simatic S7 1500 Cpu Firmware
simatic_s7-1500_cpu_firmware
14 CVEs
Simatic Wincc (tia Portal)
simatic_wincc_(tia_portal)
14 CVEs
Sinvr 3 Central Control Server
sinvr_3_central_control_server
14 CVEs
Sinvr 3 Video Server
sinvr_3_video_server
14 CVEs
Capital Vstar
capital_vstar
14 CVEs
Scalance X307 3 Firmware
scalance_x307-3_firmware
14 CVEs
Scalance X307 3ld Firmware
scalance_x307-3ld_firmware
14 CVEs
Scalance X308 2 Firmware
scalance_x308-2_firmware
14 CVEs
Scalance X308 2ld Firmware
scalance_x308-2ld_firmware
14 CVEs
Scalance X308 2lh Firmware
scalance_x308-2lh_firmware
14 CVEs
Scalance X308 2m Ts Firmware
scalance_x308-2m_ts_firmware
14 CVEs
Scalance X310 Firmware
scalance_x310_firmware
14 CVEs
Scalance X310fe Firmware
scalance_x310fe_firmware
14 CVEs
Scalance X320 1fe Firmware
scalance_x320-1fe_firmware
14 CVEs
Scalance Xr324 12m Firmware
scalance_xr324-12m_firmware
14 CVEs

CVEs (2,161)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-41283
1Siemens
2Jt2go
Teamcenter Visualization
Nov 21, 2024
Dec 13, 2022
N/A· v4
7.8 HIGH· v3
N/A· v2
A vulnerability has been identified in JT2Go (All versions < V14.1.0.6), Teamcenter Visualization V13.2 (All versions < V13.2.0.12), Teamcenter Visualization V13.3 (All versions < V13.3.0.8), Teamcenter Visualization V14...Show more
A vulnerability has been identified in JT2Go (All versions < V14.1.0.6), Teamcenter Visualization V13.2 (All versions < V13.2.0.12), Teamcenter Visualization V13.3 (All versions < V13.3.0.8), Teamcenter Visualization V14.0 (All versions < V14.0.0.4), Teamcenter Visualization V14.1 (All versions < V14.1.0.6). The CGM_NIST_Loader.dll contains an out of bounds write vulnerability when parsing a CGM file. An attacker can leverage this vulnerability to execute code in the context of the current process.Show less
CVE-2022-41282
1Siemens
2Jt2go
Teamcenter Visualization
Nov 21, 2024
Dec 13, 2022
N/A· v4
7.8 HIGH· v3
N/A· v2
A vulnerability has been identified in JT2Go (All versions < V14.1.0.6), Teamcenter Visualization V13.2 (All versions < V13.2.0.12), Teamcenter Visualization V13.3 (All versions < V13.3.0.8), Teamcenter Visualization V14...Show more
A vulnerability has been identified in JT2Go (All versions < V14.1.0.6), Teamcenter Visualization V13.2 (All versions < V13.2.0.12), Teamcenter Visualization V13.3 (All versions < V13.3.0.8), Teamcenter Visualization V14.0 (All versions < V14.0.0.4), Teamcenter Visualization V14.1 (All versions < V14.1.0.6). The CGM_NIST_Loader.dll contains an out of bounds read vulnerability when parsing a CGM file. An attacker can leverage this vulnerability to execute code in the context of the current process.Show less
CVE-2022-41281
1Siemens
2Jt2go
Teamcenter Visualization
Nov 21, 2024
Dec 13, 2022
N/A· v4
7.8 HIGH· v3
N/A· v2
A vulnerability has been identified in JT2Go (All versions < V14.1.0.6), Teamcenter Visualization V13.2 (All versions < V13.2.0.12), Teamcenter Visualization V13.3 (All versions < V13.3.0.8), Teamcenter Visualization V14...Show more
A vulnerability has been identified in JT2Go (All versions < V14.1.0.6), Teamcenter Visualization V13.2 (All versions < V13.2.0.12), Teamcenter Visualization V13.3 (All versions < V13.3.0.8), Teamcenter Visualization V14.0 (All versions < V14.0.0.4), Teamcenter Visualization V14.1 (All versions < V14.1.0.6). The CGM_NIST_Loader.dll contains an out of bounds read vulnerability when parsing a CGM file. An attacker can leverage this vulnerability to execute code in the context of the current process.Show less
CVE-2022-41280
1Siemens
2Jt2go
Teamcenter Visualization
Nov 21, 2024
Dec 13, 2022
N/A· v4
5.5 MEDIUM· v3
N/A· v2
A vulnerability has been identified in JT2Go (All versions < V14.1.0.6), Teamcenter Visualization V13.2 (All versions < V13.2.0.12), Teamcenter Visualization V13.3 (All versions < V13.3.0.8), Teamcenter Visualization V14...Show more
A vulnerability has been identified in JT2Go (All versions < V14.1.0.6), Teamcenter Visualization V13.2 (All versions < V13.2.0.12), Teamcenter Visualization V13.3 (All versions < V13.3.0.8), Teamcenter Visualization V14.0 (All versions < V14.0.0.4), Teamcenter Visualization V14.1 (All versions < V14.1.0.6). The CGM_NIST_Loader.dll contains a null pointer dereference vulnerability while parsing specially crafted CGM files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.Show less
CVE-2022-41279
1Siemens
2Jt2go
Teamcenter Visualization
Nov 21, 2024
Dec 13, 2022
N/A· v4
5.5 MEDIUM· v3
N/A· v2
A vulnerability has been identified in JT2Go (All versions < V14.1.0.6), Teamcenter Visualization V13.2 (All versions < V13.2.0.12), Teamcenter Visualization V13.3 (All versions < V13.3.0.8), Teamcenter Visualization V14...Show more
A vulnerability has been identified in JT2Go (All versions < V14.1.0.6), Teamcenter Visualization V13.2 (All versions < V13.2.0.12), Teamcenter Visualization V13.3 (All versions < V13.3.0.8), Teamcenter Visualization V14.0 (All versions < V14.0.0.4), Teamcenter Visualization V14.1 (All versions < V14.1.0.6). The CGM_NIST_Loader.dll contains a null pointer dereference vulnerability while parsing specially crafted CGM files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.Show less
CVE-2022-41278
1Siemens
2Jt2go
Teamcenter Visualization
Nov 21, 2024
Dec 13, 2022
N/A· v4
5.5 MEDIUM· v3
N/A· v2
A vulnerability has been identified in JT2Go (All versions < V14.1.0.6), Teamcenter Visualization V13.2 (All versions < V13.2.0.12), Teamcenter Visualization V13.3 (All versions < V13.3.0.8), Teamcenter Visualization V14...Show more
A vulnerability has been identified in JT2Go (All versions < V14.1.0.6), Teamcenter Visualization V13.2 (All versions < V13.2.0.12), Teamcenter Visualization V13.3 (All versions < V13.3.0.8), Teamcenter Visualization V14.0 (All versions < V14.0.0.4), Teamcenter Visualization V14.1 (All versions < V14.1.0.6). The CGM_NIST_Loader.dll contains a null pointer dereference vulnerability while parsing specially crafted CGM files. An attacker could leverage this vulnerability to crash the application causing denial of service condition.Show less
CVE-2021-44695
1Siemens
96Simatic Et 200 Sp Open Controller Cpu 1515sp Pc Firmware
Simatic S7 1200 Cpu 1211c FirmwareSimatic S7 1200 Cpu 1212c Firmware+93 more
Nov 21, 2024
Dec 13, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.
CVE-2021-44694
1Siemens
92Simatic Et 200 Sp Open Controller Cpu 1515sp Pc Firmware
Simatic S7 1200 Cpu 1211c FirmwareSimatic S7 1200 Cpu 1212c Firmware+89 more
Nov 21, 2024
Dec 13, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.
CVE-2021-44693
1Siemens
96Simatic Et 200 Sp Open Controller Cpu 1515sp Pc Firmware
Simatic S7 1200 Cpu 1211c FirmwareSimatic S7 1200 Cpu 1212c Firmware+93 more
Nov 21, 2024
Dec 13, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.
CVE-2021-40365
1Siemens
96Simatic Et 200 Sp Open Controller Cpu 1515sp Pc Firmware
Simatic S7 1200 Cpu 1211c FirmwareSimatic S7 1200 Cpu 1212c Firmware+93 more
Nov 21, 2024
Dec 13, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.
CVE-2022-35256
4Debian
LlhttpNodejs+1 more
4Debian Linux
LlhttpNode.js+1 more
Apr 24, 2025
Dec 5, 2022
N/A· v4
6.5 MEDIUM· v3
N/A· v2
The llhttp parser in the http module in Node v18.7.0 does not correctly handle header fields that are not terminated with CLRF. This may result in HTTP Request Smuggling.
CVE-2022-35255
3Debian
NodejsSiemens
3Debian Linux
Node.jsSinec Ins
Apr 24, 2025
Dec 5, 2022
N/A· v4
9.1 CRITICAL· v3
N/A· v2
A weak randomness in WebCrypto keygen vulnerability exists in Node.js 18 due to a change with EntropySource() in SecretKeyGenTraits::DoKeyGen() in src/crypto/crypto_keygen.cc. There are two problems with this: 1) It does...Show more
A weak randomness in WebCrypto keygen vulnerability exists in Node.js 18 due to a change with EntropySource() in SecretKeyGenTraits::DoKeyGen() in src/crypto/crypto_keygen.cc. There are two problems with this: 1) It does not check the return value, it assumes EntropySource() always succeeds, but it can (and sometimes will) fail. 2) The random data returned byEntropySource() may not be cryptographically strong and therefore not suitable as keying material.Show less
CVE-2022-42894
1Siemens
1Syngo Dynamics Cardiovascular Imaging And Information System
Apr 30, 2025
Nov 17, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). An unauthenticated Server-Side Request Forgery (SSRF) vulnerability was identified in one of the web services exposed on the syngo Dynami...Show more
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). An unauthenticated Server-Side Request Forgery (SSRF) vulnerability was identified in one of the web services exposed on the syngo Dynamics application that could allow for the leaking of NTLM credentials as well as local service enumeration.Show less
CVE-2022-42893
1Siemens
1Syngo Dynamics Cardiovascular Imaging And Information System
Apr 30, 2025
Nov 17, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper write access control that could allow to write dat...Show more
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper write access control that could allow to write data in any folder accessible to the account assigned to the website’s application pool.Show less
CVE-2022-42892
1Siemens
1Syngo Dynamics Cardiovascular Imaging And Information System
Apr 30, 2025
Nov 17, 2022
N/A· v4
5.3 MEDIUM· v3
N/A· v2
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper write access control that could allow directory li...Show more
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper write access control that could allow directory listing in any folder accessible to the account assigned to the website’s application pool.Show less
CVE-2022-42891
1Siemens
1Syngo Dynamics Cardiovascular Imaging And Information System
Apr 29, 2025
Nov 17, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper write access control that could allow to write dat...Show more
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper write access control that could allow to write data in any folder accessible to the account assigned to the website’s application pool.Show less
CVE-2022-42734
1Siemens
1Syngo Dynamics Cardiovascular Imaging And Information System
Apr 29, 2025
Nov 17, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper write access control that could allow to write dat...Show more
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper write access control that could allow to write data in any folder accessible to the account assigned to the website’s application pool.Show less
CVE-2022-42733
1Siemens
1Syngo Dynamics Cardiovascular Imaging And Information System
Apr 29, 2025
Nov 17, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper read access control that could allow files to be r...Show more
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper read access control that could allow files to be retrieved from any folder accessible to the account assigned to the website’s application pool.Show less
CVE-2022-42732
1Siemens
1Syngo Dynamics Cardiovascular Imaging And Information System
Apr 29, 2025
Nov 17, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper read access control that could allow files to be r...Show more
A vulnerability has been identified in syngo Dynamics (All versions < VA40G HF01). syngo Dynamics application server hosts a web service using an operation with improper read access control that could allow files to be retrieved from any folder accessible to the account assigned to the website’s application pool.Show less
CVE-2022-40225
1Siemens
1Siplus Tim 1531 Irc Firmware
Nov 21, 2024
Nov 10, 2022
6.9 MEDIUM· v4
7.5 HIGH· v3
N/A· v2
A vulnerability has been identified in SIPLUS TIM 1531 IRC (6AG1543-1MX00-7XE0) (All versions < V2.4.8), TIM 1531 IRC (6GK7543-1MX00-0XE0) (All versions < V2.4.8). Casting an internal value could lead to floating point e...Show more
A vulnerability has been identified in SIPLUS TIM 1531 IRC (6AG1543-1MX00-7XE0) (All versions < V2.4.8), TIM 1531 IRC (6GK7543-1MX00-0XE0) (All versions < V2.4.8). Casting an internal value could lead to floating point exception under certain circumstances. This could allow an attacker to cause a denial of service condition on affected devices.Show less