Siemens : Security Vulnerabilities, CVEs, CVSS score between 7 and 7.99
Buffer overflow in Siemens 45 series mobile phones allows remote attackers to cause a denial of service (disconnect and unavailable inbox) via a Short Message Service (SMS) message with a long image name.
Max CVSS
7.8
EPSS Score
0.91%
Published
2003-12-31
Updated
2017-07-29
The Siemens SpeedStream 6520 router allows remote attackers to cause a denial of service (web interface crash) via an HTTP request to basehelp_English.htm with a large integer in the Content-Length field.
Max CVSS
7.8
EPSS Score
1.35%
Published
2008-03-10
Updated
2018-10-11
Siemens C450 IP and C475 IP VoIP devices allow remote attackers to cause a denial of service (disconnected calls and device reboot) via a crafted SIP packet to UDP port 5060.
Max CVSS
7.8
EPSS Score
9.65%
Published
2009-08-25
Updated
2018-10-11
The Siemens Gigaset SE361 WLAN router allows remote attackers to cause a denial of service (device reboot) via a flood of crafted TCP packets to port 1723.
Max CVSS
7.8
EPSS Score
20.02%
Published
2009-09-23
Updated
2018-10-10
Siemens Simatic WinCC and PCS 7 SCADA system uses a hard-coded password, which allows local users to access a back-end database and gain privileges, as demonstrated in the wild in July 2010 by the Stuxnet worm, a different vulnerability than CVE-2010-2568.
Max CVSS
7.8
EPSS Score
0.09%
Published
2010-07-22
Updated
2024-02-13
Directory traversal vulnerability in miniweb.exe in the HMI web server in Siemens WinCC flexible 2004, 2005, 2007, and 2008 before SP3; WinCC V11 (aka TIA portal) before SP2 Update 1; the TP, OP, MP, Comfort Panels, and Mobile Panels SIMATIC HMI panels; WinCC V11 Runtime Advanced; and WinCC flexible Runtime allows remote attackers to read arbitrary files via a ..%5c (dot dot backslash) in a URI.
Max CVSS
7.8
EPSS Score
1.06%
Published
2012-02-03
Updated
2017-08-29
Buffer overflow in the embedded web server on the Siemens Scalance X Industrial Ethernet switch X414-3E before 3.7.1, X308-2M before 3.7.2, X-300EEC before 3.7.2, XR-300 before 3.7.2, and X-300 before 3.7.2 allows remote attackers to cause a denial of service (device reboot) or possibly execute arbitrary code via a malformed URL.
Max CVSS
7.8
EPSS Score
6.08%
Published
2012-04-18
Updated
2012-11-20
Siemens SIMATIC S7-400 PN CPU devices with firmware 6 before 6.0.3 allow remote attackers to cause a denial of service (defect-mode transition and service outage) via crafted ICMP packets.
Max CVSS
7.8
EPSS Score
0.70%
Published
2012-07-31
Updated
2020-04-13
Siemens SIMATIC S7-400 PN CPU devices with firmware 5.x allow remote attackers to cause a denial of service (defect-mode transition and service outage) via (1) malformed HTTP traffic or (2) malformed IP packets.
Max CVSS
7.8
EPSS Score
0.67%
Published
2012-07-31
Updated
2020-04-13
Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage) via crafted packets to TCP port 102 (aka the ISO-TSAP port).
Max CVSS
7.8
EPSS Score
0.26%
Published
2013-04-22
Updated
2022-02-01
Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage) via crafted packets to UDP port 161 (aka the SNMP port).
Max CVSS
7.8
EPSS Score
0.26%
Published
2013-04-22
Updated
2022-02-01
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to obtain sensitive server and statistics information via unspecified vectors.
Max CVSS
7.8
EPSS Score
0.32%
Published
2013-07-18
Updated
2013-08-22
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) before 2 R0.32.0, and 7 before 7 R1.7.0, allows remote attackers to read arbitrary files via unspecified vectors.
Max CVSS
7.8
EPSS Score
0.32%
Published
2013-07-18
Updated
2013-08-22
The SNMP implementation in Siemens RuggedCom ROS before 3.11, ROS 3.11 for RS950G, ROS 3.12 before 3.12.4, and ROS 4.0 for RSG2488 allows remote attackers to cause a denial of service (device outage) via crafted packets.
Max CVSS
7.8
EPSS Score
0.22%
Published
2014-02-24
Updated
2022-02-01
Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTP packets, a different vulnerability than CVE-2014-2255.
Max CVSS
7.8
EPSS Score
0.79%
Published
2014-03-24
Updated
2020-02-10
Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTP packets.
Max CVSS
7.8
EPSS Score
0.39%
Published
2014-03-16
Updated
2020-02-10
Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted ISO-TSAP packets, a different vulnerability than CVE-2014-2257.
Max CVSS
7.8
EPSS Score
0.70%
Published
2014-03-24
Updated
2020-02-10
Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted ISO-TSAP packets.
Max CVSS
7.8
EPSS Score
0.70%
Published
2014-03-16
Updated
2020-02-10
Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTPS packets, a different vulnerability than CVE-2014-2259.
Max CVSS
7.8
EPSS Score
0.79%
Published
2014-03-24
Updated
2020-02-10
Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTPS packets.
Max CVSS
7.8
EPSS Score
0.39%
Published
2014-03-16
Updated
2020-02-10
The web server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote attackers to cause a denial of service (reboot) via malformed HTTP requests.
Max CVSS
7.8
EPSS Score
0.24%
Published
2015-01-21
Updated
2020-02-10
Siemens SPC controllers SPC4000, SPC5000, and SPC6000 before 3.6.0 allow remote attackers to cause a denial of service (device restart) via crafted packets.
Max CVSS
7.8
EPSS Score
0.30%
Published
2015-03-07
Updated
2015-03-09
Siemens SIMATIC S7-300 CPU devices allow remote attackers to cause a denial of service (defect-mode transition) via crafted packets on (1) TCP port 102 or (2) Profibus.
Max CVSS
7.8
EPSS Score
26.17%
Published
2015-03-07
Updated
2018-06-02
A vulnerability has been identified in Firmware variant PROFINET IO for EN100 Ethernet module : All versions < V1.04.01; Firmware variant Modbus TCP for EN100 Ethernet module : All versions < V1.11.00; Firmware variant DNP3 TCP for EN100 Ethernet module : All versions < V1.03; Firmware variant IEC 104 for EN100 Ethernet module : All versions < V1.21; EN100 Ethernet module included in SIPROTEC Merging Unit 6MU80 : All versions < 1.02.02. Specially crafted packets sent to port 50000/UDP could cause a denial-of-service of the affected device. A manual reboot may be required to recover the service of the device.
Max CVSS
7.8
EPSS Score
20.94%
Published
2015-07-18
Updated
2018-03-23
Siemens SIMATIC S7-1500 CPU devices before 1.8.3 allow remote attackers to cause a denial of service (STOP mode transition) via crafted packets on TCP port 102.
Max CVSS
7.8
EPSS Score
0.78%
Published
2016-02-08
Updated
2020-02-10