Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 3:20 a.m.8 views

CVE-2023-28832

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1. The web based management of affected devices does not properly validate user input, making it susceptible to command injection. This could allow an authenticated privileged remote attacker to...

7.2CVSS7.9AI score0.01535EPSS
Exploits0References1
OSV
OSV
added 2023/05/09 1:15 p.m.5 views

CVE-2023-28832

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1. The web based management of affected devices does not properly validate user input, making it susceptible to command injection. This could allow an authenticated privileged remote attacker to...

7.2CVSS7.4AI score0.01535EPSS
Exploits0References1
OSV
OSV
added 2023/05/09 1:15 p.m.4 views

CVE-2023-29103

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1, SIMATIC Cloud Connect 7 CC716 All versions V2.1. The affected device uses a hard-coded password to protect the diagnostic files. This could allow an authenticated attacker to access protected dat...

4.3CVSS5.7AI score0.00387EPSS
Exploits0References1
OSV
OSV
added 2023/05/09 1:15 p.m.3 views

CVE-2023-29105

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1, SIMATIC Cloud Connect 7 CC716 All versions V2.1. The affected device is vulnerable to a denial of service while parsing a random non-JSON MQTT payload. This could allow an attacker who can...

7.5CVSS7AI score0.00551EPSS
Exploits0References1
OSV
OSV
added 2023/05/09 1:15 p.m.4 views

CVE-2023-29106

A vulnerability has been identified in SIMATIC Cloud Connect 7 CC712 All versions = V2.0 = V2.0 V2.1. The export endpoint is accessible via REST API without authentication. This could allow an unauthenticated remote attacker to download the files available via the endpoint...

7.5CVSS7AI score0.00718EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.6 views

PT-2023-22152 · Siemens · Simatic Cloud Connect 7 Cc712 +1

Name of the Vulnerable Software and Affected Versions: SIMATIC Cloud Connect 7 CC712 versions 2.0 through 2.1 SIMATIC Cloud Connect 7 CC716 versions 2.0 through 2.1 Description: A path traversal vulnerability has been identified in the upload feature of the web-based management of the affected...

7.6CVSS7.3AI score0.00711EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.11 views

PT-2023-22155 · Siemens · Simatic Cloud Connect 7 Cc712 +1

Name of the Vulnerable Software and Affected Versions: SIMATIC Cloud Connect 7 CC712 versions 2.0 through 2.1 SIMATIC Cloud Connect 7 CC716 versions 2.0 through 2.1 Description: A vulnerability has been identified that could allow an unauthenticated remote attacker to gain access to additional...

5.3CVSS5.3AI score0.00646EPSS
Exploits0References2
Rows per page
Query Builder