Lucene search
K

795 matches found

Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.5 views

PT-2026-24220

🚨CVE CVE-2026-25570 A vulnerability has been identified in SICAM SIAPP SDK All versions V2.1.7. The SICAM SIAPP SDK does not perform checks on input values potentially resulting in s… https://t.co/bXy8yoTmX2 ----- Traducción: Se ha identificado… https://t.co/utmtNgl3sv...

7.8CVSS6AI score0.00142EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.7 views

Siemens SICAM SIAPP SDK 安全漏洞

Siemens SICAM SIAPP SDK is a software development kit from Siemens, Germany. A buffer overflow vulnerability exists in Siemens SICAM SIAPP SDK versions prior to V2.1.7. The vulnerability stems from a client-side component that does not perform a maximum length check on certain variables before us...

5.9CVSS6.2AI score0.00098EPSS
Exploits0References1
CNVD
CNVD
added 2026/03/10 12:0 a.m.2 views

Siemens SICAM SIAPP SDK has multiple vulnerabilities

The SICAM SIAPP SDK is a specialized toolkit designed to help developers build and simulate application containers that run on Siemens-specific hardware platforms. The Siemens SICAM SIAPP SDK contains multiple vulnerabilities that can be exploited by an attacker to compromise a customer-developed...

5.8AI score
Exploits0References1
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.11 views

Siemens SICAM SIAPP SDK 安全漏洞

Siemens SICAM SIAPP SDK is a software development kit from Siemens, Germany. A path traversal vulnerability exists in the Siemens SICAM SIAPP SDK that originates from performing file deletion without properly validating the file path or destination, which can be exploited by an attacker to cause ...

7.1CVSS6AI score0.00123EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.8 views

PT-2026-24222

A vulnerability has been identified in SICAM SIAPP SDK All versions V2.1.7. The SICAM SIAPP SDK server component does not enforce maximum length checks on certain variables before use. This could allow an attacker to send an oversized input that could trigger a stack overflow crashing the process...

5.9CVSS5.8AI score0.00119EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/09 9:54 a.m.8 views

CVE-2020-10042

A vulnerability has been identified in SICAM MMU All versions V2.05, SICAM SGU All versions, SICAM T All versions V2.18. A buffer overflow in various positions of the web application might enable an attacker with access to the web application to execute arbitrary code over the network...

9.8CVSS8.1AI score0.01889EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:53 a.m.7 views

CVE-2020-10044

A vulnerability has been identified in SICAM MMU All versions V2.05, SICAM SGU All versions, SICAM T All versions V2.18. An attacker with access to the network could be able to install specially crafted firmware to the device...

7.5CVSS6.6AI score0.00826EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:53 a.m.7 views

CVE-2020-10040

A vulnerability has been identified in SICAM MMU All versions V2.05, SICAM SGU All versions, SICAM T All versions V2.18. An attacker with local access to the device might be able to retrieve some passwords in clear text...

5.5CVSS6.4AI score0.00195EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:52 a.m.8 views

CVE-2020-10039

A vulnerability has been identified in SICAM MMU All versions V2.05, SICAM SGU All versions, SICAM T All versions V2.18. An attacker in a privileged network position between a legitimate user and the web server might be able to conduct a Man-in-the-middle attack and gain read and write access to...

8.1CVSS6.6AI score0.00523EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:52 a.m.5 views

CVE-2020-10045

A vulnerability has been identified in SICAM MMU All versions V2.05, SICAM SGU All versions, SICAM T All versions V2.18. An error in the challenge-response procedure could allow an attacker to replay authentication traffic and gain access to protected areas of the web application...

8.8CVSS7AI score0.01066EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:51 a.m.5 views

CVE-2020-10041

A vulnerability has been identified in SICAM MMU All versions V2.05, SICAM SGU All versions, SICAM T All versions V2.18. A stored Cross-Site-Scripting XSS vulnerability is present in different locations of the web application. An attacker might be able to take over a session of a legitimate user...

6.1CVSS5.9AI score0.00767EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:51 a.m.11 views

CVE-2020-10043

A vulnerability has been identified in SICAM MMU All versions V2.05, SICAM SGU All versions, SICAM T All versions V2.18. The web server could allow Cross-Site Scripting XSS attacks if unsuspecting users are tricked into accessing a malicious link...

6.1CVSS5.8AI score0.00641EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 9:16 a.m.15 views

CVE-2025-40753

A vulnerability has been identified in POWER METER SICAM Q100 7KG9501-0AA01-0AA1 All versions = V2.60 = V2.60 = V2.60 = V2.60 = V2.70 V2.80. Affected devices export the password for the SMTP account as plain text in the Configuration File. This could allow an authenticated local attacker to extra...

6.8CVSS7.1AI score0.00086EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.7 views

Siemens SICAM Q100/Q200 Cleartext Storage of Sensitive Information (CVE-2025-40753)

Affected devices export the password for the SMTP account as plain text in the Configuration File. This could allow an authenticated local attacker to extract it and use the configured SMTP service for arbitrary purposes. This plugin only works with Tenable.ot. Please visit...

6.8CVSS5.8AI score0.00086EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.5 views

Siemens SICAM Q100/Q200 Cleartext Storage of Sensitive Information (CVE-2025-40752)

Affected devices store the password for the SMTP account as plain text. This could allow an authenticated local attacker to extract it and use the configured SMTP service for arbitrary purposes. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for...

6.8CVSS5.9AI score0.00086EPSS
Exploits0References5
CISA
CISA
added 2025/11/13 12:0 p.m.6 views

CISA Releases 18 Industrial Control Systems Advisories

CISA released 18 Industrial Control Systems ICS Advisories. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-317-01 Mitsubishi Electric MELSEC iQ-F Series ICSA-25-317-02 AVEVA Application Server IDE ICSA-25-317-03...

6.6AI score
Exploits0References18
ICS
ICS
added 2025/11/13 7:0 a.m.5 views

Siemens SICAM P850 family and SICAM P855 family

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to perform arbitrary actions on the device on behalf of a legitimate user, or impersonate that user. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

6.1AI score
Exploits0References13
NCSC
NCSC
added 2025/11/11 6:14 p.m.7 views

Vulnerabilities fixed in Siemens products

Siemens has fixed vulnerabilities in several products such as Altair Grid Engine, COMOS, LOGO, SICAM, SIDOOR, SIMATIC, SIPLUS, Spectrum Power and Solid Edge. The vulnerabilities potentially enable a malicious person to carry out attacks that can lead to the following categories of damage: -...

9.3CVSS8.6AI score0.0118EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-2506

Malware in sbrugna...

6.1CVSS6.3AI score0.00767EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-6783

Malware in sbrugna...

6.7CVSS6.4AI score0.00313EPSS
Exploits0References4
Rows per page
Query Builder