Lucene search
K

333 matches found

CVE
CVE
added 2017/08/30 7:0 p.m.64 views

CVE-2017-12735

Siemens LOGO! 8 BM (incl. SIPLUS variants) is affected by CVE-2017-12735. All versions before v8.3 are vulnerable to a Man-in-the-Middle attack that could allow an attacker to decrypt and modify traffic between the LOGO! BM and other devices. The issue is mitigated by updating to firmware v8.3 (n...

7.4CVSS7.2AI score0.01126EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2016/11/18 9:59 p.m.21 views

CVE-2016-8562

A vulnerability has been identified in SIMATIC CP 1543-1 All versions V2.0.28, SIPLUS NET CP 1543-1 All versions V2.0.28. Under special conditions it was possible to write SNMP variables on port 161/udp which should be read-only and should only be configured with TIA-Portal. A write to these...

7.5CVSS5.3AI score0.03624EPSS
Exploits0References5
Prion
Prion
added 2016/11/18 9:59 p.m.20 views

Design/Logic Flaw

A vulnerability has been identified in SIMATIC CP 1543-1 All versions V2.0.28, SIPLUS NET CP 1543-1 All versions V2.0.28. Users with elevated privileges to TIA-Portal and project data on the engineering station could possibly get privileged access on affected devices...

6CVSS6.8AI score0.01585EPSS
Exploits0References4
Prion
Prion
added 2016/11/18 9:59 p.m.24 views

Design/Logic Flaw

A vulnerability has been identified in SIMATIC CP 1543-1 All versions V2.0.28, SIPLUS NET CP 1543-1 All versions V2.0.28. Under special conditions it was possible to write SNMP variables on port 161/udp which should be read-only and should only be configured with TIA-Portal. A write to these...

3.5CVSS6.8AI score0.03624EPSS
Exploits0References4
Cvelist
Cvelist
added 2016/11/18 9:0 p.m.34 views

CVE-2016-8562

A vulnerability has been identified in SIMATIC CP 1543-1 All versions V2.0.28, SIPLUS NET CP 1543-1 All versions V2.0.28. Under special conditions it was possible to write SNMP variables on port 161/udp which should be read-only and should only be configured with TIA-Portal. A write to these...

5.1AI score0.03624EPSS
Exploits0References4
CVE
CVE
added 2016/11/18 9:0 p.m.1007 views

CVE-2016-8562

Siemens SIMATIC CP 1543-1 and SIPLUS NET CP 1543-1 (versions before 2.0.28) are affected by CVE-2016-8562. Under special conditions, SNMP variables on port 161/UDP, which should be read-only, can be written, potentially reducing availability or causing denial-of-service. The ICS advisory notes th...

7.5CVSS5.4AI score0.03624EPSS
In wildExploits0References5Affected Software1
Cvelist
Cvelist
added 2016/11/18 9:0 p.m.31 views

CVE-2016-8561

A vulnerability has been identified in SIMATIC CP 1543-1 All versions V2.0.28, SIPLUS NET CP 1543-1 All versions V2.0.28. Users with elevated privileges to TIA-Portal and project data on the engineering station could possibly get privileged access on affected devices...

6.3AI score0.01585EPSS
Exploits0References4
CVE
CVE
added 2016/11/18 9:0 p.m.53 views

CVE-2016-8561

Summary (CVE-2016-8561) : The Siemens SIMATIC CP 1543-1 and SIPLUS NET CP 1543-1 are affected (versions prior to 2.0.28). The root cause is improper privilege management (CWE-269), enabling users with elevated TIA-Portal and project-data access to gain privileged access on the device. The ICS adv...

6.6CVSS6.3AI score0.01585EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKB
added 2016/11/18 12:0 a.m.29 views

CVE-2016-8562

A vulnerability has been identified in SIMATIC CP 1543-1 All versions V2.0.28, SIPLUS NET CP 1543-1 All versions V2.0.28. Under special conditions it was possible to write SNMP variables on port 161/udp which should be read-only and should only be configured with TIA-Portal. A write to these...

7.5CVSS6.1AI score0.03624EPSS
In wildExploits0References5
Prion
Prion
added 2015/11/27 3:59 p.m.14 views

Code injection

A vulnerability has been identified in SIMATIC NET CP 342-5 incl. SIPLUS variants All versions, SIMATIC NET CP 343-1 Advanced incl. SIPLUS variants All versions V3.0.44, SIMATIC NET CP 343-1 Lean incl. SIPLUS variants All versions V3.1.1, SIMATIC NET CP 343-1 Standard incl. SIPLUS variants All...

9.7CVSS6.8AI score0.02149EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2013/05/24 8:55 p.m.17 views

Design/Logic Flaw

A vulnerability has been identified in SCALANCE X-200 switch family incl. SIPLUS NET variants Versions V5.0.0 for CVE-2013-3633 and versions V4.5.0 for CVE-2013-3634, SCALANCE X-200IRT switch family incl. SIPLUS NET variants All versions V5.1.0. The user privileges for the web interface are only...

8CVSS6.9AI score0.01445EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2013/05/24 8:0 p.m.30 views

CVE-2013-3634

A vulnerability has been identified in SCALANCE X-200 switch family incl. SIPLUS NET variants Versions V5.0.0 for CVE-2013-3633 and versions V4.5.0 for CVE-2013-3634, SCALANCE X-200IRT switch family incl. SIPLUS NET variants All versions V5.1.0. The implementation of SNMPv3 does not check the use...

6.6AI score0.01445EPSS
Exploits0References1
CVE
CVE
added 2013/05/24 8:0 p.m.51 views

CVE-2013-3634

Summary (concrete details present): Siemens SCALANCE X-200 and X-200IRT switches (incl. SIPLUS NET variants) are affected by two CVEs (CVE-2013-3633 and CVE-2013-3634). Root cause: SNMPv3 does not sufficiently check user credentials, enabling command execution via SNMP commands, and web interface...

7.5CVSS6.8AI score0.01445EPSS
Exploits0References1Affected Software7
Rows per page
Query Builder