Lucene search
K

26 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2016-9409

Malware in sbrugna...

6.6CVSS6.6AI score0.01585EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2021-20393

Malware in sbrugna...

6.5CVSS6.4AI score0.00245EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-44808

Malicious code in bioql PyPI...

8.7CVSS7.7AI score0.00471EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 6:46 a.m.11 views

CVE-2024-50310

A vulnerability has been identified in SIMATIC CP 1543-1 V4.0 6GK7543-1AX10-0XE0 All versions = V4.0.44 V4.0.50. Affected devices do not properly handle authorization. This could allow an unauthenticated remote attacker to gain access to the filesystem...

8.7CVSS7.2AI score0.00471EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/11/26 12:0 a.m.8 views

The vulnerability of microprogrammed communication module software of SIMATIC CP 1543-1, related to incorrect authorization, allows a intruder to circumvent existing security restrictions.

The vulnerability of the microprogramming software for the SIMATIC CP 1543-1 communication modules is related to incorrect authorization. Exploiting this vulnerability can allow an attacker, operating remotely, to circumvent existing security restrictions...

7.8CVSS7.4AI score0.00471EPSS
Exploits0References2
NVD
NVD
added 2024/11/12 1:15 p.m.35 views

CVE-2024-50310

A vulnerability has been identified in SIMATIC CP 1543-1 V4.0 6GK7543-1AX10-0XE0 All versions = V4.0.44 V4.0.50. Affected devices do not properly handle authorization. This could allow an unauthenticated remote attacker to gain access to the filesystem...

8.7CVSS0.00471EPSS
Exploits0References1
OSV
OSV
added 2024/11/12 1:15 p.m.2 views

CVE-2024-50310

A vulnerability has been identified in SIMATIC CP 1543-1 V4.0 6GK7543-1AX10-0XE0 All versions = V4.0.44 V4.0.50. Affected devices do not properly handle authorization. This could allow an unauthenticated remote attacker to gain access to the filesystem...

8.7CVSS7.2AI score0.00471EPSS
Exploits0References1
CVE
CVE
added 2024/11/12 12:49 p.m.63 views

CVE-2024-50310

The CVE-2024-50310 issue affects Siemens SIMATIC CP 1543-1 (V4.0) with firmware versions 4.0.44 through 4.0.49, where improper authorization could allow an unauthenticated remote attacker to access the filesystem. Public sources in connected documents specify remediation to update to version 4.0....

8.7CVSS7.3AI score0.00471EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/11/12 12:49 p.m.57 views

CVE-2024-50310

A vulnerability has been identified in SIMATIC CP 1543-1 V4.0 6GK7543-1AX10-0XE0 All versions = V4.0.44 V4.0.50. Affected devices do not properly handle authorization. This could allow an unauthenticated remote attacker to gain access to the filesystem...

8.7CVSS0.00471EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/11 12:0 a.m.5 views

PT-2024-8716

Name of the Vulnerable Software and Affected Versions SIMATIC CP 1543-1 versions 4.0.44 through 4.0.49 Description The issue is related to improper authorization handling in the SIMATIC CP 1543-1 communication module's firmware. This could allow an unauthenticated remote attacker to bypass existi...

8.7CVSS8.1AI score0.00471EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/12/22 12:0 a.m.37 views

Siemens Industrial Products Uncontrolled Resource Consumption (CVE-2019-11478)

Multiple industrial products are affected by a vulnerability in the kernel known as TCP SACK PANIC. A remote attacker could cause a denial of service condition by sending specially crafted TCP Selective Acknowledgment SACK sequences to affected products. This plugin only works with Tenable.ot...

7.5CVSS6.7AI score0.94686EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/05/02 12:0 a.m.12 views

Siemens SIMATIC CP Cleartext Storage of Sensitive Information (CVE-2021-33716)

A vulnerability has been identified in SIMATIC CP 1543-1 incl. SIPLUS variants All versions V3.0, SIMATIC CP 1545-1 All versions V1.1. An attacker with access to the subnet of the affected device could retrieve sensitive information stored in cleartext. This plugin only works with Tenable.ot...

6.5CVSS6.4AI score0.00245EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/05/02 12:0 a.m.23 views

Siemens SIMATIC CP 1543-1 Improper Privilege Management (CVE-2016-8561)

A vulnerability has been identified in SIMATIC CP 1543-1 All versions V2.0.28, SIPLUS NET CP 1543-1 All versions V2.0.28. Users with elevated privileges to TIA-Portal and project data on the engineering station could possibly get privileged access on affected devices. This plugin only works with...

6.6CVSS6.4AI score0.01585EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2023/05/02 12:0 a.m.45 views

Siemens (CVE-2019-12815)

An arbitrary file copy vulnerability in modcopy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more...

10CVSS7.5AI score0.96803EPSS
Exploits22References12
ICS
ICS
added 2022/04/14 12:0 p.m.65 views

Siemens SIMATIC CP 1543-1 (Update A)

1. EXECUTIVE SUMMARY CVSS v3 6.6 ATTENTION: Exploitable remotely Vendor: Siemens Equipment: SIMATIC CP 1543-1 Vulnerability : Improper Input Validation, Improper Privilege Management 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory titled ICSA-16-327-01 Siemens...

7.5CVSS7.6AI score0.03624EPSS
Exploits0References34
CISA KEV Catalog
CISA KEV Catalog
added 2022/03/03 12:0 a.m.25 views

Siemens SIMATIC CP 1543-1 Improper Privilege Management Vulnerability

An improper privilege management vulnerability exists within the Siemens SIMATIC Communication Processor CP that allows a privileged attacker to remotely cause a denial of service...

7.5CVSS5.9AI score0.03624EPSS
In wildExploits0
Prion
Prion
added 2021/09/14 11:15 a.m.19 views

Design/Logic Flaw

A vulnerability has been identified in SIMATIC CP 1543-1 incl. SIPLUS variants All versions V3.0, SIMATIC CP 1545-1 All versions V1.1. An attacker with access to the subnet of the affected device could retrieve sensitive information stored in cleartext...

3.3CVSS6.1AI score0.00245EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2021/09/14 10:47 a.m.69 views

CVE-2021-33716

The CVE-2021-33716 issue affects Siemens SIMATIC CP 1543-1 (incl. SIPLUS variants) and CP 1545-1. Affected versions: CP 1543-1 before v3.0 and CP 1545-1 before v1.1. Root cause: cleartext storage of sensitive information that can be retrieved by an attacker with subnet access. Impact: exposure of...

6.5CVSS6AI score0.00245EPSS
Exploits0References1Affected Software1
ICS
ICS
added 2020/02/11 12:0 a.m.71 views

Siemens SIMATIC CP 1543-1

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SIMATIC CP 1543-1 Vulnerabilities: Improper Access Control, Loop with Unreachable Exit Condition 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow...

9.8CVSS10AI score0.57606EPSS
Exploits2References9
NVD
NVD
added 2016/11/18 9:59 p.m.21 views

CVE-2016-8562

A vulnerability has been identified in SIMATIC CP 1543-1 All versions V2.0.28, SIPLUS NET CP 1543-1 All versions V2.0.28. Under special conditions it was possible to write SNMP variables on port 161/udp which should be read-only and should only be configured with TIA-Portal. A write to these...

7.5CVSS5.3AI score0.03624EPSS
Exploits0References5
Rows per page
Query Builder