39 matches found
CVE-2020-28397
A vulnerability has been identified in SIMATIC Drive Controller family All versions V2 V2.5 V2.5 V21.9, TIM 1531 IRC incl. SIPLUS NET variants Version V2.1. Due to an incorrect authorization check in the affected component, an attacker could extract information about access protected PLC program...
CVE-2020-15782
CVE-2020-15782 covers Siemens SIMATIC S7-1200/1500 CPUs and related devices (including ET 200SP Open Controller, S7-PLCSIM Advanced, SINAMICS GH180, SINUMERIK MC/ONE, and S7-1500 Software Controller) with a memory protection bypass via a specific operation. A remote, unauthenticated attacker can ...
CVE-2021-25675
A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 All versions. An attacker with local access to the system could cause a Denial-of-Service condition in the application when it is used to open a specially crafted file. As a consequence, a divide by zero operation could occur and cause...
CVE-2021-25673
A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 All versions. An attacker with local access to the system could cause a Denial-of-Service condition in the application when it is used to open a specially crafted file. As a consequence, the application could enter an infinite loop,...
CVE-2021-25674
A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 All versions. An attacker with local access to the system could cause a Denial-of-Service condition in the application when it is used to open a specially crafted file. As a consequence, a NULL pointer deference condition could cause t...
CVE-2021-25674
A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 All versions. An attacker with local access to the system could cause a Denial-of-Service condition in the application when it is used to open a specially crafted file. As a consequence, a NULL pointer deference condition could cause t...
Design/Logic Flaw
A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 All versions. An attacker with local access to the system could cause a Denial-of-Service condition in the application when it is used to open a specially crafted file. As a consequence, the application could enter an infinite loop,...
Design/Logic Flaw
A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 All versions. An attacker with local access to the system could cause a Denial-of-Service condition in the application when it is used to open a specially crafted file. As a consequence, a divide by zero operation could occur and cause...
CVE-2021-25673
A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 All versions. An attacker with local access to the system could cause a Denial-of-Service condition in the application when it is used to open a specially crafted file. As a consequence, the application could enter an infinite loop,...
CVE-2021-25674
CVE-2021-25674 affects SIMATIC S7-PLCSIM v5.4 (all versions) where opening a specially crafted file can trigger a NULL pointer dereference, causing the application to terminate and require restart. The vulnerability is locally exploitable; no remote access is indicated. Connected sources corrobor...
CVE-2021-25673
CVE-2021-25673 affects Siemens SIMATIC S7-PLCSIM v5.4 (all versions). A vulnerability allows a local attacker to trigger a denial-of-service by opening a specially crafted file, causing an infinite loop and an unresponsive application that must be restarted. The Red Hat/NVD/ISA advisories corrobo...
CVE-2021-25675
The CVE-2021-25675 issue affects Siemens SIMATIC S7-PLCSIM v5.4 (All versions). The vulnerability arises when opening a specially crafted file, leading to a divide-by-zero error that can terminate the application and require restart, with a local access prerequisite. Documents summarize this as a...
CVE-2021-25674
A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 All versions. An attacker with local access to the system could cause a Denial-of-Service condition in the application when it is used to open a specially crafted file. As a consequence, a NULL pointer deference condition could cause t...
CVE-2021-25675
A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 All versions. An attacker with local access to the system could cause a Denial-of-Service condition in the application when it is used to open a specially crafted file. As a consequence, a divide by zero operation could occur and cause...
Siemens SIMATIC S7-PLCSIM Infinite Loop Vulnerability
SIMATIC S7-PLCSIM V5.4 is a Windows application that simulates the execution of user programs for the simulation of analog S7-300 CPUs, S7-400 CPUs, and WinAC series controllers. A security vulnerability exists in Siemens SIMATIC S7-PLCSIM. An attacker could exploit the vulnerability to cause a...
Siemens SIMATIC S7-PLCSIM Null Pointer Dereference Vulnerability
SIMATIC S7-PLCSIM V5.4 is a Windows application that simulates the execution of user programs for the simulation of analog S7-300 CPUs, S7-400 CPUs, and WinAC series controllers. A null pointer dereference vulnerability exists in Siemens SIMATIC S7-PLCSIM. An attacker could exploit the...
Siemens SIMATIC S7-PLCSIM Denial of Service Vulnerability
SIMATIC S7-PLCSIM V5.4 is a Windows application that simulates the execution of user programs for the simulation of analog S7-300 CPUs, S7-400 CPUs, and WinAC series controllers. A security vulnerability exists in Siemens SIMATIC S7-PLCSIM. An attacker can exploit the vulnerability to cause a...
Siemens SIMATIC 数字错误漏洞
SIMATIC S7-PLCSIM V5.4 is a Windows application that simulates the execution of user programs for the simulation of analog S7-300 CPUs, S7-400 CPUs, and WinAC series controllers. A security vulnerability exists in Siemens SIMATIC S7-PLCSIM. An attacker can exploit the vulnerability to cause a...
Siemens SIMATIC S7-PLCSIM
1. EXECUTIVE SUMMARY CVSS v3 5.5 ATTENTION: Low skill level to exploit Vendor: Siemens Equipment: SIMATIC S7-PLCSIM v5.4 Vulnerabilities: Infinite Loop, NULL Pointer Dereference, Divide by Zero 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker with local...