CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

24 matches found

CNVD•added 2024/08/14 12:0 a.m.•6 views

Siemens SINEC Traffic Analyzer Access Control Error Vulnerability

SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communications between controllers and IO devices. An access control error vulnerability exists in Siemens SINEC Traffic Analyzer, which can be exploited by a low-privileged, authenticated attacker to access...

7.6CVSS6.5AI score0.00305EPSS

Exploits0References1

CNVD•added 2024/06/12 12:0 a.m.•7 views

Siemens SINEC Traffic Analyzer Credential Protection Insufficiency Vulnerability

SINEC Traffic Analyzer is an on-premise application that monitors PNIO PROFINET IO communication between controllers and IO devices. The software detects PROFINET communication problems and reports them to the user via Web-UI. Siemens SINEC Traffic Analyzer suffers from a Credential Protection...

6.3CVSS7AI score0.00147EPSS

Exploits0References1

NVD•added 2022/04/12 9:15 a.m.•11 views

CVE-2022-25622

The PROFINET PNIO stack, when integrated with the Interniche IP stack, improperly handles internal resources for TCP segments where the minimum TCP-Header length is less than defined. This could allow an attacker to create a denial of service condition for TCP services on affected devices by...

7.5CVSS0.00818EPSS

Exploits0References2

Prion•added 2022/04/12 9:15 a.m.•20 views

Design/Logic Flaw

A vulnerability has been identified in SIMATIC CFU DIQ, SIMATIC CFU PA, SIMATIC ET 200pro IM154-8 PN/DP CPU, SIMATIC ET 200pro IM154-8F PN/DP CPU, SIMATIC ET 200pro IM154-8FX PN/DP CPU, SIMATIC ET 200S IM151-8 PN/DP CPU, SIMATIC ET 200S IM151-8F PN/DP CPU, SIMATIC ET200AL IM157-1 PN, SIMATIC...

5CVSS7.4AI score0.00818EPSS

Exploits0References1Affected Software1

Cvelist•added 2022/04/12 12:0 a.m.•15 views

CVE-2022-25622

5.3CVSS7.6AI score0.00818EPSS

Exploits0References2

Tenable Nessus•added 2020/05/27 12:0 a.m.•32 views

Siemens Dk Uncontrolled Resource Consumption

A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet Controller All versions, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200 All Versions V4.5, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P All Versions V4.6, PROFINET...

7.8CVSS1.5AI score0.01412EPSS

Exploits1References3

NVD•added 2020/02/11 4:15 p.m.•26 views

CVE-2019-13946

Profinet-IO PNIO stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lead to a denial of service condition due to lack of memory for devices that include a vulnerable...

7.8CVSS7.4AI score0.01412EPSS

Exploits1References2

Prion•added 2020/02/11 4:15 p.m.•20 views

Design/Logic Flaw

7.8CVSS7.4AI score0.01412EPSS

Exploits1References1Affected Software27

Vulnrichment•added 2020/02/11 3:36 p.m.•14 views

CVE-2019-13946

7.5CVSS6.8AI score0.01412EPSS

Exploits1References2

Cvelist•added 2020/02/11 3:36 p.m.•37 views

CVE-2019-13946

7.5CVSS7.4AI score0.01412EPSS

Exploits1References2

CVE•added 2020/02/11 3:36 p.m.•137 views

CVE-2019-13946

The CVE-2019-13946 issue affects the PROFINET-IO (PNIO) stack in Siemens devices, specifically PNIO versions prior to V06.00. The root problem is uncontrolled internal resource allocation during multiple diagnostic package requests to the DCE-RPC interface, enabling a network-accessible attacker ...

7.8CVSS7.4AI score0.01412EPSS

Exploits1References2Affected Software3

Tenable Nessus•added 2019/05/08 12:0 a.m.•20 views

ABB 1SAP420700R0001 CI502-PNIO-XC S500 Digital I/O Module Detection

Binary data 756467.prm...

7.3AI score

Exploits0

Tenable Nessus•added 2019/05/08 12:0 a.m.•15 views

ABB 1SAP420600R0001 CI501-PNIO-XC S500 Analog I/O Module Detection

Binary data 756466.prm...

7.3AI score

Exploits0