Lucene search
+L

20 matches found

euvd
euvd
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-1771

Malware in sbrugna...

7.5CVSS6.4AI score0.05261EPSS
Exploits1References7
bdu_fstec
bdu_fstec
added 2016/07/05 12:0 a.m.8 views

The vulnerability of the automated system for managing technological processes of SIMATIC WinCC OA allows a malicious individual to execute arbitrary codes without going through authentication procedures.

The vulnerability of the SIMATIC Winn CC OAM software relates to errors that occur when processing specially crafted TCP packets. Exploiting this vulnerability allows a malicious individual to execute arbitrary code by sending specially crafted packets to port 4999...

5CVSS6AI score0.05261EPSS
Exploits1References14Affected Software1
nvd
nvd
added 2014/04/19 7:55 p.m.20 views

CVE-2014-2731

Multiple unspecified vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to execute arbitrary code via HTTP traffic to port 1 4999 or 2 80...

9.3CVSS7.8AI score0.04243EPSS
Exploits1References2
nvd
nvd
added 2014/04/19 7:55 p.m.21 views

CVE-2014-2732

Multiple directory traversal vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to access arbitrary files via HTTP traffic to port 1 4999 or 2 80...

5CVSS7AI score0.03606EPSS
Exploits1References3
prion
prion
added 2014/04/19 7:55 p.m.19 views

Code injection

Multiple unspecified vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to execute arbitrary code via HTTP traffic to port 1 4999 or 2 80...

9.3CVSS8.3AI score0.04243EPSS
Exploits1References2Affected Software1
prion
prion
added 2014/04/19 7:55 p.m.17 views

Design/Logic Flaw

Siemens SINEMA Server before 12 SP1 allows remote attackers to cause a denial of service web-interface outage via crafted HTTP requests to port 1 4999 or 2 80...

5CVSS7.1AI score0.02634EPSS
Exploits1References2Affected Software1
prion
prion
added 2014/04/19 7:55 p.m.19 views

Directory traversal

Multiple directory traversal vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to access arbitrary files via HTTP traffic to port 1 4999 or 2 80...

5CVSS7.5AI score0.03606EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2014/04/19 7:0 p.m.27 views

CVE-2014-2732

Multiple directory traversal vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to access arbitrary files via HTTP traffic to port 1 4999 or 2 80...

7AI score0.03606EPSS
Exploits1References3
cvelist
cvelist
added 2014/04/19 7:0 p.m.26 views

CVE-2014-2731

Multiple unspecified vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to execute arbitrary code via HTTP traffic to port 1 4999 or 2 80...

7.8AI score0.04243EPSS
Exploits1References2
cve
cve
added 2014/04/19 7:0 p.m.94 views

CVE-2014-2732

Siemens SINEMA Server (all versions prior to 12 SP1) contains directory traversal and related input-validation weaknesses in its integrated web server accessible via ports 4999 and 80. The issues allow remote attackers to access arbitrary files on the server, due to traversal and code-execution r...

5CVSS7.2AI score0.03606EPSS
Exploits1References3Affected Software1
seebug
seebug
added 2014/02/12 12:0 a.m.43 views

SIEMENS SIMATIC WinCC Open Architecture拒绝服务漏洞

BUGTRAQ ID: 65347 CVECAN ID: CVE-2014-1699 Siemens SIMATIC WinCC 是监测控制和数据采集SCADA及人机界面HMI系统。 SIEMENS SIMATIC WinCC OA 3.12 P002之前版本存在安全漏洞,远程攻击者通过向端口4999发送畸形的HTTP请求,利用此漏洞即可造成拒绝服务(监控服务中断)。 0 Siemens SIMATIC WinCC Open Architecture 3.12 P002 January 厂商补丁: Siemens -------...

5CVSS6.4AI score0.02142EPSS
Exploits1
nvd
nvd
added 2014/02/07 4:52 a.m.15 views

CVE-2014-1697

The integrated web server in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to execute arbitrary code via crafted packets to TCP port 4999...

7.5CVSS7.6AI score0.05261EPSS
Exploits1References6
nvd
nvd
added 2014/02/07 4:52 a.m.25 views

CVE-2014-1698

Directory traversal vulnerability in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to read arbitrary files via crafted packets to TCP port 4999...

5CVSS6.7AI score0.03507EPSS
Exploits0References6
prion
prion
added 2014/02/07 4:52 a.m.17 views

Code injection

The integrated web server in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to execute arbitrary code via crafted packets to TCP port 4999...

7.5CVSS8.2AI score0.05261EPSS
Exploits1References6Affected Software1
prion
prion
added 2014/02/07 4:52 a.m.17 views

Directory traversal

Directory traversal vulnerability in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to read arbitrary files via crafted packets to TCP port 4999...

5CVSS7.1AI score0.03507EPSS
Exploits0References6Affected Software1
prion
prion
added 2014/02/07 4:52 a.m.14 views

Code injection

Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to cause a denial of service monitoring-service outage via malformed HTTP requests to port 4999...

5CVSS7.1AI score0.02142EPSS
Exploits1References6Affected Software1
cvelist
cvelist
added 2014/02/07 2:0 a.m.26 views

CVE-2014-1698

Directory traversal vulnerability in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to read arbitrary files via crafted packets to TCP port 4999...

6.6AI score0.03507EPSS
Exploits0References6
cvelist
cvelist
added 2014/02/07 2:0 a.m.20 views

CVE-2014-1699

Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to cause a denial of service monitoring-service outage via malformed HTTP requests to port 4999...

6.6AI score0.02142EPSS
Exploits1References6
cvelist
cvelist
added 2014/02/07 2:0 a.m.20 views

CVE-2014-1697

The integrated web server in Siemens SIMATIC WinCC OA before 3.12 P002 January allows remote attackers to execute arbitrary code via crafted packets to TCP port 4999...

7.6AI score0.05261EPSS
Exploits1References6
cve
cve
added 2014/02/07 2:0 a.m.48 views

CVE-2014-1697

The CVE-2014-1697 entry concerns Siemens SIMATIC WinCC OA prior to version 3.12 P002. The vulnerability lies in the integrated Web server on port 4999, where specially crafted, unauthenticated packets can remotely trigger arbitrary code execution due to improper handling of inputs (code injection...

7.5CVSS7.8AI score0.05261EPSS
Exploits1References6Affected Software1
Rows per page
Query Builder