Lucene search
K

3873 matches found

CVE
CVE
added 3 hours ago7 views

CVE-2026-54429

The CVE-2026-54429 entry concerns SIMATIC S7-PLCSIM Advanced (All versions). The issue is that the application does not properly handle high-volume multicast network traffic, leading to memory exhaustion and a denial-of-service condition. This can be triggered by an unauthenticated attacker on th...

7.4CVSS6AI score
Exploits0References1
Nuclei
Nuclei
added 5 hours ago66 views

Siemens SIMATIC S7-1200 CPU - Cross-Site Scripting

A cross-site scripting vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. id: CVE-2014-2908 info: name: Siemens SIMATIC S7-1200 CPU - Cross-Site Scripting author:...

4.3CVSS6.2AI score0.2095EPSS
Exploits3References5
Tenable Nessus
Tenable Nessus
added 2026/07/06 12:0 a.m.8 views

Siemens SIMATIC S7 PLC Web Server Improper Neutralization of Input During Web Page Generation (CVE-2026-25789)

Affected devices do not properly validate and sanitize filenames on the Firmware Update page. This could allow a remote attacker to social engineer the user into selecting a modified firmware file. This would result in malicious JavaScript execution in the context of the authenticated user's...

7.2CVSS7.3AI score0.00274EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/07/06 12:0 a.m.7 views

Siemens SIMATIC S7 PLC Web Server Improper Neutralization of Input During Web Page Generation (CVE-2026-25786)

Affected devices do not properly validate and sanitize PLC/station name rendered on the 'communication' parameters page of the web interface. This could allow an authenticated attacker who is authorized to download a TIA project into the product, to inject malicious scripts into the page. If a...

9.3CVSS7.2AI score0.0037EPSS
Exploits0References3
NCSC
NCSC
added 2026/06/09 6:45 p.m.17 views

Vulnerabilities present in Siemens products

Siemens has identified vulnerabilities in various products, including SCALANCE, SIMATIC, SINAMICS, SIPROTEC, and TIA Portal. These vulnerabilities pose a threat to malicious actors, who could exploit them to cause the following types of damage: - Denial-of-Service DoS attacks - Data manipulation ...

9.8CVSS7.3AI score0.47621EPSS
Exploits7References5
Vulnrichment
Vulnrichment
added 2026/06/09 8:46 a.m.11 views

CVE-2026-24349

A vulnerability has been identified in SIMATIC WinCC Unified PC Runtime V16 All versions, SIMATIC WinCC Unified PC Runtime V17 All versions, SIMATIC WinCC Unified PC Runtime V18 All versions, SIMATIC WinCC Unified PC Runtime V19 All versions, SIMATIC WinCC Unified PC Runtime V20 All versions,...

8.2CVSS5.4AI score0.00057EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:14 p.m.10 views

CVE-2026-22925

A vulnerability has been identified in SIMATIC CN 4100 All versions V5.0. The affected application is susceptible to resource exhaustion when subjected to high volume of TCP SYN packets This could allow an attacker to render the service unavailable and cause denial-of-service conditions by...

8.7CVSS7.6AI score0.00324EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/05/15 2:5 p.m.98 views

Exploit for Uncontrolled Resource Consumption in Siemens Simatic_S7-1500_Cpu_1518F-4_Pn\/Dp_Mfp_Firmware

CVE-2023-44487 — HTTP/2 Rapid Reset Test Lab Educational envi...

7.5CVSS7.1AI score0.99999EPSS
Exploits19
RedhatCVE
RedhatCVE
added 2026/05/13 2:21 p.m.12 views

CVE-2026-22924

A vulnerability has been identified in SIMATIC CN 4100 All versions V5.0. The affected application does not properly restrict unauthenticated connections and is susceptible to resource exhaustion conditions. This could allow an attacker to disrupt normal operations or perform unauthorized actions...

9.1CVSS5.7AI score0.003EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/12 12:32 p.m.10 views

EUVD-2026-29424

A vulnerability has been identified in SIMATIC CN 4100 All versions V5.0. The affected application is susceptible to resource exhaustion when subjected to high volume of TCP SYN packets This could allow an attacker to render the service unavailable and cause denial-of-service conditions by...

8.7CVSS5.7AI score0.00324EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/12 12:32 p.m.16 views

EUVD-2026-29423

A vulnerability has been identified in SIMATIC CN 4100 All versions V5.0. The affected application does not properly restrict unauthenticated connections and is susceptible to resource exhaustion conditions. This could allow an attacker to disrupt normal operations or perform unauthorized actions...

9.1CVSS5.7AI score0.003EPSS
Exploits0References2
NVD
NVD
added 2026/05/12 10:16 a.m.18 views

CVE-2026-22925

A vulnerability has been identified in SIMATIC CN 4100 All versions V5.0. The affected application is susceptible to resource exhaustion when subjected to high volume of TCP SYN packets This could allow an attacker to render the service unavailable and cause denial-of-service conditions by...

8.7CVSS0.00324EPSS
Exploits0References1
NVD
NVD
added 2026/05/12 10:16 a.m.23 views

CVE-2026-22924

A vulnerability has been identified in SIMATIC CN 4100 All versions V5.0. The affected application does not properly restrict unauthenticated connections and is susceptible to resource exhaustion conditions. This could allow an attacker to disrupt normal operations or perform unauthorized actions...

9.1CVSS0.003EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/12 8:20 a.m.41 views

CVE-2026-22925

A vulnerability has been identified in SIMATIC CN 4100 All versions V5.0. The affected application is susceptible to resource exhaustion when subjected to high volume of TCP SYN packets This could allow an attacker to render the service unavailable and cause denial-of-service conditions by...

8.7CVSS0.00324EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/12 8:20 a.m.7 views

CVE-2026-22925

A vulnerability has been identified in SIMATIC CN 4100 All versions V5.0. The affected application is susceptible to resource exhaustion when subjected to high volume of TCP SYN packets This could allow an attacker to render the service unavailable and cause denial-of-service conditions by...

8.7CVSS5.7AI score0.00324EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/12 8:20 a.m.7 views

CVE-2026-22925

A vulnerability has been identified in SIMATIC CN 4100 All versions V5.0. The affected application is susceptible to resource exhaustion when subjected to high volume of TCP SYN packets This could allow an attacker to render the service unavailable and cause denial-of-service conditions by...

8.7CVSS5.7AI score0.00324EPSS
Exploits0References1
CVE
CVE
added 2026/05/12 8:20 a.m.22 views

CVE-2026-22925

CVE-2026-22925 affects Siemens SIMATIC CN 4100 (all versions

8.7CVSS5.7AI score0.00324EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/12 8:20 a.m.8 views

CVE-2026-22924

A vulnerability has been identified in SIMATIC CN 4100 All versions V5.0. The affected application does not properly restrict unauthenticated connections and is susceptible to resource exhaustion conditions. This could allow an attacker to disrupt normal operations or perform unauthorized actions...

9.1CVSS5.7AI score0.003EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/12 8:20 a.m.13 views

CVE-2026-22924

A vulnerability has been identified in SIMATIC CN 4100 All versions V5.0. The affected application does not properly restrict unauthenticated connections and is susceptible to resource exhaustion conditions. This could allow an attacker to disrupt normal operations or perform unauthorized actions...

9.1CVSS7.2AI score0.003EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/12 8:20 a.m.39 views

CVE-2026-22924

A vulnerability has been identified in SIMATIC CN 4100 All versions V5.0. The affected application does not properly restrict unauthenticated connections and is susceptible to resource exhaustion conditions. This could allow an attacker to disrupt normal operations or perform unauthorized actions...

9.1CVSS0.003EPSS
Exploits0References1
Rows per page
Query Builder