EUVD-2019-5198

Malware in sbrugna...

EUVD-2018-5740

Malware in sbrugna...

CVE-2020-7587

A vulnerability has been identified in Opcenter Execution Discrete All versions V3.2, Opcenter Execution Foundation All versions V3.2, Opcenter Execution Process All versions V3.2, Opcenter Intelligence All versions V3.3, Opcenter Quality All versions V11.3, Opcenter RD V8.0, SIMATIC IT LMS All...

CVE-2020-7588

A vulnerability has been identified in Opcenter Execution Discrete All versions V3.2, Opcenter Execution Foundation All versions V3.2, Opcenter Execution Process All versions V3.2, Opcenter Intelligence All versions V3.3, Opcenter Quality All versions V11.3, Opcenter RD V8.0, SIMATIC IT LMS All...

CVE-2019-13929

A vulnerability has been identified in SIMATIC IT UADM All versions V1.3. An authenticated remote attacker with network access to port 1434/tcp of SIMATIC IT UADM could potentially recover a password that can be used to gain read and write access to the related TeamCenter station. The security...

Vulnerability of microprogramming software for Siemens STEP 7 programmable logic controllers, systems for manufacturing process control such as Opcenter Execution Discrete, Opcenter Execution Process, Opcenter Execution Foundation, Opcenter Intelligence, Opcenter Quality, SIMATIC IT Production Suite, the system diagnostic tool SIMOCODE ES, the software for parameterizing, diagnosing, and documenting the startup status of SIRIUS Soft Starter ES, technological process management systems like SIMATIC PCS neo, the Opcenter RD&L software platform, and the software for analyzing equipment efficiency and key indicators like SIMATIC IT LMS. These vulnerabilities allow attackers to trigger malfunctions during maintenance operations due to insufficient input data verification.

The vulnerabilities of the microprogramming software for Siemens STEP 7 programmable logic controllers, the systems for managing production processes such as Opcenter Execution Discrete, Opcenter Execution Process, Opcenter Execution Foundation, Opcenter Intelligence, Opcenter Quality, SIMATIC IT...

The vulnerabilities of the microprogramming software for Siemens STEP 7 programmable logic controllers, the systems for managing production processes such as Opcenter Execution Discrete, Opcenter Execution Process, Opcenter Execution Foundation, Opcenter Intelligence, Opcenter Quality, SIMATIC IT Production Suite, the system diagnostic tool SIMOCODE ES, the software for parameterizing, diagnosing, and documenting the startup process of SIRIUS Soft Starter ES, the web-based systems for managing technological processes like SIMATIC PCS neo, the Opcenter RD&L software platform, and the software for analyzing equipment efficiency and key indicators like SIMATIC IT LMS. These vulnerabilities arise from the absence of quotation marks in the wording of elements or search methods, which allows attackers to exploit them to gain elevated privileges to the root level.

The vulnerabilities of the microprogramming software for Siemens STEP 7 programmable logic controllers, the systems for managing production processes such as Opcenter Execution Discrete, Opcenter Execution Process, Opcenter Execution Foundation, Opcenter Intelligence, Opcenter Quality, SIMATIC IT...

CVE-2020-7588

A vulnerability has been identified in Opcenter Execution Discrete All versions V3.2, Opcenter Execution Foundation All versions V3.2, Opcenter Execution Process All versions V3.2, Opcenter Intelligence All versions V3.3, Opcenter Quality All versions V11.3, Opcenter RD&L V8.0, SIMATIC IT LMS All...

PT-2020-6695 · Siemens · Simocode Es +12

Name of the Vulnerable Software and Affected Versions: Opcenter Execution Discrete versions prior to V3.2 Opcenter Execution Foundation versions prior to V3.2 Opcenter Execution Process versions prior to V3.2 Opcenter Intelligence versions prior to V3.3 Opcenter Quality versions prior to V11.3...

PT-2020-6696 · Siemens · Simocode Es +12

Name of the Vulnerable Software and Affected Versions: Opcenter Execution Discrete versions prior to V3.2 Opcenter Execution Foundation versions prior to V3.2 Opcenter Execution Process versions prior to V3.2 Opcenter Intelligence versions prior to V3.3 Opcenter Quality versions prior to V11.3...

The vulnerability of the SIMATIC IT UADM software, related to the predictable encryption key, allows a hacker to recover the password and gain access to the TeamCenter station.

The vulnerability of the SIMATIC IT UADM software is related to a predictable encryption key. Exploiting this vulnerability could allow an attacker to retrieve the password and gain access to the TeamCenter station...

CVE-2019-13929

A vulnerability has been identified in SIMATIC IT UADM All versions V1.3. An authenticated remote attacker with network access to port 1434/tcp of SIMATIC IT UADM could potentially recover a password that can be used to gain read and write access to the related TeamCenter station. The security...

CVE-2019-13929

A vulnerability has been identified in SIMATIC IT UADM All versions V1.3. An authenticated remote attacker with network access to port 1434/tcp of SIMATIC IT UADM could potentially recover a password that can be used to gain read and write access to the related TeamCenter station. The security...

Design/Logic Flaw

A vulnerability has been identified in SIMATIC IT UADM All versions V1.3. An authenticated remote attacker with network access to port 1434/tcp of SIMATIC IT UADM could potentially recover a password that can be used to gain read and write access to the related TeamCenter station. The security...

CVE-2019-13929

CVE-2019-13929 affects Siemens SIMATIC IT UADM (pre-1.3). A authenticated remote attacker with network access to port 1434/tcp could recover a password enabling read/write access to the related TeamCenter station, without user interaction. The root cause is use of a hard-coded cryptographic key. ...

CVE-2019-13929

A vulnerability has been identified in SIMATIC IT UADM All versions V1.3. An authenticated remote attacker with network access to port 1434/tcp of SIMATIC IT UADM could potentially recover a password that can be used to gain read and write access to the related TeamCenter station. The security...

Siemens Industrial Products Local Privilege Escalation Vulnerability (Update I)

1. EXECUTIVE SUMMARY CVSS v3 6.4 ATTENTION: Exploitable locally Vendor: Siemens Equipment: Industrial Products Vulnerability: Improper privilege management 2. UPDATE INFORMATION This updated advisory is a follow-up to the updated advisory titled ICSA-16-313-02 Siemens Industrial Products Local...

Siemens SIMATIC IT UADM CVE-2019-13929 Hardcoded Cryptographic Key Vulnerability

Description Siemens SIMATIC IT UADM is prone to a hard-coded cryptographic key vulnerability. An attacker can exploit this issue to gain unauthorized access to the vulnerable device and perform unauthorized actions. Versions prior to SIMATIC IT UADM 1.3 are vulnerable. Technologies Affected Sieme...

ICSA-19-281-04 Siemens SIMATIC IT UADM

1. EXECUTIVE SUMMARY CVSS v3 6.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SIMATIC IT Unified Architecture Discrete Manufacturing UADM Vulnerability: Use of Hard-coded Cryptographic Key 2. RISK EVALUATION Successful exploitation of this vulnerability...

CVE-2018-13804

A vulnerability has been identified in SIMATIC IT LMS All versions, SIMATIC IT Production Suite Versions V7.1 V7.1 Upd3, SIMATIC IT UA Discrete Manufacturing Versions V1.2, SIMATIC IT UA Discrete Manufacturing Versions V1.2, SIMATIC IT UA Discrete Manufacturing Versions V1.3, SIMATIC IT UA Discre...