PT-2021-19251 · Siemens +1 · Simotics Connect 400 +12

Name of the Vulnerable Software and Affected Versions: Capital Embedded AR Classic 431-422 versions all Capital Embedded AR Classic R20-11 versions all prior to V2303 PLUSCONTROL 1st Gen versions all SIMOTICS CONNECT 400 versions all prior to V0.5.0.0 SIMOTICS CONNECT 400 versions all prior to...

PT-2021-6242 · Mentor Graphics +1 · Nucleus Net +11

Name of the Vulnerable Software and Affected Versions: Capital Embedded AR Classic 431-422 versions all Capital Embedded AR Classic R20-11 versions prior to V2303 PLUSCONTROL 1st Gen versions all SIMOTICS CONNECT 400 versions prior to V0.5.0.0 APOGEE MBC versions all APOGEE MEC versions all APOGE...

Siemens Nucleus Improper Input Validation

A vulnerability has been identified in APOGEE MEC/MBC/PXC P2 All versions = V3.0, APOGEE PXC Series P2 All versions = V2.8.2, Desigo PXC Power PC All versions = V2.3x and = V2.3x and = V3.0, VSTAR All versions. By sending specially crafted DHCP packets to a device where the DHCP client is enabled...

CVE-2021-25677

A vulnerability has been identified in APOGEE PXC Compact BACnet All versions = V0.5.0.0 V1.0.0.0, TALON TC Compact BACnet All versions V3.5.5, TALON TC Modular BACnet All versions V3.5.5. The DNS client does not properly randomize DNS transaction IDs. That could allow an attacker to poison the D...

CVE-2021-25677

A vulnerability has been identified in APOGEE PXC Compact BACnet All versions = V0.5.0.0 V1.0.0.0, TALON TC Compact BACnet All versions V3.5.5, TALON TC Modular BACnet All versions V3.5.5. The DNS client does not properly randomize DNS transaction IDs. That could allow an attacker to poison the D...

CVE-2021-25677

CVE-2021-25677 concerns DNS transaction ID randomness in Siemens DNS clients across multiple products (APOGEE PXC BACnet/P2 Ethernet, Nucleus NET/ReadyStart, SIMOTICS CONNECT 400, TALON TC). Root cause: DNS client does not properly randomize transaction IDs, enabling potential DNS cache poisoning...

CVE-2020-27738

CVE-2020-27738 concerns the DNS domain name record decompression in Siemens APOGEE PXC/TALON, Nucleus, SIMOTICS CONNECT 400 and related DNS modules. The issue is improper validation of pointer offsets during DNS response parsing, which can cause a read past the end of an allocated structure and l...

CVE-2020-27736

Summary (supported): CVE-2020-27736 affects Siemens APOGEE PXC (BACnet and P2 Ethernet), Nucleus NET/ReadyStart/Source Code, SIMOTICS CONNECT 400, TALON TC (and related Nucleus/DNS modules). The vulnerability stems from improper validation in the DNS domain name label parsing of DNS responses, wh...

Siemens SIMOTICS CONNECT 400 Out-of-Bounds Read Vulnerability

SIMOTICS CONNECT 400 is a connector and sensor box mounted on a low-voltage motor that provides analysis data for the MindSphere application SIDRIVE IQ Fleet. An out-of-bounds read vulnerability exists in the Siemens SIMOTICS CONNECT 400. An attacker could exploit the vulnerability to cause a...

Siemens SIMOTICS CONNECT 400 Denial of Service Vulnerability

SIMOTICS CONNECT 400 is a connector and sensor box mounted on a low-voltage motor that provides analysis data for the MindSphere application SIDRIVE IQ Fleet. A denial of service vulnerability exists in the Siemens SIMOTICS CONNECT 400 due to a failure of the DNS domain name tag resolution functi...

Siemens SIMOTICS CONNECT 400 Denial of Service Vulnerability (CNVD-2021-28705)

SIMOTICS CONNECT 400 is a connector and sensor box mounted on a low-voltage motor that provides analysis data for the MindSphere application SIDRIVE IQ Fleet. A denial of service vulnerability exists in the Siemens SIMOTICS CONNECT 400. The vulnerability is due to the DNS domain record...

Unspecified Vulnerability in Siemens SIMOTICS CONNECT 400

SIMOTICS CONNECT 400 is a connector and sensor box mounted on a low-voltage motor that provides analysis data for the MindSphere application SIDRIVE IQ Fleet. A security vulnerability exists in the Siemens SIMOTICS CONNECT 400. An attacker could exploit the vulnerability to topologize the DNS cac...

PT-2021-2646 · Siemens +1 · Simotics Connect 400 +8

Name of the Vulnerable Software and Affected Versions: APOGEE PXC Compact BACnet versions prior to V3.5.5 APOGEE PXC Compact P2 Ethernet versions prior to V2.8.20 APOGEE PXC Modular BACnet versions prior to V3.5.5 APOGEE PXC Modular P2 Ethernet versions prior to V2.8.20 Nucleus NET affected...

PT-2021-2648 · Siemens +1 · Simotics Connect 400 +7

Name of the Vulnerable Software and Affected Versions: APOGEE PXC Compact BACnet versions prior to V3.5.5 APOGEE PXC Compact P2 Ethernet versions prior to V2.8.20 APOGEE PXC Modular BACnet versions prior to V3.5.5 APOGEE PXC Modular P2 Ethernet versions prior to V2.8.20 Nucleus NET affected...

PT-2021-2649 · Siemens +1 · Simotics Connect 400 +7

Name of the Vulnerable Software and Affected Versions: APOGEE PXC Compact BACnet versions prior to V3.5.5 APOGEE PXC Compact P2 Ethernet versions prior to V2.8.20 APOGEE PXC Modular BACnet versions prior to V3.5.5 APOGEE PXC Modular P2 Ethernet versions prior to V2.8.20 Nucleus NET affected...

多款Siemens产品 安全特征问题漏洞

SIMOTICS CONNECT 400 is a connector and sensor box mounted on a low-voltage motor that provides analysis data for the MindSphere application SIDRIVE IQ Fleet. A security vulnerability exists in the Siemens SIMOTICS CONNECT 400. An attacker could exploit the vulnerability to topologize the DNS cac...

Siemens SIMOTICS CONNECT 400 (Update A)

1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SIMOTICS CONNECT 400 Vulnerabilities: Improper Null Termination, Out-of-bounds Read, Access of Memory Location After End of Buffer, Use of Insufficiently Random Values 2. UPDATE...

多款siemens产品 缓冲区错误漏洞

SIMOTICS CONNECT 400 is a connector and sensor box mounted on a low-voltage motor that provides analysis data for the MindSphere application SIDRIVE IQ Fleet. An out-of-bounds read vulnerability exists in the Siemens SIMOTICS CONNECT 400. An attacker could exploit the vulnerability to cause a...

多款siemens产品 缓冲区错误漏洞

SIMOTICS CONNECT 400 is a connector and sensor box mounted on a low-voltage motor that provides analysis data for the MindSphere application SIDRIVE IQ Fleet. A denial of service vulnerability exists in the Siemens SIMOTICS CONNECT 400 due to a failure of the DNS domain name tag resolution functi...

多款siemens产品 缓冲区错误漏洞

SIMOTICS CONNECT 400 is a connector and sensor box mounted on a low-voltage motor that provides analysis data for the MindSphere application SIDRIVE IQ Fleet. A denial of service vulnerability exists in the Siemens SIMOTICS CONNECT 400. The vulnerability is due to the DNS domain record...