287 matches found
Siemens devices using the PROFINET Discovery and Configuration Protocol (Update G)
CVSS v3 6.5 ATTENTION: Exploitable from an adjacent network/low skill level to exploit. Vendor: Siemens Equipment: Devices using the PROFINET Discovery and Configuration Protocol DCP Vulnerability: Denial of Service UPDATE INFORMATION This updated advisory is a follow-up to the updated advisory...
CVE-2013-6920
Siemens SINAMICS S/G controllers with firmware before 4.6.11 do not require authentication for FTP and TELNET sessions, which allows remote attackers to bypass intended access restrictions via TCP traffic to port 1 21 or 2 23...
Authentication flaw
Siemens SINAMICS S/G controllers with firmware before 4.6.11 do not require authentication for FTP and TELNET sessions, which allows remote attackers to bypass intended access restrictions via TCP traffic to port 1 21 or 2 23...
CVE-2013-6920
Siemens SINAMICS S/G controllers with firmware before 4.6.11 do not require authentication for FTP and TELNET sessions, which allows remote attackers to bypass intended access restrictions via TCP traffic to port 1 21 or 2 23...
CVE-2013-6920
CVE-2013-6920 affects Siemens SINAMICS S/G controllers with firmware prior to 4.6.11. The vulnerability is an authentication bypass for FTP (port 21) and Telnet (port 23) sessions, enabling remote attackers to perform administrative actions without authentication. The issue arises from services t...
Siemens Patches Authentication Bypass Flaw in SINAMICS ICS Software
Siemens has patched a serious remotely exploitable vulnerability in its SINAMICS S/G ICS software that could enable an attacker to take arbitrary actions on a vulnerable installation without having to authenticate. The vulnerability affects all versions of the Siemens SINAMICS S/G products with...
Siemens SINAMICS S/G Authentication Bypass Vulnerability
OVERVIEW Siemens has identified an authentication bypass vulnerability in the SINAMICS S/G product family. Siemens has produced a firmware update that mitigates this vulnerability and has tested the update to validate that it resolves the vulnerability. Exploitation of this vulnerability could...