Lucene search
K

378 matches found

Positive Technologies
Positive Technologies
added 2023/01/10 12:0 a.m.4 views

PT-2023-1360 · Unknown · Telecontrol Server Basic V3 +2

Name of the Vulnerable Software and Affected Versions: Automation License Manager V5 All versions Automation License Manager V6 All versions prior to V6.0 SP9 Upd4 TeleControl Server Basic V3 All versions prior to V3.1.2 Description: The issue is related to a path traversal vulnerability. It may...

10CVSS7.8AI score0.01543EPSS
Exploits0References7
ICS
ICS
added 2022/05/10 12:0 a.m.55 views

Siemens Industrial Products with OPC UA

1. EXECUTIVE SUMMARY CVSS v3 6.5 ATTENTION: Exploitable remotely/low attack complexity Vendor: Siemens Equipment: SIMATIC NET PC, SITOP Manager, TeleControl Server Basic Vulnerability: Null Pointer Dereference 2. UPDATE INFORMATION This updated advisory is a follow-up to the original advisory...

6.5CVSS6.7AI score0.01395EPSS
Exploits1References12
ICS
ICS
added 2019/10/10 12:0 p.m.68 views

Siemens Industrial Products Local Privilege Escalation Vulnerability (Update I)

1. EXECUTIVE SUMMARY CVSS v3 6.4 ATTENTION: Exploitable locally Vendor: Siemens Equipment: Industrial Products Vulnerability: Improper privilege management 2. UPDATE INFORMATION This updated advisory is a follow-up to the updated advisory titled ICSA-16-313-02 Siemens Industrial Products Local...

6.9CVSS7AI score0.00378EPSS
Exploits0References55
CVE
CVE
added 2019/04/17 1:40 p.m.105 views

CVE-2019-6575

CVE-2019-6575 affects Siemens industrial products using OPC UA, including SIMATIC CP443-1 OPC UA, ET 200 Open Controller CPU 1515SP PC2, HMI Outdoor Panels (7"/15"), HMI Comfort Panels (4"–22"), KTP Mobile Panels, IPC DiagMonitor, NET PC Software, RF188C, RF600R, S7‑1500 family, WinCC OA/Runtime,...

7.8CVSS7.4AI score0.01633EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2019/04/09 12:0 a.m.5 views

PT-2019-2034 · Siemens · Simatic Hmi Comfort Outdoor Panels 7" & 15" +16

Name of the Vulnerable Software and Affected Versions: SIMATIC CP 443-1 OPC UA versions prior to the fixed version SIMATIC ET 200SP Open Controller CPU 1515SP PC2 versions prior to V2.7 SIMATIC HMI Comfort Outdoor Panels 7" & 15" versions prior to V15.1 Upd 4 SIMATIC HMI Comfort Panels 4" - 22"...

7.8CVSS7.5AI score0.01633EPSS
Exploits0References3
ICS
ICS
added 2019/04/09 12:0 a.m.245 views

Siemens Industrial Products with OPC UA (Update H)

1. EXECUTIVE SUMMARY CVSS v3 7.5 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: Siemens Equipment: SIMATIC, SINEC-NMS, SINEMA, SINEMURIK Industrial Control Products with OPC UA Vulnerability: Uncaught Exception 2. UPDATE INFORMATION This updated advisory is a follow-up to the...

7.8CVSS7.9AI score0.01633EPSS
Exploits0References8
NVD
NVD
added 2018/01/25 2:29 p.m.17 views

CVE-2018-4837

A vulnerability has been identified in TeleControl Server Basic V3.1. An attacker with access to the TeleControl Server Basic's webserver port 80/tcp or 443/tcp could cause a Denial-of-Service condition on the web server. The remaining functionality of the TeleControl Server Basic is not affected...

7.5CVSS7.6AI score0.02715EPSS
Exploits0References3
OSV
OSV
added 2018/01/25 2:29 p.m.4 views

CVE-2018-4835

A vulnerability has been identified in TeleControl Server Basic V3.1. An attacker with network access to the TeleControl Server Basic's port 8000/tcp could bypass the authentication mechanism and read limited information...

5.3CVSS5.7AI score0.02249EPSS
Exploits0References3
Prion
Prion
added 2018/01/25 2:29 p.m.15 views

Race condition

A vulnerability has been identified in TeleControl Server Basic V3.1. An attacker with access to the TeleControl Server Basic's webserver port 80/tcp or 443/tcp could cause a Denial-of-Service condition on the web server. The remaining functionality of the TeleControl Server Basic is not affected...

5CVSS7.5AI score0.02715EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2018/01/25 2:29 p.m.13 views

Design/Logic Flaw

A vulnerability has been identified in TeleControl Server Basic V3.1. An authenticated attacker with a low-privileged account to the TeleControl Server Basic's port 8000/tcp could escalate his privileges and perform administrative operations...

6.5CVSS8.6AI score0.01837EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2018/01/25 2:29 p.m.16 views

CVE-2018-4836

A vulnerability has been identified in TeleControl Server Basic V3.1. An authenticated attacker with a low-privileged account to the TeleControl Server Basic's port 8000/tcp could escalate his privileges and perform administrative operations...

8.8CVSS8.7AI score0.01837EPSS
Exploits0References3
OSV
OSV
added 2018/01/25 2:29 p.m.5 views

CVE-2018-4836

A vulnerability has been identified in TeleControl Server Basic V3.1. An authenticated attacker with a low-privileged account to the TeleControl Server Basic's port 8000/tcp could escalate his privileges and perform administrative operations...

8.8CVSS5.7AI score0.01837EPSS
Exploits0References3
OSV
OSV
added 2018/01/25 2:29 p.m.4 views

CVE-2018-4837

A vulnerability has been identified in TeleControl Server Basic V3.1. An attacker with access to the TeleControl Server Basic's webserver port 80/tcp or 443/tcp could cause a Denial-of-Service condition on the web server. The remaining functionality of the TeleControl Server Basic is not affected...

7.5CVSS5.7AI score0.02715EPSS
Exploits0References3
NVD
NVD
added 2018/01/25 2:29 p.m.14 views

CVE-2018-4835

A vulnerability has been identified in TeleControl Server Basic V3.1. An attacker with network access to the TeleControl Server Basic's port 8000/tcp could bypass the authentication mechanism and read limited information...

5.3CVSS6.1AI score0.02249EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/01/25 2:0 p.m.17 views

CVE-2018-4836

A vulnerability has been identified in TeleControl Server Basic V3.1. An authenticated attacker with a low-privileged account to the TeleControl Server Basic's port 8000/tcp could escalate his privileges and perform administrative operations...

8.6AI score0.01837EPSS
Exploits0References3
Cvelist
Cvelist
added 2018/01/25 2:0 p.m.16 views

CVE-2018-4837

A vulnerability has been identified in TeleControl Server Basic V3.1. An attacker with access to the TeleControl Server Basic's webserver port 80/tcp or 443/tcp could cause a Denial-of-Service condition on the web server. The remaining functionality of the TeleControl Server Basic is not affected...

7.4AI score0.02715EPSS
Exploits0References3
CVE
CVE
added 2018/01/25 2:0 p.m.48 views

CVE-2018-4837

The connected sources confirm CVE-2018-4837 affects Siemens TeleControl Server Basic versions prior to 3.1, where a vulnerability in the webserver (ports 80/443) can cause a Denial-of-Service without affecting other functionality. The ICSA advisory reiterates this as a DoS risk via the webserver,...

7.5CVSS7.3AI score0.02715EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2018/01/25 2:0 p.m.15 views

CVE-2018-4835

A vulnerability has been identified in TeleControl Server Basic V3.1. An attacker with network access to the TeleControl Server Basic's port 8000/tcp could bypass the authentication mechanism and read limited information...

5.3AI score0.02249EPSS
Exploits0References3
Rows per page
Query Builder