Simatic S7-1200 Cpu 1212fc Firmware Security Vulnerabilities and Issues — Simatic S7-1200 Cpu 1212fc Firmware CVE List

Lucene search

SiemensSimatic S7-1200 Cpu 1212fc Firmware

13 matches found

CVE•added 2021/03/25 3:15 p.m.•749 views

CVE-2021-3449

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a...

5.9CVSS6.7AI score0.15517EPSS

CVE•added 2022/02/09 4:15 p.m.•119 views

CVE-2021-37185

A vulnerability has been identified in SIMATIC Drive Controller family (All versions >= V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions >= V21.9 < V21.9.4), SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (All versions >= V4....

7.5CVSS7.4AI score0.01431EPSS

CVE•added 2022/11/08 11:15 a.m.•110 views

CVE-2022-30694

The login endpoint /FormLogin in affected web services does not apply proper origin checking. This could allow authenticated remote attackers to track the activities of other users via a login cross-site request forgery attack.

6.5CVSS4.6AI score0.00141EPSS

CVE•added 2022/02/09 4:15 p.m.•108 views

CVE-2021-37205

7.5CVSS7.4AI score0.01138EPSS

CVE•added 2022/02/09 4:15 p.m.•94 views

CVE-2021-37204

A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC Drive Controller family (All versions >= V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 151...

7.5CVSS7.4AI score0.01431EPSS

CVE•added 2022/12/13 4:15 p.m.•89 views

CVE-2021-44693

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

7.5CVSS5.7AI score0.00071EPSS

CVE•added 2022/12/13 4:15 p.m.•77 views

CVE-2021-44694

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

7.5CVSS5.9AI score0.00071EPSS

CVE•added 2012/10/10 6:55 p.m.•70 views

CVE-2012-3040

Cross-site scripting (XSS) vulnerability in the web server on Siemens SIMATIC S7-1200 PLCs 2.x through 3.0.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URI.

4.3CVSS5.7AI score0.01214EPSS

CVE•added 2022/12/13 4:15 p.m.•68 views

CVE-2021-40365

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

7.5CVSS7.3AI score0.00093EPSS

CVE•added 2022/12/13 4:15 p.m.•59 views

CVE-2021-44695

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

7.5CVSS5.7AI score0.00063EPSS

CVE•added 2012/09/25 11:7 a.m.•53 views

CVE-2012-3037

The Siemens SIMATIC S7-1200 2.x PLC does not properly protect the private key of the SIMATIC CONTROLLER Certification Authority certificate, which allows remote attackers to spoof the S7-1200 web server by using this key to create a forged certificate.

4.3CVSS6.6AI score0.00642EPSS

CVE•added 2013/04/22 3:27 a.m.•49 views

CVE-2013-0700

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage) via crafted packets to TCP port 102 (aka the ISO-TSAP port).

7.8CVSS6.7AI score0.00342EPSS

CVE•added 2013/04/22 3:27 a.m.•48 views

CVE-2013-2780

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage) via crafted packets to UDP port 161 (aka the SNMP port).

7.8CVSS6.7AI score0.00342EPSS