Simatic S7-1200 Cpu 1212fc Firmware@* Security Vulnerabilities and Issues — Simatic S7-1200 Cpu 1212fc Firmware@* CVE List

Lucene search

SiemensSimatic S7-1200 Cpu 1212fc Firmware*

12 matches found

CVE•added 2021/03/25 3:15 p.m.•753 views

CVE-2021-3449

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a...

5.9CVSS6.7AI score0.08433EPSS

Web

CVE•added 2022/02/09 4:15 p.m.•120 views

CVE-2021-37185

A vulnerability has been identified in SIMATIC Drive Controller family (All versions >= V2.9.2 = V21.9 = V4.5.0 = V2.9.2 = V21.9 = V4.0 < V4.0 SP1), SIPLUS TIM 1531 IRC (All versions < V2.3.6), TIM 1531 IRC (All versions

7.5CVSS7.4AI score0.01431EPSS

CVE•added 2022/02/09 4:15 p.m.•109 views

CVE-2021-37205

7.5CVSS7.4AI score0.01138EPSS

CVE•added 2022/02/09 4:15 p.m.•95 views

CVE-2021-37204

A vulnerability has been identified in SIMATIC Drive Controller family (All versions = V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions = V21.9 < V21.9...

7.5CVSS7.4AI score0.01431EPSS

CVE•added 2022/12/13 4:15 p.m.•90 views

CVE-2021-44693

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

7.5CVSS5.7AI score0.00071EPSS

CVE•added 2022/12/13 4:15 p.m.•79 views

CVE-2021-44694

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

7.5CVSS5.9AI score0.00071EPSS

CVE•added 2012/10/10 6:55 p.m.•72 views

CVE-2012-3040

Cross-site scripting (XSS) vulnerability in the web server on Siemens SIMATIC S7-1200 PLCs 2.x through 3.0.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URI.

4.3CVSS5.7AI score0.01214EPSS

CVE•added 2022/12/13 4:15 p.m.•69 views

CVE-2021-40365

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

7.5CVSS7.3AI score0.00093EPSS

CVE•added 2022/12/13 4:15 p.m.•60 views

CVE-2021-44695

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

7.5CVSS5.7AI score0.00063EPSS

CVE•added 2012/09/25 11:7 a.m.•54 views

CVE-2012-3037

The Siemens SIMATIC S7-1200 2.x PLC does not properly protect the private key of the SIMATIC CONTROLLER Certification Authority certificate, which allows remote attackers to spoof the S7-1200 web server by using this key to create a forged certificate.

4.3CVSS6.6AI score0.00642EPSS

CVE•added 2013/04/22 3:27 a.m.•50 views

CVE-2013-0700

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage) via crafted packets to TCP port 102 (aka the ISO-TSAP port).

7.8CVSS6.7AI score0.00342EPSS

CVE•added 2013/04/22 3:27 a.m.•49 views

CVE-2013-2780

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage) via crafted packets to UDP port 161 (aka the SNMP port).

7.8CVSS6.7AI score0.00342EPSS