Simatic S7-1500 Cpu 1515f-2 Pn Firmware Security Vulnerabilities and Issues — Simatic S7-1500 Cpu 1515f-2 Pn Firmware CVE List

Lucene search

SiemensSimatic S7-1500 Cpu 1515f-2 Pn Firmware

9 matches found

CVE•added 2023/09/12 10:15 a.m.•130 views

CVE-2023-28831

The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation. This could allow an unauthenticated remote attacker to create a denial of service condition by send...

7.5CVSS7.5AI score0.00428EPSS

CVE•added 2020/04/14 8:15 p.m.•114 views

CVE-2019-19300

A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P, KTK ATE530S, SIDOOR ATD430W, SIDOOR ATE530S COATED, SIDOOR ATE531S, SIMATIC ET 200AL IM 157-1 PN (6ES7157-1AB00-0AB0), SIMATIC ET 200eco PN, ...

7.5CVSS7.4AI score0.00536EPSS

CVE•added 2022/11/08 11:15 a.m.•110 views

CVE-2022-30694

The login endpoint /FormLogin in affected web services does not apply proper origin checking. This could allow authenticated remote attackers to track the activities of other users via a login cross-site request forgery attack.

6.5CVSS4.6AI score0.00141EPSS

CVE•added 2022/12/13 4:15 p.m.•89 views

CVE-2021-44693

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

7.5CVSS5.7AI score0.00071EPSS

CVE•added 2023/01/10 12:15 p.m.•84 views

CVE-2022-38773

Affected devices do not contain an Immutable Root of Trust in Hardware. With this the integrity of the code executed on the device can not be validated during load-time. An attacker with physical access to the device could use this to replace the boot image of the device and execute arbitrary code.

6.8CVSS6.7AI score0.00104EPSS

CVE•added 2022/12/13 4:15 p.m.•77 views

CVE-2021-44694

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

7.5CVSS5.9AI score0.00071EPSS

CVE•added 2023/12/12 12:15 p.m.•77 views

CVE-2023-46156

Affected devices improperly handle specially crafted packets sent to port 102/tcp.This could allow an attacker to create a denial of service condition. A restart is needed to restorenormal operations.

7.5CVSS7.4AI score0.0004EPSS

CVE•added 2022/12/13 4:15 p.m.•68 views

CVE-2021-40365

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

7.5CVSS7.3AI score0.00093EPSS

CVE•added 2022/12/13 4:15 p.m.•59 views

CVE-2021-44695

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

7.5CVSS5.7AI score0.00063EPSS