Sinumerik One Firmware Security Vulnerabilities and Issues — Sinumerik One Firmware CVE List

Lucene search

SiemensSinumerik One Firmware

5 matches found

CVE•added 2021/03/18 5:15 p.m.•412 views

CVE-2020-27827

A flaw was found in multiple versions of OpenvSwitch. Specially crafted LLDP packets can cause memory to be lost when allocating data to handle specific optional TLVs, potentially causing a denial of service. The highest threat from this vulnerability is to system availability.

7.5CVSS7.2AI score0.00415EPSS

CVE•added 2022/11/08 11:15 a.m.•110 views

CVE-2022-30694

The login endpoint /FormLogin in affected web services does not apply proper origin checking. This could allow authenticated remote attackers to track the activities of other users via a login cross-site request forgery attack.

6.5CVSS4.6AI score0.00141EPSS

CVE•added 2020/11/12 6:15 p.m.•81 views

CVE-2020-8745

Insufficient control flow management in subsystem for Intel(R) CSME versions before 11.8.80, 11.12.80, 11.22.80, 12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25 , Intel(R) TXE versions before 3.1.80 and 4.0.30 may allow an unauthenticated user to potentially enable escalation of privilege via physi...

6.8CVSS6.8AI score0.00469EPSS

CVE•added 2022/03/08 12:15 p.m.•77 views

CVE-2022-24408

A vulnerability has been identified in SINUMERIK MC (All versions < V1.15 SP1), SINUMERIK ONE (All versions

7.8CVSS7.8AI score0.00029EPSS

CVE•added 2023/12/12 12:15 p.m.•77 views

CVE-2023-46156

Affected devices improperly handle specially crafted packets sent to port 102/tcp.This could allow an attacker to create a denial of service condition. A restart is needed to restorenormal operations.

7.5CVSS7.4AI score0.0004EPSS