Siemens Vulnerabilities

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

Type

Not Defined1005
SCADA Software268
Application Server Software18
Automation Software13
Router Operating System7

The moderation team is working with the threat intelligence team to categorize software that is affected by security vulnerabilities. This helps to illustrate the assignment of these categories to determine the most affected software types.

Product

Siemens Teamcenter Visualization148
Siemens JT2Go139
Siemens Tecnomatix Plant Simulation50
Siemens Parasolid43
Siemens Simcenter Femap43

Grouping vulnerabilities by products helps to get an overview. This makes it possible to determine an homogeneous landscape or the most important hotspots in heterogeneous landscapes.

Remediation

Official Fix934
Temporary Fix0
Workaround113
Unavailable8
Not Defined271

Vendors and researchers are eager to find countermeasures to mitigate security vulnerabilities. These can be distinguished between multiple forms and levels of remediation which influence risks differently.

Exploitability

High4
Functional1
Proof-of-Concept16
Unproven6
Not Defined1299

Researcher and attacker which are looking for security vulnerabilities try to exploit them for academic purposes or personal gain. The level and quality of exploitability can be distinguished to determine simplicity and strength of attacks.

Access Vector

Not Defined0
Physical12
Local158
Adjacent323
Network833

The approach a vulnerability it becomes important to use the expected access vector. This is typically via the network, local, or physically even.

Authentication

Not Defined0
High25
Low574
None727

To exploit a vulnerability a certail level of authentication might be required. Vulnerabilities without such a requirement are much more popular.

User Interaction

Not Defined0
Required275
None1051

Some attack scenarios require some user interaction by a victim. This is typical for phishing, social engineering and cross site scripting attacks.

C3BM Index

Our unique C3BM Index (CVSSv3 Base Meta Index) cumulates the CVSSv3 Meta Base Scores of all entries over time. Comparing this index to the amount of disclosed vulnerabilities helps to pinpoint the most important events.

CVSSv3 Base

≤10
≤21
≤39
≤4133
≤5142
≤6265
≤7414
≤8248
≤973
≤1041

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp

≤10
≤21
≤315
≤4128
≤5154
≤6338
≤7366
≤8218
≤973
≤1033

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB

≤10
≤21
≤316
≤4197
≤5165
≤6356
≤7275
≤8250
≤930
≤1036

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD

≤10
≤20
≤35
≤414
≤516
≤677
≤758
≤8285
≤963
≤1074

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

CNA

≤10
≤20
≤32
≤413
≤58
≤614
≤710
≤8141
≤913
≤1021

A CVE Numbering Authority (CNA) is responsible for assigning new CVE entries. They might also include a CVSS score. These are usually not complete and might differ from VulDB scores.

Vendor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

Exploit 0-day

<1k4
<2k4
<5k150
<10k521
<25k626
<50k20
<100k1
≥100k0

The moderation team is working with the threat intelligence team to determine prices for exploits. Our unique algorithm is used to identify the 0-day prices for an exploit, before it got distributed or became public. Calculated prices are aligned to prices disclosed by vulnerability broker and compared to prices we see on exploit markets.

Exploit Today

<1k595
<2k206
<5k288
<10k171
<25k66
<50k0
<100k0
≥100k0

The 0-day prices do not consider time-relevant factors. The today price does reflect price impacts like disclosure of vulnerability details, alternative exploits, availability of countermeasures. These dynamic aspects might decrease the exploit prices over time. Under certain circumstances this happens very fast.

Exploit Market Volume

Our unique calculation of exploit prices makes it possible to forecast the expected exploit market volume. The calculated prices for all possible 0-day expoits are cumulated for this task. Comparing the volume to the amount of disclosed vulnerabilities helps to pinpoint the most important events.

🔴 CTI Activities

Our unique Cyber Threat Intelligence aims to determine the ongoing research of actors to anticipiate their acitivities. Observing exploit markets on the Darknet, discussions of vulnerabilities on mailinglists, and exchanges on social media makes it possible to identify planned attacks. Monitored actors and activities are classified whether they are offensive or defensive. They are also weighted as some actors are well-known for certain products and technologies. And some of their disclosures might contain more or less details about technical aspects and personal context. The world map highlights active actors in real-time.

Affected Products (774): 7KM PAC Switched Ethernet PROFINET Expansion Module (1), 7KT PAC1200 Data Manager (1), 3568i WAP (1), APOGEE Insight (1), APOGEE MBC (14), APOGEE MEC (14), APOGEE PXC (3), APOGEE PXC Compact (14), APOGEE PXC Modular (14), Automation License Manager (12), Biograph Horizon PET-CT System (1), CCID (1), CCIS (1), CCMD (1), CCMW (1), CCPW (1), CFIS (1), COMOS (10), COMPAS Mobile Application (1), CP-8000 (2), CP-8000 MASTER MODULE (2), CP-8021 (2), CP-8021 MASTER MODULE (2), CP-8022 (2), CP-8022 MASTER MODULE WITH GPRS (2), CP-8031 (1), CP-8031 MASTER MODULE (5), CP-8050 (1), CP-8050 MASTER MODULE (4), CP1604 (1), CP1616 (1), Camstar Enterprise Platform (3), Capital VSTAR (13), Cerberus DMS (1), Climatix BACnet (1), Climatix POL909 (4), CoreShield One-Way Gateway (1), Cp 1604 (1), DCA Vantage Analyzer (2), DIGSI 4 (2), DIGSI 5 (1), DP V7 CPU (1), Desigo CC (2), Desigo CC Compact (1), Desigo DXR2 (7), Desigo Insight (3), Desigo PXC3 (7), Desigo PXC4 (8), Desigo PXC5 (8), Desigo PXG3.W100-1 (7), Desigo PXG3.W100-2 (7), Desigo PXG3.W200-1 (7), Desigo PXG3.W200-2 (7), Desigo PXM30-1 (7), Desigo PXM30.E (7), Desigo PXM40-1 (7), Desigo PXM40.E (7), Desigo PXM50-1 (7), Desigo PXM50.E (7), Desigo PX Web Module (1), EN100 Ethernet Module (7), EN100 Ethernet Module DNP3 (3), EN100 Ethernet Module IEC104 (3), EN100 Ethernet Module IEC 61850 (3), EN100 Ethernet Module Modbus TCP (3), EN100 Ethernet Module PROFINET IO (3), EN100 Ethernet module DNP3 IP (1), EN100 Ethernet module IEC 104 (1), EN100 Ethernet module IEC 61850 (1), EN100 Ethernet module Modbus TCP (1), EN100 Ethernet module PROFINET IO (1), EN100 Module (1), Enterprise OpenScape Branch (4), GMA-Manager (1), Gigaset C450 Ip (1), Gigaset SE361 WLAN router (3), Gigaset Se461 Wimax Router (1), Gigaset WLAN Camera (1), HMI Mobile Panel (1), HMI Multi Panel (1), HiNet LP (1), HomeControl for Room Automation (1), IE-WSN-PA Link WirelessHART Gateway (1), IEC 61850 (1), IP (1), Industrial Edge Management (2), JT2Go (139), JT Open (4), JTTK (22), JT Utilities (30), KTK ATE530S (1), L (3), LOGO! (2), LOGO!8 (2), LOGO! 8 BM (10), LOGO!8 BM (4), LOGO! Soft Comfort (6), LOGO 8 BM (4), LOGO CMR2020 (1), LOGO CMR2040 (1), License Management Utility (1), Luxion KeyShot (5), MAGNETOM (1), MAMMOMAT (1), Mendix (11), Mendix 7 (2), Mendix 8 (2), Mendix 9 (2), Mendix Applications (1), Mendix Database Replication (1), Mendix Email Connector (1), Mendix Excel Importer Module (2), Mendix Forgot Password Appstore Module (2), Mendix SAML (3), Mendix SAML Module (5), Mendix Workflow Commons (1), ModelSim Simulation (1), NAEOTOM Alpha (1), NX 1980 (2), Nucleus (3), Nucleus NET (24), Nucleus RTOS (6), Nucleus ReadyStart (18), Nucleus ReadyStart V3 (1), Nucleus Source Code (18), OZW672 (3), OZW772 (4), OZW OZW672 (1), Opcenter Execution Core (4), Opcenter Execution Discrete (3), Opcenter Execution Foundation (3), Opcenter Execution Process (3), Opcenter Intelligence (3), Opcenter Quality (5), Opcenter RD (3), OpenPCS (1), OpenPCS 7 (1), OpenV2G (1), Operation Scheduler (1), PADS Standard (20), PADS Standard Plus (20), PCS neo (2), PLM (1), PLM Help Server (1), POWER METER SICAM Q100 (5), POWER METER SICAM Q200 (2), Parasolid (43), Phone (3), Polarion (3), Polarion ALM (2), Polarion Subversion Webclient (3), ProcessSuite (1), Programmable Logic Controller (1), QMS Automotive (11), Questa Simulation (1), R3964 (1), RAPIDLab 1200 (2), RAPIDPoint 400 (2), RAPIDPoint 500 (2), RFID 181-EIP (1), ROX II (2), ROX I OS (1), RUGGEDCOM (3), RUGGEDCOM CROSSBOW (7), RUGGEDCOM NMS (2), RUGGEDCOM RM1224 (2), RUGGEDCOM ROS M969 (2), RUGGEDCOM ROS M2100 (8), RUGGEDCOM ROS M2200 (2), RUGGEDCOM ROS RMC (2), RUGGEDCOM ROS RMC20 (2), RUGGEDCOM ROS RMC30 (2), RUGGEDCOM ROS RMC40 (2), RUGGEDCOM ROS RMC41 (2), RUGGEDCOM ROS RMC8388 (9), RUGGEDCOM ROS RP110 (2), RUGGEDCOM ROS RS400 (2), RUGGEDCOM ROS RS401 (2), RUGGEDCOM ROS RS416 (2), RUGGEDCOM ROS RS416Pv2 (1), RUGGEDCOM ROS RS416v2 (9), RUGGEDCOM ROS RS900 (3), RUGGEDCOM ROS RS900G (17), RUGGEDCOM ROS RS900GP (2), RUGGEDCOM ROS RS900L (3), RUGGEDCOM ROS RS900W (2), RUGGEDCOM ROS RS910 (2), RUGGEDCOM ROS RS910L (2), RUGGEDCOM ROS RS910W (2), RUGGEDCOM ROS RS920L (2), RUGGEDCOM ROS RS920W (2), RUGGEDCOM ROS RS930L (2), RUGGEDCOM ROS RS930W (2), RUGGEDCOM ROS RS940G (2), RUGGEDCOM ROS RS969 (2), RUGGEDCOM ROS RS8000 (2), RUGGEDCOM ROS RS8000A (2), RUGGEDCOM ROS RS8000H (2), RUGGEDCOM ROS RS8000T (2), RUGGEDCOM ROS RSG900 (7), RUGGEDCOM ROS RSG900C (1), RUGGEDCOM ROS RSG900G (1), RUGGEDCOM ROS RSG900R (1), RUGGEDCOM ROS RSG907R (3), RUGGEDCOM ROS RSG908C (3), RUGGEDCOM ROS RSG909R (3), RUGGEDCOM ROS RSG910C (3), RUGGEDCOM ROS RSG920P (8), RUGGEDCOM ROS RSG920P (1), RUGGEDCOM ROS RSG2100 (11), RUGGEDCOM ROS RSG2100P (15), RUGGEDCOM ROS RSG2200 (2), RUGGEDCOM ROS RSG2288 (9), RUGGEDCOM ROS RSG2300 (9), RUGGEDCOM ROS RSG2300P (9), RUGGEDCOM ROS RSG2488 (9), RUGGEDCOM ROS RSL910 (9), RUGGEDCOM ROS RST916C (9), RUGGEDCOM ROS RST916P (9), RUGGEDCOM ROS RST2228 (9), RUGGEDCOM ROS RST2228P (2), RUGGEDCOM ROS i800 (2), RUGGEDCOM ROS i801 (2), RUGGEDCOM ROS i802 (2), RUGGEDCOM ROS i803 (2), RUGGEDCOM ROX (13), RUGGEDCOM ROX I (5), RUGGEDCOM ROX MX5000 (5), RUGGEDCOM ROX MX5000RE (1), RUGGEDCOM ROX RX1400 (5), RUGGEDCOM ROX RX1500 (5), RUGGEDCOM ROX RX1501 (5), RUGGEDCOM ROX RX1510 (5), RUGGEDCOM ROX RX1511 (5), RUGGEDCOM ROX RX1512 (5), RUGGEDCOM ROX RX1524 (5), RUGGEDCOM ROX RX1536 (5), RUGGEDCOM ROX RX5000 (5), RWG1.M8 (1), RWG1.M12 (1), RWG1.M12D (1), Reliant Unix (2), RuggedCom ROS (4), RuggedCom WiMAX (1), Ruggedcom (3), Ruggedcom Rugged Operating System (4), SANTIS 50 (1), SCALANCE (8), SCALANCE LPE9403 (4), SCALANCE M-800 (6), SCALANCE M804PB (1), SCALANCE M812-1 ADSL-Router (1), SCALANCE M816-1 ADSL-Router (1), SCALANCE M826-2 SHDSL-Router (1), SCALANCE M874-2 (1), SCALANCE M874-3 (1), SCALANCE M876-3 (1), SCALANCE M876-4 (1), SCALANCE MUM853-1 (1), SCALANCE MUM856-1 (1), SCALANCE S602 (4), SCALANCE S612 (4), SCALANCE S615 (4), SCALANCE S623 (4), SCALANCE S627-2M (4), SCALANCE SC-600 (5), SCALANCE SC-600 Family (1), SCALANCE SC622-2C (1), SCALANCE SC626-2C (1), SCALANCE SC632-2C (1), SCALANCE SC636-2C (1), SCALANCE SC642-2C (1), SCALANCE SC646-2C (1), SCALANCE W-700 (3), SCALANCE W-1700 (3), SCALANCE W740 (1), SCALANCE W780 (1), SCALANCE W1750D (1), SCALANCE W1788-1 M12 (3), SCALANCE W1788-2 EEC M12 (3), SCALANCE W1788-2 M12 (3), SCALANCE W1788-2IA M12 (3), SCALANCE WAM763-1 (1), SCALANCE WAM766-1 (1), SCALANCE WAM766-1 6GHz (1), SCALANCE WAM766-1 EEC (1), SCALANCE WAM766-1 EEC 6GHz (1), SCALANCE WUM763-1 (1), SCALANCE WUM766-1 (1), SCALANCE WUM766-1 6GHz (1), SCALANCE X-200 (7), SCALANCE X-200IRT (8), SCALANCE X-200RNA (2), SCALANCE X-300 (6), SCALANCE X-408 (2), SCALANCE X-414-3E (1), SCALANCE X-443-1 (1), SCALANCE X200-4P IRT (7), SCALANCE X201-3P IRT (7), SCALANCE X201-3P IRT PRO (7), SCALANCE X202-2 IRT (2), SCALANCE X202-2IRT (5), SCALANCE X202-2P IRT (8), SCALANCE X202-2P IRT PRO (7), SCALANCE X204 IRT (2), SCALANCE X204 IRT PRO (2), SCALANCE X204-2 (6), SCALANCE X204-2FM (6), SCALANCE X204-2LD (6), SCALANCE X204-2LD TS (6), SCALANCE X204-2TS (6), SCALANCE X204IRT (5), SCALANCE X204IRT PRO (5), SCALANCE X204RNA (6), SCALANCE X204RNA EEC (5), SCALANCE X206-1 (6), SCALANCE X206-1LD (6), SCALANCE X208 (6), SCALANCE X208PRO (6), SCALANCE X212-2 (6), SCALANCE X212-2LD (6), SCALANCE X216 (6), SCALANCE X224 (6), SCALANCE X300WG (1), SCALANCE X302-7 EEC (9), SCALANCE X304-2FE (9), SCALANCE X306-1LD FE (9), SCALANCE X307-2 EEC (9), SCALANCE X307-3 (9), SCALANCE X307-3LD (9), SCALANCE X308-2 (17), SCALANCE X308-2LD (9), SCALANCE X308-2LH (9), SCALANCE X308-2LH+ (9), SCALANCE X308-2M (9), SCALANCE X308-2M PoE (9), SCALANCE X308-2M TS (9), SCALANCE X310 (11), SCALANCE X310FE (9), SCALANCE X320-1 FE (9), SCALANCE X320-1-2LD FE (9), SCALANCE X408-2 (9), SCALANCE XB-200 (4), SCALANCE XC-200 (4), SCALANCE XF-200BA (4), SCALANCE XF201-3P IRT (7), SCALANCE XF202-2P IRT (7), SCALANCE XF204 (6), SCALANCE XF204 IRT (2), SCALANCE XF204-2 (6), SCALANCE XF204-2BA IRT (7), SCALANCE XF204IRT (5), SCALANCE XF206-1 (6), SCALANCE XF208 (6), SCALANCE XM-400 (4), SCALANCE XM400 (1), SCALANCE XP-200 (4), SCALANCE XR-300WG (4), SCALANCE XR-500 (4), SCALANCE XR324-4M EEC (9), SCALANCE XR324-4M PoE (9), SCALANCE XR324-4M PoE TS (9), SCALANCE XR324-12M (9), SCALANCE XR324-12M TS (9), SCALANCE XR500 (1), SCALANCE Xx200 Family (1), SENTRON powermanager (1), SIAMTIC RF185C (1), SICAM A8000 CP-802X (1), SICAM A8000 CP-8000 (2), SICAM A8000 CP-8021 (1), SICAM A8000 CP-8022 (1), SICAM A8000 CP-8031 (1), SICAM A8000 CP-8050 (2), SICAM GridEdge Essential ARM (5), SICAM GridEdge Essential Intel (5), SICAM GridEdge Essential with GDS ARM (5), SICAM GridEdge Essential with GDS Intel (5), SICAM MIC (1), SICAM MMU (9), SICAM P850 (13), SICAM P855 (13), SICAM PAS (11), SICAM PAS-PQS (1), SICAM PQ Analyzer (2), SICAM PQS (5), SICAM RTUs SM-2556 COM Module (3), SICAM SCC (1), SICAM SGU (9), SICAM T (9), SICAM TOOLBOX II (3), SICAM WEB firmware for SICAM A8000 RTU (1), SIDOOR ATD430W (1), SIDOOR ATE530S COATED (1), SIDOOR ATE531S (1), SIMARIS Configuration (1), SIMATIC (16), SIMATIC BATCH (1), SIMATIC CFU DIQ (1), SIMATIC CFU PA (1), SIMATIC CN 4100 (2), SIMATIC CP 44x-1 RNA (1), SIMATIC CP 343-1 (4), SIMATIC CP 343-1 Advanced (1), SIMATIC CP343-1 Advanced (1), SIMATIC CP 343-1 ERPC (1), SIMATIC CP 343-1 Lean (1), SIMATIC CP 442-1 RNA (1), SIMATIC CP 443-1 (6), SIMATIC CP443-1 (1), SIMATIC CP 443-1 Advanced (5), SIMATIC CP443-1 Advanced (1), SIMATIC CP443-1 OPC (1), SIMATIC CP443-1 OPC UA (1), SIMATIC CP 443-1 RNA (1), SIMATIC CP 1242-7 V2 (6), SIMATIC CP 1243-1 (6), SIMATIC CP 1243-1 DNP3 (3), SIMATIC CP 1243-1 IEC (3), SIMATIC CP 1243-7 LTE EU (6), SIMATIC CP 1243-7 LTE US (6), SIMATIC CP 1243-8 IRC (6), SIMATIC CP 1542SP-1 (3), SIMATIC CP 1542SP-1 IRC (6), SIMATIC CP 1543-1 (6), SIMATIC CP 1543SP-1 (6), SIMATIC CP 1545-1 (1), SIMATIC CP 1604 (2), SIMATIC CP 1616 (2), SIMATIC CP 1623 (2), SIMATIC CP 1626 (2), SIMATIC CP 1628 (2), SIMATIC Cloud Connect 7 (7), SIMATIC Drive Controller (6), SIMATIC Drive Controller Family (4), SIMATIC ET (1), SIMATIC ET 200 Open Controller CPU 1515SP PC2 (1), SIMATIC ET 200 SP Open Controller CPU 1515SP PC (1), SIMATIC ET 200 SP Open Controller CPU 1515SP PC2 (1), SIMATIC ET200MP IM155-5 PN HF (1), SIMATIC ET 200SP (1), SIMATIC ET 200SP Interfacemodul IM 155-6 MF HF (1), SIMATIC ET 200SP Open Controller CPU 1515SP PC (5), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (14), SIMATIC Energy Manager Basic (3), SIMATIC Energy Manager PRO (3), SIMATIC HMI Basic Panel (3), SIMATIC HMI Comfort Outdoor Panel (6), SIMATIC HMI Comfort Outdoor Panels (7), SIMATIC HMI Comfort Panel (12), SIMATIC HMI Comfort Panels (9), SIMATIC HMI KTP400 Basic (1), SIMATIC HMI KTP700 Basic (1), SIMATIC HMI KTP700F Mobile Arctic (1), SIMATIC HMI KTP900 Basic (1), SIMATIC HMI KTP1200 Basic (1), SIMATIC HMI KTP Mobile Panel (7), SIMATIC HMI KTP Mobile Panels (9), SIMATIC HMI Mobile Panel (3), SIMATIC HMI United Comfort Panel (1), SIMATIC HMI panel (12), SIMATIC IPC647D (1), SIMATIC IPC647E (1), SIMATIC IPC847D (1), SIMATIC IPC847E (1), SIMATIC IPC1047 (1), SIMATIC IPC1047E (1), SIMATIC IPC DiagBase (3), SIMATIC IPC DiagMonitor (4), SIMATIC IT LMS (1), SIMATIC IT Production Suite (1), SIMATIC IT UADM (1), SIMATIC IT UA Discrete Manufacturing (1), SIMATIC Ident MV420 (2), SIMATIC Ident MV440 (2), SIMATIC Logon (2), SIMATIC MV400 (2), SIMATIC MV540 H (2), SIMATIC MV540 S (2), SIMATIC MV550 H (2), SIMATIC MV550 S (2), SIMATIC MV560 U (2), SIMATIC MV560 X (2), SIMATIC NET CP 343-1 (1), SIMATIC NET CP 343-1 Advanced (1), SIMATIC NET CP 343-1 Lean (1), SIMATIC NET PC-Software (3), SIMATIC NET PC Software (3), SIMATIC Notifier Server for Windows (3), SIMATIC PCS (1), SIMATIC PCS 7 (19), SIMATIC PCS7 (11), SIMATIC PCS neo (4), SIMATIC PDM (4), SIMATIC Process Historian 2013 (1), SIMATIC Process Historian 2014 (1), SIMATIC Process Historian 2019 (1), SIMATIC Process Historian 2020 (1), SIMATIC Prosave (1), SIMATIC RF-MANAGER 2008 (1), SIMATIC RF166C (1), SIMATIC RF180C (1), SIMATIC RF182C (1), SIMATIC RF185C (1), SIMATIC RF186C (1), SIMATIC RF186CI (1), SIMATIC RF188C (2), SIMATIC RF188CI (1), SIMATIC RF360R (1), SIMATIC RF600R (1), SIMATIC RF615R (1), SIMATIC RF680R (1), SIMATIC RF685R (1), SIMATIC RTLS Locating Manager (6), SIMATIC RTU 3000 (1), SIMATIC S7 (1), SIMATIC S7 1200 Cpu (1), SIMATIC S7 Cpu-1211c (5), SIMATIC S7 Cpu 1200 (2), SIMATIC S7 PLCSIM (1), SIMATIC S7-200 SMART CPU (1), SIMATIC S7-300 (4), SIMATIC S7-300 CPU (5), SIMATIC S7-300 Cpu (1), SIMATIC S7-300 PN (2), SIMATIC S7-300 PN-DP CPU (1), SIMATIC S7-400 (6), SIMATIC S7-400 CPU (1), SIMATIC S7-400 Cpu 414-3 Pn (1), SIMATIC S7-400 Cpu 414f-3 Pn (1), SIMATIC S7-400 H V6 CPU (2), SIMATIC S7-400 PN (3), SIMATIC S7-400 PN-DP V7 (2), SIMATIC S7-400 PN-DP V7 CPU (2), SIMATIC S7-400H (3), SIMATIC S7-400H V6 (2), SIMATIC S7-410 (2), SIMATIC S7-410 V8 CPU (2), SIMATIC S7-410 V10 CPU (2), SIMATIC S7-1200 (4), SIMATIC S7-1200 CPU (11), SIMATIC S7-1200 CPU Family (4), SIMATIC S7-1200 PLC (3), SIMATIC S7-1200 Plc (1), SIMATIC S7-1500 (4), SIMATIC S7-1500 CPU (15), SIMATIC S7-1500 CPU Family (4), SIMATIC S7-1500 Cpu (9), SIMATIC S7-1500 Software Controller (13), SIMATIC S7-1518-4 Pn (1), SIMATIC S7-PLCSIM (3), SIMATIC S7-PLCSIM Advanced (11), SIMATIC S7-PM (1), SIMATIC STEP 7 (12), SIMATIC STEP 7 V5 (1), SIMATIC Step 7 (5), SIMATIC TDC CP51M1 (2), SIMATIC TDC CPU555 (1), SIMATIC Tiaportal (2), SIMATIC WinAC RTX (1), SIMATIC WinCC (26), SIMATIC WinCC Flexible (1), SIMATIC WinCC OA (3), SIMATIC WinCC OA Operator iOS App (1), SIMATIC WinCC Professional (1), SIMATIC WinCC Runtime Advanced (2), SIMATIC WinCC Runtime Professional (1), SIMATIC WinCC Sm@rtClient (6), SIMATIC Wincc Open Architecture (4), SIMATIC Wincc Runtime (3), SIMATIC Wincc Runtime Advanced (6), SIMATIC Wincc Runtime Professional (1), SIMATIC eaSie Core Package (2), SIMATIC eaSie PCS 7 Skill Package (1), SIMOCODE ES (3), SIMOTICS CONNECT 400 (1), SIMOTION C240 (1), SIMOTION D445-2 DP-PN (1), SIMOTION P320-4 S (1), SINAMICS (3), SINAMICS PERFECT HARMONY GH180 (3), SINAMICS SL150 (2), SINAMICS SM150 (2), SINAMICS SM150i (1), SINAMICS STARTER (4), SINEC (1), SINEC INS (3), SINEC NMS (24), SINEMA (1), SINEMA Remote Connect Client (1), SINEMA Remote Connect Server (30), SINEMA Server (8), SINETPLAN (1), SINUMERIK (1), SINUMERIK 808D (1), SINUMERIK 828D (11), SINUMERIK 840D sl (12), SINUMERIK Analyse MyCondition (1), SINUMERIK Analyze MyPerformance (1), SINUMERIK Analyze MyPerformance OEE-Monitor (1), SINUMERIK Analyze MyPerformance OEE-Tuning (1), SINUMERIK Edge (1), SINUMERIK Integrate Client 02 (1), SINUMERIK Integrate Client 03 (1), SINUMERIK Integrate Client 04 (1), SINUMERIK Integrate Operate Client (1), SINUMERIK Integrate for Production (1), SINUMERIK MC (1), SINUMERIK Manage MyMachines (1), SINUMERIK ONE (1), SIPLUS (1), SIPLUS ET 200SP CP 1542SP-1 IRC TX RAIL (3), SIPLUS ET 200SP CP 1543SP-1 ISEC (3), SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL (3), SIPLUS HMI KTP400 BASIC (1), SIPLUS HMI KTP700 BASIC (1), SIPLUS HMI KTP900 BASIC (1), SIPLUS HMI KTP1200 BASIC (1), SIPLUS NET (1), SIPLUS NET CP 1242-7 V2 (3), SIPLUS NET CP 1543-1 (3), SIPLUS S7-1200 CP 1243-1 (3), SIPLUS S7-1200 CP 1243-1 RAIL (3), SIPORT MP (2), SIPROTEC (3), SIPROTEC 4 (1), SIPROTEC 5 (7), SIPROTEC 5 6MD85 (2), SIPROTEC 5 6MD86 (2), SIPROTEC 5 6MD89 (2), SIPROTEC 5 6MU85 (2), SIPROTEC 5 7KE85 (2), SIPROTEC 5 7SA82 (2), SIPROTEC 5 7SA84 (1), SIPROTEC 5 7SA86 (2), SIPROTEC 5 7SA87 (2), SIPROTEC 5 7SD82 (2), SIPROTEC 5 7SD84 (1), SIPROTEC 5 7SD86 (2), SIPROTEC 5 7SD87 (2), SIPROTEC 5 7SJ81 (2), SIPROTEC 5 7SJ82 (2), SIPROTEC 5 7SJ85 (2), SIPROTEC 5 7SJ86 (2), SIPROTEC 5 7SK82 (2), SIPROTEC 5 7SK85 (2), SIPROTEC 5 7SL82 (2), SIPROTEC 5 7SL86 (2), SIPROTEC 5 7SL87 (2), SIPROTEC 5 7SS85 (2), SIPROTEC 5 7ST85 (2), SIPROTEC 5 7ST86 (1), SIPROTEC 5 7SX82 (1), SIPROTEC 5 7SX85 (2), SIPROTEC 5 7UM85 (2), SIPROTEC 5 7UT82 (2), SIPROTEC 5 7UT85 (2), SIPROTEC 5 7UT86 (2), SIPROTEC 5 7UT87 (2), SIPROTEC 5 7VE85 (2), SIPROTEC 5 7VK87 (3), SIPROTEC 5 7VU85 (1), SIPROTEC 5 Communication Module ETH-BA-2EL (2), SIPROTEC 5 Communication Module ETH-BB-2FO (1), SIPROTEC 5 Communication Module ETH-BD-2FO (2), SIPROTEC 5 Compact 7SX800 (2), SIPROTEC Compact (4), SM-2558 (1), SOMATOM X.cite (1), SOMATOM X.creed (1), SOMATOM go.All (1), SOMATOM go.Now (1), SOMATOM go.Open Pro (1), SOMATOM go.Sim (1), SOMATOM go.Top (1), SOMATOM go.Up (1), SPC4000 (1), SPC5000 (1), SPC6000 (1), SPCanywhere (5), SPPA-T3000 Application Server (18), SPPA-T3000 MS3000 Migration Server (35), Scalance S (2), Scalance W788-1pro (2), Scalance X-200 (4), Scalance X-200 IRT (3), Scalance X-200irt (1), Scalance X-204RNA (1), Scalance X-300 (5), Scalance X-408 (3), Scalance X-414 (1), Scalance X204irt (3), Scalance XC-200 (1), Scalance XF-200 (1), Scalance XP-200 (1), SiNVR 3 Central Control Server (17), SiNVR 3 Video Server (17), SiPass integrated (9), SiPass integrated AC5102 (1), SiPass integrated ACC-AP (1), Simatic RF192C (1), Simcenter Amesim (1), Simcenter Femap (43), Simcenter STAR-CCM+ (2), Simcenter STAR-CCM+ Viewer (3), Sinamics S120 (1), Siveillance Control (1), Siveillance Control Pro (1), Siveillance Video 2020 (2), Siveillance Video 2021 (2), Siveillance Video 2022 (2), Siveillance Video 2023 (2), Siveillance Video Client (1), Siveillance Video DLNA Server (1), Siveillance Video Mobile Server V2022 R2 (1), Siveillance Video Open Network Bridge (1), Soft Starter ES (3), Software Center (1), Solid Edge (15), Solid Edge SE2020 (7), Solid Edge SE2021 (22), Solid Edge SE2022 (25), Solid Edge SE2023 (31), Solid Edge Viewer (7), Spectrum Power (5), Spectrum Power 3 (1), Spectrum Power 4 (2), Spectrum Power 5 (1), Spectrum Power 7 (3), Spectrum Power MGMS (1), SpeedStream 5200 (1), SpeedStream 6520 (1), Speedstream Wireless Router (2), Symbia.net (1), Symbia E-S (1), Symbia Evo (1), Symbia Intevo (1), Symbia T (1), Synco OZW Web Server (1), Syngo Dynamics (3), TALON TC (1), TALON TC BACnet (2), TALON TC Compact (14), TALON TC Modular (14), TD Keypad Designer (1), TIA Multiuser Server (1), TIA Portal (4), TIA Project-Serve (1), TIM 1531 IRC (2), Teamcenter (8), Teamcenter Active Workspace (6), Teamcenter Visualization (148), Tecnomatix FactoryLink (2), Tecnomatix Plant Simulation (50), Tecnomatix RobotExpert (1), VSTAR (9), ViewPort for Web Office Portal (1), WebTransactions (2), WinAC RTX (1), WinCC (19), Wincc Tia Portal (7), XHQ (7), XHQ Server (1), Xpedition Designer (1), Xpedition Layout Browser (1), dp (2), dp Cpu (1), syngo.via VB10 (1), syngo.via VB20 (1), syngo.via VB30 (1), syngo.via VB40 (1), syngo.via VB50 (1), syngo.via VB60 (1), syngo Dynamics (4)

Link to Vendor Website: https://www.siemens.com/

PublishedBaseTempVulnerabilityProdExpRemCTIEPSSCVE
10/10/20234.84.7Siemens SINEC NMS SNMP Configuration cross site scriptingUnknownNot DefinedOfficial Fix0.310.00045CVE-2023-44315
10/10/20234.44.4Siemens SIMATIC CP 1628 DMA resource consumptionSCADA SoftwareNot DefinedNot Defined0.000.00042CVE-2023-37195
10/10/20237.27.2Siemens SINEMA Server SNMP Configuration cross site scriptingUnknownNot DefinedNot Defined0.030.00054CVE-2023-35796
10/10/20237.87.6Siemens SICAM PAS/SICAM PQS permission assignmentUnknownNot DefinedOfficial Fix0.030.00042CVE-2023-45205
10/10/20235.45.4Siemens SICAM PAS/SICAM PQS permission assignmentUnknownNot DefinedOfficial Fix0.030.00042CVE-2023-38640
10/10/20237.87.6Siemens SINEC NMS permission assignmentUnknownNot DefinedOfficial Fix0.030.00042CVE-2022-30527
10/10/20236.76.7Siemens SIMATIC CP 1628 DMA access controlSCADA SoftwareNot DefinedNot Defined0.020.00042CVE-2023-37194
10/10/20237.87.6Siemens Parasolid/Tecnomatix Plant Simulation IGS File stack-based overflowUnknownNot DefinedOfficial Fix0.020.00051CVE-2023-45601
10/10/20237.87.6Siemens Tecnomatix Plant Simulation IGS File type conversionUnknownNot DefinedOfficial Fix0.390.00051CVE-2023-45204
10/10/20237.87.6Siemens Tecnomatix Plant Simulation SPP File out-of-boundsUnknownNot DefinedOfficial Fix0.090.00110CVE-2023-44087
10/10/20237.87.6Siemens Tecnomatix Plant Simulation SPP File out-of-boundsUnknownNot DefinedOfficial Fix0.060.00110CVE-2023-44086
10/10/20237.87.6Siemens Tecnomatix Plant Simulation SPP File out-of-boundsUnknownNot DefinedOfficial Fix0.030.00110CVE-2023-44085
10/10/20237.87.6Siemens Tecnomatix Plant Simulation SPP File out-of-boundsUnknownNot DefinedOfficial Fix0.000.00110CVE-2023-44084
10/10/20237.87.6Siemens Tecnomatix Plant Simulation SPP File out-of-bounds writeUnknownNot DefinedOfficial Fix0.030.00066CVE-2023-44083
10/10/20237.87.6Siemens Tecnomatix Plant Simulation SPP File out-of-bounds writeUnknownNot DefinedOfficial Fix0.030.00066CVE-2023-44082
10/10/20237.87.6Siemens Tecnomatix Plant Simulation SPP File out-of-bounds writeUnknownNot DefinedOfficial Fix0.030.00066CVE-2023-44081
10/10/20239.19.0Siemens CP-8031 MASTER MODULE/CP-8050 MASTER MODULE SSH hard-coded credentialsUnknownNot DefinedOfficial Fix0.040.00043CVE-2023-36380
10/10/20237.87.6Siemens Xpedition Layout Browser PCB File stack-based overflowUnknownNot DefinedOfficial Fix0.030.00050CVE-2023-30900
10/10/20239.89.6Siemens Simcenter Amesim SOAP Endpoint code injectionUnknownNot DefinedOfficial Fix0.020.00248CVE-2023-43625
10/10/20235.35.2Siemens Mendix Forgot Password information exposureUnknownNot DefinedOfficial Fix0.030.00077CVE-2023-43623
10/10/20236.96.8Siemens CP-8031 MASTER MODULE/CP-8050 MASTER MODULE Web Server path traversalUnknownNot DefinedOfficial Fix0.040.00082CVE-2023-42796
09/14/20234.44.3Siemens PCS neo Administration Console file information disclosureUnknownNot DefinedNot Defined0.030.00042CVE-2023-38558
09/14/20237.47.3Siemens Spectrum Power 7 Update Script permission assignmentUnknownNot DefinedOfficial Fix0.020.00042CVE-2023-38557
09/12/20237.87.6Siemens Tecnomatix Plant Simulation SPP File memory corruptionUnknownNot DefinedOfficial Fix0.030.00053CVE-2023-41846
09/12/20238.28.1Siemens QMS Automotive QMS.Mobile Module access controlUnknownNot DefinedOfficial Fix0.030.00049CVE-2023-40730
09/12/20237.87.6Siemens QMS Automotive QMS.Mobile Module signature verificationUnknownNot DefinedOfficial Fix0.030.00043CVE-2023-40727
09/12/20237.87.6Siemens Parasolid X_T File out-of-bounds writeUnknownNot DefinedOfficial Fix0.000.00053CVE-2023-41033
09/12/20237.87.6Siemens Parasolid X_T File out-of-bounds writeUnknownNot DefinedOfficial Fix0.020.00053CVE-2023-41032
09/12/20233.83.7Siemens QMS Automotive QMS.Mobile Module session expirationUnknownNot DefinedOfficial Fix0.040.00043CVE-2023-40732
09/12/20234.03.9Siemens QMS Automotive information exposureUnknownNot DefinedOfficial Fix0.040.00044CVE-2023-40725
09/12/20236.96.8Siemens QMS Automotive unrestricted uploadUnknownNot DefinedOfficial Fix0.020.00049CVE-2023-40731
09/12/20236.16.1Siemens QMS Automotive cleartext transmissionUnknownNot DefinedOfficial Fix0.090.00078CVE-2023-40729
09/12/20234.94.8Siemens QMS Automotive sensitive information in memoryUnknownNot DefinedOfficial Fix0.030.00043CVE-2023-40724
09/12/20236.56.4Siemens QMS Automotive unknown vulnerabilityUnknownNot DefinedOfficial Fix0.020.00049CVE-2023-40726
09/12/20237.87.6Siemens Teamcenter Visualization/JT2Go WRL File heap-based overflowUnknownNot DefinedOfficial Fix0.000.00053CVE-2023-38076
09/12/20237.87.6Siemens Teamcenter Visualization/JT2Go WRL File use after freeUnknownNot DefinedOfficial Fix0.020.00053CVE-2023-38075
09/12/20237.87.6Siemens Teamcenter Visualization/JT2Go WRL File type confusionUnknownNot DefinedOfficial Fix0.030.00053CVE-2023-38074
09/12/20237.87.6Siemens Teamcenter Visualization/JT2Go WRL File type confusionUnknownNot DefinedOfficial Fix0.070.00053CVE-2023-38073
09/12/20237.87.6Siemens Teamcenter Visualization/JT2Go WRL File out-of-bounds writeUnknownNot DefinedOfficial Fix0.000.00053CVE-2023-38072
09/12/20237.87.6Siemens Teamcenter Visualization/JT2Go WRL File heap-based overflowUnknownNot DefinedOfficial Fix0.040.00053CVE-2023-38071
09/12/20237.87.6Siemens Teamcenter Visualization/JT2Go WRL File stack-based overflowUnknownNot DefinedOfficial Fix0.060.00050CVE-2023-38070
09/12/20236.05.9Siemens QMS Automotive QMS.Mobile Module insecure storage of sensitive informationUnknownNot DefinedOfficial Fix0.040.00042CVE-2023-40728
09/12/20237.57.3Siemens SIMATIC ANSI C OPC UA SDK integer overflowSCADA SoftwareNot DefinedNot Defined0.060.00081CVE-2023-28831
08/08/20237.87.6Siemens Solid Edge SE2023 DWG File use after freeUnknownNot DefinedOfficial Fix0.080.00050CVE-2023-39549
08/08/20237.87.6Siemens Solid Edge SE2023 DFT File out-of-bounds writeUnknownNot DefinedOfficial Fix0.810.00050CVE-2023-39419
08/08/20237.57.5Siemens RUGGEDCOM Web Server allocation of resourcesUnknownNot DefinedNot Defined0.030.00046CVE-2023-39269
08/08/20237.87.6Siemens Software Center uncontrolled search pathUnknownNot DefinedOfficial Fix0.000.00042CVE-2021-41544
08/08/20237.87.6Siemens SICAM TOOLBOX II unnecessary privilegesUnknownNot DefinedOfficial Fix0.050.00042CVE-2023-38641
08/08/20237.87.6Siemens Solid Edge SE2023 DFT File out-of-boundsUnknownNot DefinedOfficial Fix0.770.00050CVE-2023-39188
08/08/20237.87.6Siemens Solid Edge SE2023 DFT File out-of-boundsUnknownNot DefinedOfficial Fix0.040.00050CVE-2023-39187

1276 more entries are not shown

🔒 Login Required

You need to signup and login to see more of the remaining 1,276 results.

PreviousOverviewNext

Interested in the pricing of exploits?

See the underground prices here!