Siemens

Simatic S7-1200 Cpu 1214 Fc Firmware

10 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2021-40365

  • EPSS 0.12%
  • Published 13.12.2022 16:15:14
  • Last modified 21.11.2024 06:23:57

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

4.9

CVE-2021-44693

  • EPSS 0.09%
  • Published 13.12.2022 16:15:14
  • Last modified 21.11.2024 06:31:23

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

5.5

CVE-2021-44694

  • EPSS 0.09%
  • Published 13.12.2022 16:15:14
  • Last modified 21.11.2024 06:31:23

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

4.9

CVE-2021-44695

  • EPSS 0.08%
  • Published 13.12.2022 16:15:14
  • Last modified 21.11.2024 06:31:24

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

6.5

CVE-2022-30694

  • EPSS 0.19%
  • Published 08.11.2022 11:15:10
  • Last modified 21.11.2024 07:03:11

The login endpoint /FormLogin in affected web services does not apply proper origin checking. This could allow authenticated remote attackers to track the activities of other users via a login cross-site request forgery attack.

5.9

CVE-2021-3449

  • EPSS 13.18%
  • Published 25.03.2021 15:15:13
  • Last modified 21.11.2024 06:21:33

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but incl...

7.8

CVE-2013-0700

  • EPSS 0.34%
  • Published 22.04.2013 03:27:13
  • Last modified 11.04.2025 00:51:21

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage) via crafted packets to TCP port 102 (aka the ISO-TSAP port).

7.8

CVE-2013-2780

  • EPSS 0.34%
  • Published 22.04.2013 03:27:13
  • Last modified 11.04.2025 00:51:21

Siemens SIMATIC S7-1200 PLCs 2.x and 3.x allow remote attackers to cause a denial of service (defect-mode transition and control outage) via crafted packets to UDP port 161 (aka the SNMP port).

4.3

CVE-2012-3040

  • EPSS 1.21%
  • Published 10.10.2012 18:55:02
  • Last modified 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in the web server on Siemens SIMATIC S7-1200 PLCs 2.x through 3.0.1 allows remote attackers to inject arbitrary web script or HTML via a crafted URI.

4.3

CVE-2012-3037

  • EPSS 0.64%
  • Published 25.09.2012 11:07:46
  • Last modified 11.04.2025 00:51:21

The Siemens SIMATIC S7-1200 2.x PLC does not properly protect the private key of the SIMATIC CONTROLLER Certification Authority certificate, which allows remote attackers to spoof the S7-1200 web server by using this key to create a forged certificat...