Siemens

Siplus S7-1500 Cpu 1511-1 Pn

8 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2026-25789

  • EPSS 0.14%
  • Veröffentlicht 12.05.2026 08:21:10
  • Zuletzt bearbeitet 12.05.2026 14:19:41

Affected devices do not properly validate and sanitize filenames on the Firmware Update page. This could allow a remote attacker to social engineer the user into selecting the modified firmware file to be uploaded. This would result in malitcious Ja...

9.1

CVE-2026-25787

  • EPSS 0.04%
  • Veröffentlicht 12.05.2026 08:21:06
  • Zuletzt bearbeitet 12.05.2026 14:19:41

Affected devices do not properly validate and sanitize Technology Object (TO) name rendered on the "Motion Control Diagnostics" page of the web interface. This could allow an authenticated attacker who is authorized to download a TIA project into the...

9.1

CVE-2026-25786

  • EPSS 0.04%
  • Veröffentlicht 12.05.2026 08:20:58
  • Zuletzt bearbeitet 12.05.2026 14:19:41

Affected devices do not properly validate and sanitize PLC/station name rendered on the "communication" parameters page of the web interface. This could allow an authenticated attacker who is authorized to download a TIA project into the product, to...

9.6

CVE-2025-40943

  • EPSS 0.05%
  • Veröffentlicht 10.03.2026 16:07:50
  • Zuletzt bearbeitet 19.03.2026 16:16:00

Affected devices do not properly sanitize contents of trace files. This could allow an attacker to inject code through social engineering an authorized user, who has the function right "Read diagnostics", to import a specially crafted trace file. ...

7.5

CVE-2025-40820

  • EPSS 0.09%
  • Veröffentlicht 09.12.2025 10:44:30
  • Zuletzt bearbeitet 15.04.2026 00:35:42

Affected products do not properly enforce TCP sequence number validation in specific scenarios but accept values within a broad range. This could allow an unauthenticated remote attacker e.g. to interfere with connection setup, potentially leading to...

6.9

CVE-2024-23814

  • EPSS 0.27%
  • Veröffentlicht 11.02.2025 11:15:12
  • Zuletzt bearbeitet 15.04.2026 00:35:42

The integrated ICMP service of the network stack of affected devices can be forced to exhaust its available memory resources when receiving specially crafted messages targeting IP fragment re-assembly. This could allow an unauthenticated remote atta...

5.1

CVE-2024-46886

  • EPSS 0.09%
  • Veröffentlicht 08.10.2024 09:15:16
  • Zuletzt bearbeitet 15.04.2026 00:35:42

The web server of affected devices does not properly validate input that is used for a user redirection. This could allow an attacker to make the server redirect the legitimate user to an attacker-chosen URL. For a successful exploit, the legitimate ...

6.9

CVE-2024-46887

  • EPSS 0.2%
  • Veröffentlicht 08.10.2024 09:15:16
  • Zuletzt bearbeitet 15.04.2026 00:35:42

The web server of affected devices do not properly authenticate user request to the '/ClientArea/RuntimeInfoData.mwsl' endpoint. This could allow an unauthenticated remote attacker to gain knowledge about current actual and configured maximum cycle t...