Siemens

Simatic S7-1200 Cpu 1212c Firmware

16 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2021-40365

  • EPSS 0.12%
  • Veröffentlicht 13.12.2022 16:15:14
  • Zuletzt bearbeitet 21.11.2024 06:23:57

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

4.9

CVE-2021-44693

  • EPSS 0.09%
  • Veröffentlicht 13.12.2022 16:15:14
  • Zuletzt bearbeitet 21.11.2024 06:31:23

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

5.5

CVE-2021-44694

  • EPSS 0.09%
  • Veröffentlicht 13.12.2022 16:15:14
  • Zuletzt bearbeitet 21.11.2024 06:31:23

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

4.9

CVE-2021-44695

  • EPSS 0.08%
  • Veröffentlicht 13.12.2022 16:15:14
  • Zuletzt bearbeitet 21.11.2024 06:31:24

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

6.5

CVE-2022-30694

  • EPSS 0.19%
  • Veröffentlicht 08.11.2022 11:15:10
  • Zuletzt bearbeitet 21.11.2024 07:03:11

The login endpoint /FormLogin in affected web services does not apply proper origin checking. This could allow authenticated remote attackers to track the activities of other users via a login cross-site request forgery attack.

7.1

CVE-2021-37204

  • EPSS 0.7%
  • Veröffentlicht 09.02.2022 16:15:13
  • Zuletzt bearbeitet 21.11.2024 06:14:51

A vulnerability has been identified in SIMATIC Drive Controller family (All versions < V2.9.2), SIMATIC Drive Controller family (All versions >= V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), ...

7.1

CVE-2021-37205

  • EPSS 1.14%
  • Veröffentlicht 09.02.2022 16:15:13
  • Zuletzt bearbeitet 21.11.2024 06:14:51

A vulnerability has been identified in SIMATIC Drive Controller family (All versions >= V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions >= V21.9 < V21.9.4), SIMATIC S7-1200 CPU family (incl. SIP...

7.1

CVE-2021-37185

  • EPSS 0.7%
  • Veröffentlicht 09.02.2022 16:15:12
  • Zuletzt bearbeitet 21.11.2024 06:14:48

A vulnerability has been identified in SIMATIC Drive Controller family (All versions >= V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions >= V21.9 < V21.9.4), SIMATIC S7-1200 CPU family (incl. SIP...

5.9

CVE-2021-3449

  • EPSS 13.18%
  • Veröffentlicht 25.03.2021 15:15:13
  • Zuletzt bearbeitet 21.11.2024 06:21:33

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but incl...

5

CVE-2019-10936

  • EPSS 1.99%
  • Veröffentlicht 10.10.2019 14:15:14
  • Zuletzt bearbeitet 21.11.2024 04:20:11

Affected devices improperly handle large amounts of specially crafted UDP packets. This could allow an unauthenticated remote attacker to trigger a denial of service condition.