Siemens

Simatic S7-1500 Cpu 1511-1 Pn Firmware

10 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2023-46156

  • EPSS 0.04%
  • Veröffentlicht 12.12.2023 12:15:13
  • Zuletzt bearbeitet 21.11.2024 08:27:59

Affected devices improperly handle specially crafted packets sent to port 102/tcp. This could allow an attacker to create a denial of service condition. A restart is needed to restore normal operations.

7.5

CVE-2023-28831

  • EPSS 0.43%
  • Veröffentlicht 12.09.2023 10:15:27
  • Zuletzt bearbeitet 18.08.2025 14:15:26

The OPC UA implementations (ANSI C and C++) in affected products contain an integer overflow vulnerability that could cause the application to run into an infinite loop during certificate validation. This could allow an unauthenticated remote atta...

6.8

CVE-2022-38773

  • EPSS 0.12%
  • Veröffentlicht 10.01.2023 12:15:23
  • Zuletzt bearbeitet 21.11.2024 07:17:03

Affected devices do not contain an Immutable Root of Trust in Hardware. With this the integrity of the code executed on the device can not be validated during load-time. An attacker with physical access to the device could use this to replace the boo...

7.5

CVE-2021-40365

  • EPSS 0.12%
  • Veröffentlicht 13.12.2022 16:15:14
  • Zuletzt bearbeitet 21.11.2024 06:23:57

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

4.9

CVE-2021-44693

  • EPSS 0.09%
  • Veröffentlicht 13.12.2022 16:15:14
  • Zuletzt bearbeitet 21.11.2024 06:31:23

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

5.5

CVE-2021-44694

  • EPSS 0.09%
  • Veröffentlicht 13.12.2022 16:15:14
  • Zuletzt bearbeitet 21.11.2024 06:31:23

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

4.9

CVE-2021-44695

  • EPSS 0.08%
  • Veröffentlicht 13.12.2022 16:15:14
  • Zuletzt bearbeitet 21.11.2024 06:31:24

Affected devices don't process correctly certain special crafted packets sent to port 102/tcp, which could allow an attacker to cause a denial of service in the device.

6.5

CVE-2022-30694

  • EPSS 0.19%
  • Veröffentlicht 08.11.2022 11:15:10
  • Zuletzt bearbeitet 21.11.2024 07:03:11

The login endpoint /FormLogin in affected web services does not apply proper origin checking. This could allow authenticated remote attackers to track the activities of other users via a login cross-site request forgery attack.

7.5

CVE-2019-19300

  • EPSS 0.54%
  • Veröffentlicht 14.04.2020 20:15:14
  • Zuletzt bearbeitet 08.07.2025 11:15:22

A vulnerability has been identified in Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200, Development/Evaluation Kits for PROFINET IO: EK-ERTEC 200P, KTK ATE530S, SIDOOR ATD430W, SIDOOR ATE530S COATED, SIDOOR ATE531S, SIMATIC ET 200AL IM 157-...

7.8

CVE-2019-19281

  • EPSS 0.63%
  • Veröffentlicht 10.03.2020 20:15:18
  • Zuletzt bearbeitet 21.11.2024 04:34:29

A vulnerability has been identified in SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions >= V2.5 and < V20.8), SIMATIC S7-1500 CPU family (incl. related ET200 CPUs and SIPLUS variants) (All versions >= V2.5 and < V...