Siemens

Simatic Step 7

23 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2020-7585

  • EPSS 0.09%
  • Published 10.06.2020 17:15:12
  • Last modified 21.11.2024 05:37:25

A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS 7 V9.0 (All versions < V9.0 SP3), SIMATIC PDM (All versions < V9.2), SIMATIC STEP 7 V5.X (All versions < V5.6 SP2 HF3), SINAMICS STARTER (containing STE...

7.8

CVE-2020-7586

  • EPSS 0.15%
  • Published 10.06.2020 17:15:12
  • Last modified 21.11.2024 05:37:25

A vulnerability has been identified in SIMATIC PCS 7 V8.2 and earlier (All versions), SIMATIC PCS 7 V9.0 (All versions < V9.0 SP3), SIMATIC PDM (All versions < V9.2), SIMATIC STEP 7 V5.X (All versions < V5.6 SP2 HF3), SINAMICS STARTER (containing STE...

7.2

CVE-2020-7580

  • EPSS 0.05%
  • Published 10.06.2020 17:15:12
  • Last modified 21.11.2024 05:37:24

A vulnerability has been identified in SIMATIC Automation Tool (All versions < V4 SP2), SIMATIC NET PC Software V14 (All versions < V14 SP1 Update 14), SIMATIC NET PC Software V15 (All versions), SIMATIC NET PC Software V16 (All versions < V16 Upd3),...

5.9

CVE-2019-10929

  • EPSS 0.14%
  • Published 13.08.2019 19:15:14
  • Last modified 21.11.2024 04:20:10

A vulnerability has been identified in SIMATIC CP 1626 (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC (incl. SIPLUS variants) (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions < V20....

6.9

CVE-2016-7165

  • EPSS 0.1%
  • Published 15.11.2016 19:30:02
  • Last modified 12.04.2025 10:46:40

A vulnerability has been identified in Primary Setup Tool (PST) (All versions < V4.2 HF1), SIMATIC IT Production Suite (All versions < V7.0 SP1 HFX 2), SIMATIC NET PC-Software (All versions < V14), SIMATIC PCS 7 V7.1 (All versions), SIMATIC PCS 7 V8....

2.5

CVE-2016-7960

  • EPSS 0.09%
  • Published 13.10.2016 10:59:01
  • Last modified 12.04.2025 10:46:40

Siemens SIMATIC STEP 7 (TIA Portal) before 14 uses an improper format for managing TIA project files during version updates, which makes it easier for local users to obtain sensitive configuration information via unspecified vectors.

4.7

CVE-2016-7959

  • EPSS 0.06%
  • Published 13.10.2016 10:59:00
  • Last modified 12.04.2025 10:46:40

Siemens SIMATIC STEP 7 (TIA Portal) before 14 improperly stores pre-shared key data in TIA project files, which makes it easier for local users to obtain sensitive information by leveraging access to a file and conducting a brute-force attack.

2.1

CVE-2015-1602

  • EPSS 0.06%
  • Published 06.04.2015 01:59:03
  • Last modified 12.04.2025 10:46:40

Siemens SIMATIC STEP 7 (TIA Portal) 12 and 13 before 13 SP1 Upd1 improperly stores password data within project files, which makes it easier for local users to determine cleartext (1) protection-level passwords or (2) web-server passwords by leveragi...

6.8

CVE-2015-1601

  • EPSS 0.4%
  • Published 06.04.2015 01:59:01
  • Last modified 12.04.2025 10:46:40

Siemens SIMATIC STEP 7 (TIA Portal) 12 and 13 before 13 SP1 Upd1 allows man-in-the-middle attackers to obtain sensitive information or modify transmitted data via unspecified vectors.

6.9

CVE-2015-1594

  • EPSS 0.06%
  • Published 07.03.2015 02:59:03
  • Last modified 12.04.2025 10:46:40

Untrusted search path vulnerability in Siemens SIMATIC ProSave before 13 SP1; SIMATIC CFC before 8.0 SP4 Upd9 and 8.1 before Upd1; SIMATIC STEP 7 before 5.5 SP1 HF2, 5.5 SP2 before HF7, 5.5 SP3, and 5.5 SP4 before HF4; SIMOTION Scout before 4.4; and ...