cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2021-44222,https://securityvulnerability.io/vulnerability/CVE-2021-44222,Authentication Flaw in Siemens SIMATIC eaSie Core Package,"A significant authentication flaw has been discovered in the Siemens SIMATIC eaSie Core Package, where the default configuration of the MQTT service lacks authentication measures. This oversight could permit an unauthenticated remote attacker to send arbitrary messages to the service, potentially allowing them to execute unwanted commands and manipulate tasks within the affected system. For detailed remediation guidelines, refer to the official Siemens security advisory.",Siemens,Simatic Easie Core Package,9.1,CRITICAL,0.0034199999645352364,false,,false,false,false,,false,false,2022-07-12T10:06:30.000Z,0
CVE-2021-44221,https://securityvulnerability.io/vulnerability/CVE-2021-44221,Input Validation Flaw in SIMATIC eaSie Core Package by Siemens,"A vulnerability exists in the SIMATIC eaSie Core Package affecting all versions prior to V22.00, where improper input validation in the message passing framework can be exploited by remote attackers. This flaw could result in a denial of service, disrupting the normal operation of the system. It is crucial for users of the affected product to implement available security updates and thoroughly assess their systems for potential exploits.",Siemens,Simatic Easie Core Package,7.5,HIGH,0.001550000044517219,false,,false,false,false,,false,false,2022-07-12T10:06:29.000Z,0