cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-30756,https://securityvulnerability.io/vulnerability/CVE-2023-30756,Vulnerability in SIMATIC Communication Processors and HMI Panels,"A security vulnerability has been identified in specific versions of SIMATIC CP communication processors and HMI Comfort Panels by Siemens. The web server on these devices fails to handle particular errors when the Expect HTTP request header is used, leading to a NULL dereference issue. This flaw allows a remote attacker to exploit the vulnerability without requiring additional privileges, thereby potentially initiating a denial of service condition. Users of affected products are advised to assess their systems and apply the necessary updates to mitigate risks associated with this vulnerability.",Siemens,"Simatic Cp 1242-7 V2 (incl. Siplus Variants),Simatic Cp 1243-1 (incl. Siplus Variants),Simatic Cp 1243-1 Dnp3 (incl. Siplus Variants),Simatic Cp 1243-1 Iec (incl. Siplus Variants),Simatic Cp 1243-7 Lte,Simatic Cp 1243-8 Irc,Simatic Hmi Comfort Panels (incl. Siplus Variants),Simatic Ipc Diagbase,Simatic Ipc Diagmonitor,Simatic Wincc Runtime Advanced,Siplus Tim 1531 Irc,Tim 1531 Irc",5.9,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,2024-09-10T09:33:40.640Z,0
CVE-2023-30755,https://securityvulnerability.io/vulnerability/CVE-2023-30755,Denial of Service Vulnerability in Siemens SIMATIC Products,"A significant vulnerability exists within a range of Siemens SIMATIC devices that impacts how the integrated web server processes shutdown and reboot requests. This improper handling can result in certain resources not being correctly cleaned up. An attacker with elevated privileges could exploit this vulnerability remotely, potentially leading to a denial of service condition that disrupts the normal operation of the affected systems. Organizations using these products should assess their security posture in relation to this vulnerability and implement appropriate measures to mitigate any risks associated.",Siemens,"Simatic Cp 1242-7 V2 (incl. Siplus Variants),Simatic Cp 1243-1 (incl. Siplus Variants),Simatic Cp 1243-1 Dnp3 (incl. Siplus Variants),Simatic Cp 1243-1 Iec (incl. Siplus Variants),Simatic Cp 1243-7 Lte,Simatic Cp 1243-8 Irc,Simatic Hmi Comfort Panels (incl. Siplus Variants),Simatic Ipc Diagbase,Simatic Ipc Diagmonitor,Simatic Wincc Runtime Advanced,Siplus Tim 1531 Irc,Tim 1531 Irc",4.4,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,2024-09-10T09:33:39.215Z,0
CVE-2023-28827,https://securityvulnerability.io/vulnerability/CVE-2023-28827,Denial of Service Vulnerability in Siemens SIMATIC Products,"A vulnerability has been found in multiple Siemens SIMATIC products due to the web server's failure to properly handle specific requests. This issue may cause a timeout in the watchdog system, leading to an unwanted cleanup of pointers. Consequently, a remote attacker could exploit this vulnerability to generate a denial of service condition, potentially disrupting operations and impacting system availability.",Siemens,"Simatic Cp 1242-7 V2 (incl. Siplus Variants),Simatic Cp 1243-1 (incl. Siplus Variants),Simatic Cp 1243-1 Dnp3 (incl. Siplus Variants),Simatic Cp 1243-1 Iec (incl. Siplus Variants),Simatic Cp 1243-7 Lte,Simatic Cp 1243-8 Irc,Simatic Hmi Comfort Panels (incl. Siplus Variants),Simatic Ipc Diagbase,Simatic Ipc Diagmonitor,Simatic Wincc Runtime Advanced,Siplus Tim 1531 Irc,Tim 1531 Irc",5.9,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,2024-09-10T09:33:37.794Z,0