cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-51438,https://securityvulnerability.io/vulnerability/CVE-2023-51438,Unauthorized Access Vulnerability in SIMATIC IPC Products by Siemens,"A security vulnerability has been discovered in Siemens SIMATIC IPC products utilizing maxView Storage Manager versions prior to V4.14.00.26068 on Windows. This issue, present in default installations where the Redfish® server is enabled for remote management, can potentially grant unauthorized access to system resources. This underscores the importance of updating affected systems to the latest versions to mitigate security risks associated with remote system administration.",Siemens,"SIMATIC IPC1047E,SIMATIC IPC647E,SIMATIC IPC847E",9.8,CRITICAL,0.0016599999507889152,false,,false,false,false,,false,false,2024-01-09T10:15:00.000Z,0
CVE-2023-23588,https://securityvulnerability.io/vulnerability/CVE-2023-23588,Non-Unique TLS Certificate Vulnerability in SIMATIC IPC Products by Siemens,"A significant vulnerability exists in the SIMATIC IPC series, specifically affecting devices with the Adaptec Maxview application. The issue stems from the use of a non-unique TLS certificate across installations, which could allow a local attacker to intercept and decrypt traffic between the browser and the application. This vulnerability can lead to man-in-the-middle attacks, enabling the modification of in-transit data, posing serious risks to data integrity and confidentiality.",Siemens,"Simatic Ipc1047,Simatic Ipc1047e,Simatic Ipc647d,Simatic Ipc647e,Simatic Ipc847d,Simatic Ipc847e",6.2,MEDIUM,0.0004199999966658652,false,,false,false,false,,false,false,2023-04-11T10:15:00.000Z,0