cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-37995,https://securityvulnerability.io/vulnerability/CVE-2024-37995,SIMATIC Reader vulnerability could lead to sensitive information disclosure,"An identified vulnerability in Siemens' SIMATIC Reader devices, specifically in various RF610R, RF615R, RF650R, RF680R, RF685R, RF1140R, RF1170R, RF166C, RF185C, RF186C, RF186CI, RF188C, RF188CI, and RF360R models, allows improper handling of errors arising from faulty certificate uploads. This flaw can lead to crashes of the affected applications and potential exposure of sensitive information.",Siemens,"Simatic Reader Rf610r Cmiit,Simatic Reader Rf610r Etsi,Simatic Reader Rf610r Fcc,Simatic Reader Rf615r Cmiit,Simatic Reader Rf615r Etsi,Simatic Reader Rf615r Fcc,Simatic Reader Rf650r Arib,Simatic Reader Rf650r Cmiit,Simatic Reader Rf650r Etsi,Simatic Reader Rf650r Fcc,Simatic Reader Rf680r Arib,Simatic Reader Rf680r Cmiit,Simatic Reader Rf680r Etsi,Simatic Reader Rf680r Fcc,Simatic Reader Rf685r Arib,Simatic Reader Rf685r Cmiit,Simatic Reader Rf685r Etsi,Simatic Reader Rf685r Fcc,Simatic Rf1140r,Simatic Rf1170r,Simatic Rf166c,Simatic Rf185c,Simatic Rf186c,Simatic Rf186ci,Simatic Rf188c,Simatic Rf188ci,Simatic Rf360r",9.1,CRITICAL,0.0007399999885819852,false,,false,false,false,,false,false,2024-09-10T09:36:42.714Z,0
CVE-2024-37994,https://securityvulnerability.io/vulnerability/CVE-2024-37994,Hidden Configuration Item Could Lead to Deployment Insights,"A vulnerability has been detected in several SIMATIC Reader products, allowing potential attackers to exploit a hidden configuration item that enables debug functionality. This anomaly permits unauthorized access to the internal configuration settings of affected deployments. Specifically, it concerns all versions of the SIMATIC Reader RF610R, RF615R, RF650R, RF680R, RF685R, and others below the specified version thresholds. Organizations utilizing these products should take immediate action to address this security issue and protect their systems from potential exploitation.",Siemens,"Simatic Reader Rf610r Cmiit,Simatic Reader Rf610r Etsi,Simatic Reader Rf610r Fcc,Simatic Reader Rf615r Cmiit,Simatic Reader Rf615r Etsi,Simatic Reader Rf615r Fcc,Simatic Reader Rf650r Arib,Simatic Reader Rf650r Cmiit,Simatic Reader Rf650r Etsi,Simatic Reader Rf650r Fcc,Simatic Reader Rf680r Arib,Simatic Reader Rf680r Cmiit,Simatic Reader Rf680r Etsi,Simatic Reader Rf680r Fcc,Simatic Reader Rf685r Arib,Simatic Reader Rf685r Cmiit,Simatic Reader Rf685r Etsi,Simatic Reader Rf685r Fcc,Simatic Rf1140r,Simatic Rf1170r,Simatic Rf166c,Simatic Rf185c,Simatic Rf186c,Simatic Rf186ci,Simatic Rf188c,Simatic Rf188ci,Simatic Rf360r",7.1,HIGH,0.0004799999878741801,false,,false,false,false,,false,false,2024-09-10T09:36:40.841Z,0
CVE-2024-37993,https://securityvulnerability.io/vulnerability/CVE-2024-37993,Affected applications do not authenticate the creation of Ajax2App instances,"A vulnerability has been identified in several SIMATIC Reader products by Siemens, specifically in versions prior to V4.2. The flaw resides in the lack of authentication for the creation of Ajax2App instances. As a result, an unauthenticated attacker can exploit this vulnerability, potentially leading to a denial of service condition, thereby disrupting the normal operational capabilities of the affected devices.",Siemens,"Simatic Reader Rf610r Cmiit,Simatic Reader Rf610r Etsi,Simatic Reader Rf610r Fcc,Simatic Reader Rf615r Cmiit,Simatic Reader Rf615r Etsi,Simatic Reader Rf615r Fcc,Simatic Reader Rf650r Arib,Simatic Reader Rf650r Cmiit,Simatic Reader Rf650r Etsi,Simatic Reader Rf650r Fcc,Simatic Reader Rf680r Arib,Simatic Reader Rf680r Cmiit,Simatic Reader Rf680r Etsi,Simatic Reader Rf680r Fcc,Simatic Reader Rf685r Arib,Simatic Reader Rf685r Cmiit,Simatic Reader Rf685r Etsi,Simatic Reader Rf685r Fcc,Simatic Rf1140r,Simatic Rf1170r,Simatic Rf166c,Simatic Rf185c,Simatic Rf186c,Simatic Rf186ci,Simatic Rf188c,Simatic Rf188ci,Simatic Rf360r",7.5,HIGH,0.0004600000102072954,false,,false,false,false,,false,false,2024-09-10T09:36:39.074Z,0
CVE-2024-37992,https://securityvulnerability.io/vulnerability/CVE-2024-37992,SIMATIC Reader vulnerabilities due to error handling,"A vulnerability has been identified in various models of Siemens' SIMATIC Reader series, including models RF610R, RF615R, RF650R, RF680R, and RF685R, among others, specifically in versions prior to V4.2. This vulnerability arises from improper error handling when setting SNMP, particularly when character limits are exceeded. Such errors can result in unexpected application restarts, potentially impacting the performance and reliability of connected systems.",Siemens,"Simatic Reader Rf610r Cmiit,Simatic Reader Rf610r Etsi,Simatic Reader Rf610r Fcc,Simatic Reader Rf615r Cmiit,Simatic Reader Rf615r Etsi,Simatic Reader Rf615r Fcc,Simatic Reader Rf650r Arib,Simatic Reader Rf650r Cmiit,Simatic Reader Rf650r Etsi,Simatic Reader Rf650r Fcc,Simatic Reader Rf680r Arib,Simatic Reader Rf680r Cmiit,Simatic Reader Rf680r Etsi,Simatic Reader Rf680r Fcc,Simatic Reader Rf685r Arib,Simatic Reader Rf685r Cmiit,Simatic Reader Rf685r Etsi,Simatic Reader Rf685r Fcc,Simatic Rf1140r,Simatic Rf1170r,Simatic Rf166c,Simatic Rf185c,Simatic Rf186c,Simatic Rf186ci,Simatic Rf188c,Simatic Rf188ci,Simatic Rf360r",7.5,HIGH,0.0004600000102072954,false,,false,false,false,,false,false,2024-09-10T09:36:37.300Z,0
CVE-2024-37991,https://securityvulnerability.io/vulnerability/CVE-2024-37991,"Sensitive Information Accessible Without Authentication in SIMATIC Reader RF610R, RF615R, RF680R, and Other Products","A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versions < V4.2), SIMATIC Reader RF615R CMIIT (6GT2811-6CC10-2AA0) (All versions < V4.2), SIMATIC Reader RF615R ETSI (6GT2811-6CC10-0AA0) (All versions < V4.2), SIMATIC Reader RF615R FCC (6GT2811-6CC10-1AA0) (All versions < V4.2), SIMATIC Reader RF650R ARIB (6GT2811-6AB20-4AA0) (All versions < V4.2), SIMATIC Reader RF650R CMIIT (6GT2811-6AB20-2AA0) (All versions < V4.2), SIMATIC Reader RF650R ETSI (6GT2811-6AB20-0AA0) (All versions < V4.2), SIMATIC Reader RF650R FCC (6GT2811-6AB20-1AA0) (All versions < V4.2), SIMATIC Reader RF680R ARIB (6GT2811-6AA10-4AA0) (All versions < V4.2), SIMATIC Reader RF680R CMIIT (6GT2811-6AA10-2AA0) (All versions < V4.2), SIMATIC Reader RF680R ETSI (6GT2811-6AA10-0AA0) (All versions < V4.2), SIMATIC Reader RF680R FCC (6GT2811-6AA10-1AA0) (All versions < V4.2), SIMATIC Reader RF685R ARIB (6GT2811-6CA10-4AA0) (All versions < V4.2), SIMATIC Reader RF685R CMIIT (6GT2811-6CA10-2AA0) (All versions < V4.2), SIMATIC Reader RF685R ETSI (6GT2811-6CA10-0AA0) (All versions < V4.2), SIMATIC Reader RF685R FCC (6GT2811-6CA10-1AA0) (All versions < V4.2), SIMATIC RF1140R (6GT2831-6CB00) (All versions < V1.1), SIMATIC RF1170R (6GT2831-6BB00) (All versions < V1.1), SIMATIC RF166C (6GT2002-0EE20) (All versions < V2.2), SIMATIC RF185C (6GT2002-0JE10) (All versions < V2.2), SIMATIC RF186C (6GT2002-0JE20) (All versions < V2.2), SIMATIC RF186CI (6GT2002-0JE50) (All versions < V2.2), SIMATIC RF188C (6GT2002-0JE40) (All versions < V2.2), SIMATIC RF188CI (6GT2002-0JE60) (All versions < V2.2), SIMATIC RF360R (6GT2801-5BA30) (All versions < V2.2). The service log files of the affected application can be accessed without proper authentication. This could allow an unauthenticated attacker to get access to sensitive information.",Siemens,"Simatic Reader Rf610r Cmiit,Simatic Reader Rf610r Etsi,Simatic Reader Rf610r Fcc,Simatic Reader Rf615r Cmiit,Simatic Reader Rf615r Etsi,Simatic Reader Rf615r Fcc,Simatic Reader Rf650r Arib,Simatic Reader Rf650r Cmiit,Simatic Reader Rf650r Etsi,Simatic Reader Rf650r Fcc,Simatic Reader Rf680r Arib,Simatic Reader Rf680r Cmiit,Simatic Reader Rf680r Etsi,Simatic Reader Rf680r Fcc,Simatic Reader Rf685r Arib,Simatic Reader Rf685r Cmiit,Simatic Reader Rf685r Etsi,Simatic Reader Rf685r Fcc,Simatic Rf1140r,Simatic Rf1170r,Simatic Rf166c,Simatic Rf185c,Simatic Rf186c,Simatic Rf186ci,Simatic Rf188c,Simatic Rf188ci,Simatic Rf360r",6.5,MEDIUM,0.0007399999885819852,false,,false,false,false,,false,false,2024-09-10T09:36:35.565Z,0
CVE-2024-37990,https://securityvulnerability.io/vulnerability/CVE-2024-37990,Vulnerability in SIMATIC Reader Products by Siemens,"A configuration file vulnerability exists in several SIMATIC Reader devices, allowing an attacker with privileged access to modify these files and potentially enable unauthorized features not meant for the device. This vulnerability affects multiple models across different geographical standards and necessitates urgent attention to secure device configurations.",Siemens,"Simatic Reader Rf610r Cmiit,Simatic Reader Rf610r Etsi,Simatic Reader Rf610r Fcc,Simatic Reader Rf615r Cmiit,Simatic Reader Rf615r Etsi,Simatic Reader Rf615r Fcc,Simatic Reader Rf650r Arib,Simatic Reader Rf650r Cmiit,Simatic Reader Rf650r Etsi,Simatic Reader Rf650r Fcc,Simatic Reader Rf680r Arib,Simatic Reader Rf680r Cmiit,Simatic Reader Rf680r Etsi,Simatic Reader Rf680r Fcc,Simatic Reader Rf685r Arib,Simatic Reader Rf685r Cmiit,Simatic Reader Rf685r Etsi,Simatic Reader Rf685r Fcc,Simatic Rf1140r,Simatic Rf1170r,Simatic Rf166c,Simatic Rf185c,Simatic Rf186c,Simatic Rf186ci,Simatic Rf188c,Simatic Rf188ci,Simatic Rf360r",6.5,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,2024-09-10T09:36:33.772Z,0
CVE-2021-31340,https://securityvulnerability.io/vulnerability/CVE-2021-31340,,"A vulnerability has been identified in SIMATIC RF166C (All versions > V1.1 and < V1.3.2), SIMATIC RF185C (All versions > V1.1 and < V1.3.2), SIMATIC RF186C (All versions > V1.1 and < V1.3.2), SIMATIC RF186CI (All versions > V1.1 and < V1.3.2), SIMATIC RF188C (All versions > V1.1 and < V1.3.2), SIMATIC RF188CI (All versions > V1.1 and < V1.3.2), SIMATIC RF360R (All versions < V2.0), SIMATIC Reader RF610R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF610R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF610R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF615R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF615R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF615R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF650R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF650R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF650R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF650R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF680R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF680R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF680R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF680R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF685R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF685R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF685R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF685R FCC (All versions > V3.0 < V4.0). Affected devices do not properly handle large numbers of incoming connections. An attacker may leverage this to cause a Denial-of-Service situation.",Siemens,"Simatic Rf166c,Simatic Rf185c,Simatic Rf186c,Simatic Rf186ci,Simatic Rf188c,Simatic Rf188ci,Simatic Rf360r,Simatic Reader Rf610r Cmiit,Simatic Reader Rf610r Etsi,Simatic Reader Rf610r Fcc,Simatic Reader Rf615r Cmiit,Simatic Reader Rf615r Etsi,Simatic Reader Rf615r Fcc,Simatic Reader Rf650r Arib,Simatic Reader Rf650r Cmiit,Simatic Reader Rf650r Etsi,Simatic Reader Rf650r Fcc,Simatic Reader Rf680r Arib,Simatic Reader Rf680r Cmiit,Simatic Reader Rf680r Etsi,Simatic Reader Rf680r Fcc,Simatic Reader Rf685r Arib,Simatic Reader Rf685r Cmiit,Simatic Reader Rf685r Etsi,Simatic Reader Rf685r Fcc",7.5,HIGH,0.0010300000431016088,false,,false,false,false,,false,false,2021-06-08T19:47:16.000Z,0