cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-37995,https://securityvulnerability.io/vulnerability/CVE-2024-37995,SIMATIC Reader vulnerability could lead to sensitive information disclosure,"An identified vulnerability in Siemens' SIMATIC Reader devices, specifically in various RF610R, RF615R, RF650R, RF680R, RF685R, RF1140R, RF1170R, RF166C, RF185C, RF186C, RF186CI, RF188C, RF188CI, and RF360R models, allows improper handling of errors arising from faulty certificate uploads. This flaw can lead to crashes of the affected applications and potential exposure of sensitive information.",Siemens,"Simatic Reader Rf610r Cmiit,Simatic Reader Rf610r Etsi,Simatic Reader Rf610r Fcc,Simatic Reader Rf615r Cmiit,Simatic Reader Rf615r Etsi,Simatic Reader Rf615r Fcc,Simatic Reader Rf650r Arib,Simatic Reader Rf650r Cmiit,Simatic Reader Rf650r Etsi,Simatic Reader Rf650r Fcc,Simatic Reader Rf680r Arib,Simatic Reader Rf680r Cmiit,Simatic Reader Rf680r Etsi,Simatic Reader Rf680r Fcc,Simatic Reader Rf685r Arib,Simatic Reader Rf685r Cmiit,Simatic Reader Rf685r Etsi,Simatic Reader Rf685r Fcc,Simatic Rf1140r,Simatic Rf1170r,Simatic Rf166c,Simatic Rf185c,Simatic Rf186c,Simatic Rf186ci,Simatic Rf188c,Simatic Rf188ci,Simatic Rf360r",9.1,CRITICAL,0.0007399999885819852,false,,false,false,false,,false,false,2024-09-10T09:36:42.714Z,0
CVE-2024-37994,https://securityvulnerability.io/vulnerability/CVE-2024-37994,Hidden Configuration Item Could Lead to Deployment Insights,"A vulnerability has been detected in several SIMATIC Reader products, allowing potential attackers to exploit a hidden configuration item that enables debug functionality. This anomaly permits unauthorized access to the internal configuration settings of affected deployments. Specifically, it concerns all versions of the SIMATIC Reader RF610R, RF615R, RF650R, RF680R, RF685R, and others below the specified version thresholds. Organizations utilizing these products should take immediate action to address this security issue and protect their systems from potential exploitation.",Siemens,"Simatic Reader Rf610r Cmiit,Simatic Reader Rf610r Etsi,Simatic Reader Rf610r Fcc,Simatic Reader Rf615r Cmiit,Simatic Reader Rf615r Etsi,Simatic Reader Rf615r Fcc,Simatic Reader Rf650r Arib,Simatic Reader Rf650r Cmiit,Simatic Reader Rf650r Etsi,Simatic Reader Rf650r Fcc,Simatic Reader Rf680r Arib,Simatic Reader Rf680r Cmiit,Simatic Reader Rf680r Etsi,Simatic Reader Rf680r Fcc,Simatic Reader Rf685r Arib,Simatic Reader Rf685r Cmiit,Simatic Reader Rf685r Etsi,Simatic Reader Rf685r Fcc,Simatic Rf1140r,Simatic Rf1170r,Simatic Rf166c,Simatic Rf185c,Simatic Rf186c,Simatic Rf186ci,Simatic Rf188c,Simatic Rf188ci,Simatic Rf360r",7.1,HIGH,0.0004799999878741801,false,,false,false,false,,false,false,2024-09-10T09:36:40.841Z,0
CVE-2024-37993,https://securityvulnerability.io/vulnerability/CVE-2024-37993,Affected applications do not authenticate the creation of Ajax2App instances,"A vulnerability has been identified in several SIMATIC Reader products by Siemens, specifically in versions prior to V4.2. The flaw resides in the lack of authentication for the creation of Ajax2App instances. As a result, an unauthenticated attacker can exploit this vulnerability, potentially leading to a denial of service condition, thereby disrupting the normal operational capabilities of the affected devices.",Siemens,"Simatic Reader Rf610r Cmiit,Simatic Reader Rf610r Etsi,Simatic Reader Rf610r Fcc,Simatic Reader Rf615r Cmiit,Simatic Reader Rf615r Etsi,Simatic Reader Rf615r Fcc,Simatic Reader Rf650r Arib,Simatic Reader Rf650r Cmiit,Simatic Reader Rf650r Etsi,Simatic Reader Rf650r Fcc,Simatic Reader Rf680r Arib,Simatic Reader Rf680r Cmiit,Simatic Reader Rf680r Etsi,Simatic Reader Rf680r Fcc,Simatic Reader Rf685r Arib,Simatic Reader Rf685r Cmiit,Simatic Reader Rf685r Etsi,Simatic Reader Rf685r Fcc,Simatic Rf1140r,Simatic Rf1170r,Simatic Rf166c,Simatic Rf185c,Simatic Rf186c,Simatic Rf186ci,Simatic Rf188c,Simatic Rf188ci,Simatic Rf360r",7.5,HIGH,0.0004600000102072954,false,,false,false,false,,false,false,2024-09-10T09:36:39.074Z,0
CVE-2024-37992,https://securityvulnerability.io/vulnerability/CVE-2024-37992,SIMATIC Reader vulnerabilities due to error handling,"A vulnerability has been identified in various models of Siemens' SIMATIC Reader series, including models RF610R, RF615R, RF650R, RF680R, and RF685R, among others, specifically in versions prior to V4.2. This vulnerability arises from improper error handling when setting SNMP, particularly when character limits are exceeded. Such errors can result in unexpected application restarts, potentially impacting the performance and reliability of connected systems.",Siemens,"Simatic Reader Rf610r Cmiit,Simatic Reader Rf610r Etsi,Simatic Reader Rf610r Fcc,Simatic Reader Rf615r Cmiit,Simatic Reader Rf615r Etsi,Simatic Reader Rf615r Fcc,Simatic Reader Rf650r Arib,Simatic Reader Rf650r Cmiit,Simatic Reader Rf650r Etsi,Simatic Reader Rf650r Fcc,Simatic Reader Rf680r Arib,Simatic Reader Rf680r Cmiit,Simatic Reader Rf680r Etsi,Simatic Reader Rf680r Fcc,Simatic Reader Rf685r Arib,Simatic Reader Rf685r Cmiit,Simatic Reader Rf685r Etsi,Simatic Reader Rf685r Fcc,Simatic Rf1140r,Simatic Rf1170r,Simatic Rf166c,Simatic Rf185c,Simatic Rf186c,Simatic Rf186ci,Simatic Rf188c,Simatic Rf188ci,Simatic Rf360r",7.5,HIGH,0.0004600000102072954,false,,false,false,false,,false,false,2024-09-10T09:36:37.300Z,0
CVE-2024-37991,https://securityvulnerability.io/vulnerability/CVE-2024-37991,"Sensitive Information Accessible Without Authentication in SIMATIC Reader RF610R, RF615R, RF680R, and Other Products","A vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6GT2811-6BC10-0AA0) (All versions < V4.2), SIMATIC Reader RF610R FCC (6GT2811-6BC10-1AA0) (All versions < V4.2), SIMATIC Reader RF615R CMIIT (6GT2811-6CC10-2AA0) (All versions < V4.2), SIMATIC Reader RF615R ETSI (6GT2811-6CC10-0AA0) (All versions < V4.2), SIMATIC Reader RF615R FCC (6GT2811-6CC10-1AA0) (All versions < V4.2), SIMATIC Reader RF650R ARIB (6GT2811-6AB20-4AA0) (All versions < V4.2), SIMATIC Reader RF650R CMIIT (6GT2811-6AB20-2AA0) (All versions < V4.2), SIMATIC Reader RF650R ETSI (6GT2811-6AB20-0AA0) (All versions < V4.2), SIMATIC Reader RF650R FCC (6GT2811-6AB20-1AA0) (All versions < V4.2), SIMATIC Reader RF680R ARIB (6GT2811-6AA10-4AA0) (All versions < V4.2), SIMATIC Reader RF680R CMIIT (6GT2811-6AA10-2AA0) (All versions < V4.2), SIMATIC Reader RF680R ETSI (6GT2811-6AA10-0AA0) (All versions < V4.2), SIMATIC Reader RF680R FCC (6GT2811-6AA10-1AA0) (All versions < V4.2), SIMATIC Reader RF685R ARIB (6GT2811-6CA10-4AA0) (All versions < V4.2), SIMATIC Reader RF685R CMIIT (6GT2811-6CA10-2AA0) (All versions < V4.2), SIMATIC Reader RF685R ETSI (6GT2811-6CA10-0AA0) (All versions < V4.2), SIMATIC Reader RF685R FCC (6GT2811-6CA10-1AA0) (All versions < V4.2), SIMATIC RF1140R (6GT2831-6CB00) (All versions < V1.1), SIMATIC RF1170R (6GT2831-6BB00) (All versions < V1.1), SIMATIC RF166C (6GT2002-0EE20) (All versions < V2.2), SIMATIC RF185C (6GT2002-0JE10) (All versions < V2.2), SIMATIC RF186C (6GT2002-0JE20) (All versions < V2.2), SIMATIC RF186CI (6GT2002-0JE50) (All versions < V2.2), SIMATIC RF188C (6GT2002-0JE40) (All versions < V2.2), SIMATIC RF188CI (6GT2002-0JE60) (All versions < V2.2), SIMATIC RF360R (6GT2801-5BA30) (All versions < V2.2). The service log files of the affected application can be accessed without proper authentication. This could allow an unauthenticated attacker to get access to sensitive information.",Siemens,"Simatic Reader Rf610r Cmiit,Simatic Reader Rf610r Etsi,Simatic Reader Rf610r Fcc,Simatic Reader Rf615r Cmiit,Simatic Reader Rf615r Etsi,Simatic Reader Rf615r Fcc,Simatic Reader Rf650r Arib,Simatic Reader Rf650r Cmiit,Simatic Reader Rf650r Etsi,Simatic Reader Rf650r Fcc,Simatic Reader Rf680r Arib,Simatic Reader Rf680r Cmiit,Simatic Reader Rf680r Etsi,Simatic Reader Rf680r Fcc,Simatic Reader Rf685r Arib,Simatic Reader Rf685r Cmiit,Simatic Reader Rf685r Etsi,Simatic Reader Rf685r Fcc,Simatic Rf1140r,Simatic Rf1170r,Simatic Rf166c,Simatic Rf185c,Simatic Rf186c,Simatic Rf186ci,Simatic Rf188c,Simatic Rf188ci,Simatic Rf360r",6.5,MEDIUM,0.0007399999885819852,false,,false,false,false,,false,false,2024-09-10T09:36:35.565Z,0
CVE-2024-37990,https://securityvulnerability.io/vulnerability/CVE-2024-37990,Vulnerability in SIMATIC Reader Products by Siemens,"A configuration file vulnerability exists in several SIMATIC Reader devices, allowing an attacker with privileged access to modify these files and potentially enable unauthorized features not meant for the device. This vulnerability affects multiple models across different geographical standards and necessitates urgent attention to secure device configurations.",Siemens,"Simatic Reader Rf610r Cmiit,Simatic Reader Rf610r Etsi,Simatic Reader Rf610r Fcc,Simatic Reader Rf615r Cmiit,Simatic Reader Rf615r Etsi,Simatic Reader Rf615r Fcc,Simatic Reader Rf650r Arib,Simatic Reader Rf650r Cmiit,Simatic Reader Rf650r Etsi,Simatic Reader Rf650r Fcc,Simatic Reader Rf680r Arib,Simatic Reader Rf680r Cmiit,Simatic Reader Rf680r Etsi,Simatic Reader Rf680r Fcc,Simatic Reader Rf685r Arib,Simatic Reader Rf685r Cmiit,Simatic Reader Rf685r Etsi,Simatic Reader Rf685r Fcc,Simatic Rf1140r,Simatic Rf1170r,Simatic Rf166c,Simatic Rf185c,Simatic Rf186c,Simatic Rf186ci,Simatic Rf188c,Simatic Rf188ci,Simatic Rf360r",6.5,MEDIUM,0.0004600000102072954,false,,false,false,false,,false,false,2024-09-10T09:36:33.772Z,0
CVE-2021-31340,https://securityvulnerability.io/vulnerability/CVE-2021-31340,,"A vulnerability has been identified in SIMATIC RF166C (All versions > V1.1 and < V1.3.2), SIMATIC RF185C (All versions > V1.1 and < V1.3.2), SIMATIC RF186C (All versions > V1.1 and < V1.3.2), SIMATIC RF186CI (All versions > V1.1 and < V1.3.2), SIMATIC RF188C (All versions > V1.1 and < V1.3.2), SIMATIC RF188CI (All versions > V1.1 and < V1.3.2), SIMATIC RF360R (All versions < V2.0), SIMATIC Reader RF610R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF610R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF610R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF615R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF615R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF615R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF650R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF650R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF650R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF650R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF680R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF680R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF680R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF680R FCC (All versions > V3.0 < V4.0), SIMATIC Reader RF685R ARIB (All versions > V3.0 < V4.0), SIMATIC Reader RF685R CMIIT (All versions > V3.0 < V4.0), SIMATIC Reader RF685R ETSI (All versions > V3.0 < V4.0), SIMATIC Reader RF685R FCC (All versions > V3.0 < V4.0). Affected devices do not properly handle large numbers of incoming connections. An attacker may leverage this to cause a Denial-of-Service situation.",Siemens,"Simatic Rf166c,Simatic Rf185c,Simatic Rf186c,Simatic Rf186ci,Simatic Rf188c,Simatic Rf188ci,Simatic Rf360r,Simatic Reader Rf610r Cmiit,Simatic Reader Rf610r Etsi,Simatic Reader Rf610r Fcc,Simatic Reader Rf615r Cmiit,Simatic Reader Rf615r Etsi,Simatic Reader Rf615r Fcc,Simatic Reader Rf650r Arib,Simatic Reader Rf650r Cmiit,Simatic Reader Rf650r Etsi,Simatic Reader Rf650r Fcc,Simatic Reader Rf680r Arib,Simatic Reader Rf680r Cmiit,Simatic Reader Rf680r Etsi,Simatic Reader Rf680r Fcc,Simatic Reader Rf685r Arib,Simatic Reader Rf685r Cmiit,Simatic Reader Rf685r Etsi,Simatic Reader Rf685r Fcc",7.5,HIGH,0.0010300000431016088,false,,false,false,false,,false,false,2021-06-08T19:47:16.000Z,0
CVE-2019-6568,https://securityvulnerability.io/vulnerability/CVE-2019-6568,,"The webserver of the affected devices contains a vulnerability that may lead to
a denial of service condition. An attacker may cause a denial of service
situation which leads to a restart of the webserver of the affected device.

The security vulnerability could be exploited by an attacker with network
access to the affected systems. Successful exploitation requires no system
privileges and no user interaction. An attacker could use the vulnerability
to compromise availability of the device.",Siemens,"Simatic Cp 1604,Simatic Cp 1616,Simatic Cp 343-1 Advanced,Simatic Cp 443-1,Simatic Cp 443-1 Advanced,Simatic Cp 443-1 Opc Ua,Simatic Et 200pro Im154-8 Pn/dp Cpu,Simatic Et 200pro Im154-8f Pn/dp Cpu,Simatic Et 200pro Im154-8fx Pn/dp Cpu,Simatic Et 200s Im151-8 Pn/dp Cpu,Simatic Et 200s Im151-8f Pn/dp Cpu,Simatic Et 200sp Open Controller Cpu 1515sp Pc (incl. Siplus Variants),Simatic Et 200sp Open Controller Cpu 1515sp Pc2 (incl. Siplus Variants),Simatic Hmi Comfort Outdoor Panels 7"" & 15"" (incl. Siplus Variants),Simatic Hmi Comfort Panels 4"" - 22"" (incl. Siplus Variants),Simatic Hmi Ktp Mobile Panels Ktp400f, Ktp700, Ktp700f, Ktp900 And Ktp900f,Simatic Ipc Diagmonitor,Simatic Rf182c,Simatic Rf185c,Simatic Rf186c,Simatic Rf188c,Simatic Rf600r Family,Simatic Rfid 181eip,Simatic S7-1500 Cpu Family (incl. Related Et200 Cpus And Siplus Variants),Simatic S7-1500 Software Controller,Simatic S7-300 Cpu 314c-2 Pn/dp,Simatic S7-300 Cpu 315-2 Pn/dp,Simatic S7-300 Cpu 315f-2 Pn/dp,Simatic S7-300 Cpu 315t-3 Pn/dp,Simatic S7-300 Cpu 317-2 Pn/dp,Simatic S7-300 Cpu 317f-2 Pn/dp,Simatic S7-300 Cpu 317t-3 Pn/dp,Simatic S7-300 Cpu 317tf-3 Pn/dp,Simatic S7-300 Cpu 319-3 Pn/dp,Simatic S7-300 Cpu 319f-3 Pn/dp,Simatic S7-400 Pn/dp V6 And Below Cpu Family (incl. Siplus Variants),Simatic S7-400 Pn/dp V7 Cpu Family (incl. Siplus Variants),Simatic S7-plcsim Advanced,Simatic Teleservice Adapter Ie Advanced,Simatic Teleservice Adapter Ie Basic,Simatic Teleservice Adapter Ie Standard,Simatic Winac Rtx 2010,Simatic Winac Rtx F 2010,Simatic Wincc Runtime Advanced,Simocode Pro V Ethernet/ip (incl. Siplus Variants),Simocode Pro V Profinet (incl. Siplus Variants),Sinamics G130 V4.6 Control Unit,Sinamics G130 V4.7 Control Unit,Sinamics G130 V4.7 Sp1 Control Unit,Sinamics G130 V4.8 Control Unit,Sinamics G130 V5.1 Control Unit,Sinamics G130 V5.1 Sp1 Control Unit,Sinamics G150 V4.6 Control Unit,Sinamics G150 V4.7 Control Unit,Sinamics G150 V4.7 Sp1 Control Unit,Sinamics G150 V4.8 Control Unit,Sinamics G150 V5.1 Control Unit,Sinamics G150 V5.1 Sp1 Control Unit,Sinamics Gh150 V4.7 (control Unit),Sinamics Gh150 V4.8 (control Unit),Sinamics Gl150 V4.7 (control Unit),Sinamics Gl150 V4.8 (control Unit),Sinamics Gm150 V4.7 (control Unit),Sinamics Gm150 V4.8 (control Unit),Sinamics S120 V4.6 Control Unit (incl. Siplus Variants),Sinamics S120 V4.7 Control Unit (incl. Siplus Variants),Sinamics S120 V4.7 Sp1 Control Unit (incl. Siplus Variants),Sinamics S120 V4.8 Control Unit (incl. Siplus Variants),Sinamics S120 V5.1 Control Unit (incl. Siplus Variants),Sinamics S120 V5.1 Sp1 Control Unit (incl. Siplus Variants),Sinamics S150 V4.6 Control Unit,Sinamics S150 V4.7 Control Unit,Sinamics S150 V4.7 Sp1 Control Unit,Sinamics S150 V4.8 Control Unit,Sinamics S150 V5.1 Control Unit,Sinamics S150 V5.1 Sp1 Control Unit,Sinamics S210,Sinamics Sl150 V4.7 (control Unit),Sinamics Sl150 V4.8 (control Unit),Sinamics Sm120 V4.7 (control Unit),Sinamics Sm120 V4.8 (control Unit),Sinamics Sm150 V4.8 (control Unit),Siplus Et 200s Im151-8 Pn/dp Cpu,Siplus Et 200s Im151-8f Pn/dp Cpu,Siplus Net Cp 343-1 Advanced,Siplus Net Cp 443-1,Siplus Net Cp 443-1 Advanced,Siplus S7-300 Cpu 314c-2 Pn/dp,Siplus S7-300 Cpu 315-2 Pn/dp,Siplus S7-300 Cpu 315f-2 Pn/dp,Siplus S7-300 Cpu 317-2 Pn/dp,Siplus S7-300 Cpu 317f-2 Pn/dp,Sitop Manager,Sitop Psu8600,Sitop Ups1600 (incl. Siplus Variants),Tim 1531 Irc (incl. Siplus Net Variants)",7.5,HIGH,0.0012000000569969416,false,,false,false,false,,false,false,2019-04-17T13:40:24.000Z,0