cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score CVE-2024-49775,https://securityvulnerability.io/vulnerability/CVE-2024-49775,Heap-Based Buffer Overflow in Siemens Automation Products,"CVE-2024-49775 identifies a critical heap-based buffer overflow vulnerability affecting multiple Siemens automation products, including the Opcenter suite and the Totally Integrated Automation Portal (TIA Portal). This vulnerability resides in the integrated UMC component and could allow an unauthenticated remote attacker to execute arbitrary code. Given the widespread use of these products in industrial environments, the implications of such exploitation could lead to severe operational disruptions. Siemens has acknowledged this vulnerability in all listed versions and it is imperative for users to assess their current configurations and apply necessary mitigations.",Siemens,"Opcenter Execution Foundation,Opcenter Intelligence,Opcenter Quality,Opcenter Rdl,Simatic Pcs Neo V4.0,Simatic Pcs Neo V4.1,Simatic Pcs Neo V5.0,Sinec Nms,Totally Integrated Automation Portal (tia Portal) V16,Totally Integrated Automation Portal (tia Portal) V17,Totally Integrated Automation Portal (tia Portal) V18,Totally Integrated Automation Portal (tia Portal) V19",9.8,CRITICAL,0.000910000002477318,false,,false,false,false,,false,false,2024-12-16T15:06:04.714Z,184 CVE-2024-47808,https://securityvulnerability.io/vulnerability/CVE-2024-47808,Arbitrary File Write Vulnerability in SINEC NMS,"A vulnerability has been identified in SINEC NMS (All versions < V3.0 SP1). The affected application contains a database function, that does not properly restrict the permissions of users to write to the filesystem of the host system. This could allow an authenticated medium-privileged attacker to write arbitrary content to any location in the filesystem of the host system.",Siemens,Sinec Nms,6.5,MEDIUM,0.0004299999854993075,false,,false,false,false,,false,false,2024-11-12T12:49:48.462Z,0 CVE-2024-33698,https://securityvulnerability.io/vulnerability/CVE-2024-33698,Heap-Based Buffer Overflow in Opcenter and SIMATIC Products by Siemens,"A critical security vulnerability exists within the integrated UMC component of various Siemens products, including Opcenter and SIMATIC series. This vulnerability is characterized as a heap-based buffer overflow, which could potentially enable an unauthenticated remote attacker to execute arbitrary code on the affected systems. This flaw underscores the importance of regular updates and security patch management to protect industrial applications from malicious exploitation.",Siemens,"Opcenter Execution Foundation,Opcenter Quality,Opcenter Rdl,Simatic Information Server 2022,Simatic Information Server 2024,Simatic Pcs Neo V4.0,Simatic Pcs Neo V4.1,Simatic Pcs Neo V5.0,Sinec Nms,Totally Integrated Automation Portal (tia Portal) V16,Totally Integrated Automation Portal (tia Portal) V17,Totally Integrated Automation Portal (tia Portal) V18,Totally Integrated Automation Portal (tia Portal) V19",9.8,CRITICAL,0.0004299999854993075,false,,false,false,false,,false,false,2024-09-10T09:36:31.009Z,0 CVE-2024-41941,https://securityvulnerability.io/vulnerability/CVE-2024-41941,Unauthorized Access to Modify Application Settings in SINEC NMS,A vulnerability has been identified in SINEC NMS (All versions < V3.0). The affected application does not properly enforce authorization checks. This could allow an authenticated attacker to bypass the checks and modify settings in the application without authorization.,Siemens,Sinec Nms,4.3,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-08-13T07:54:34.225Z,0 CVE-2024-41940,https://securityvulnerability.io/vulnerability/CVE-2024-41940,Privilege Escalation Vulnerability in SINEC NMS,"A significant vulnerability exists within Siemens' SINEC Network Management System that affects all versions prior to 3.0. This flaw arises due to inadequate validation of user input directed at a privileged command queue. As a result, an authenticated attacker could exploit this weakness to execute operating system commands with elevated privileges, potentially leading to unauthorized system control and manipulation. Organizations utilizing SINEC NMS are urged to review their security posture and apply necessary mitigations as per the vendor’s guidance.",Siemens,Sinec Nms,9.1,CRITICAL,0.00046999999904073775,false,,false,false,false,,false,false,2024-08-13T07:54:32.926Z,0 CVE-2024-41939,https://securityvulnerability.io/vulnerability/CVE-2024-41939,Vulnerability in SINEC NMS Could Allow Elevated Privileges,"An authorization bypass vulnerability has been discovered in SINEC NMS, affecting all versions prior to V3.0. This security flaw allows authenticated attackers to circumvent the intended authorization checks within the application, potentially enabling them to escalate their privileges. Successful exploitation of this vulnerability could lead to unauthorized access and modification of sensitive data, raising significant concerns about the integrity and security of the SINEC NMS system. Mitigating this issue is critical for maintaining robust cybersecurity practices and protecting user data.",Siemens,Sinec Nms,8.8,HIGH,0.0004900000058114529,false,,false,false,false,,false,false,2024-08-13T07:54:31.595Z,0 CVE-2024-41938,https://securityvulnerability.io/vulnerability/CVE-2024-41938,Path Traversal Vulnerability in SINEC NMS Leads to Certificate Deletion,A vulnerability has been identified in SINEC NMS (All versions < V3.0). The importCertificate function of the SINEC NMS Control web application contains a path traversal vulnerability. This could allow an authenticated attacker it to delete arbitrary certificate files on the drive SINEC NMS is installed on.,Siemens,Sinec Nms,3.8,LOW,0.0004600000102072954,false,,false,false,false,,false,false,2024-08-13T07:54:30.281Z,0 CVE-2024-36398,https://securityvulnerability.io/vulnerability/CVE-2024-36398,NMS Vulnerability Allows Local Attacker to Execute OS Commands with Elevated Privileges,"A vulnerability has been discovered in the SINEC Network Management System (NMS), affecting all versions prior to V3.0. The issue arises from the application's execution of certain services with 'NT AUTHORITY\SYSTEM' privileges. This design flaw allows local attackers to potentially execute operating system commands, resulting in elevated privileges and unauthorized access to critical system functionalities. Addressing this vulnerability is essential to protect system integrity and prevent exploitation.",Siemens,Sinec Nms,7.8,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,2024-08-13T07:54:08.979Z,0 CVE-2023-46280,https://securityvulnerability.io/vulnerability/CVE-2023-46280,Out of Bounds Read Vulnerability in SIMATIC and TIA Portal Products by Siemens,"An out of bounds read vulnerability has been identified in multiple Siemens products, including the SIMATIC and TIA Portal series. This flaw can potentially lead to the crashing of the Windows kernel, resulting in a Blue Screen of Death (BSOD) error. Attackers could exploit this vulnerability to destabilize systems, impacting operational efficiency and safety within industrial environments. It is crucial for users of these products to be aware of this vulnerability and to implement necessary mitigations as outlined by Siemens.",Siemens,"Security Configuration Tool (sct),Simatic Automation Tool,Simatic Batch V9.1,Simatic Net Pc Software V16,Simatic Net Pc Software V17,Simatic Net Pc Software V18,Simatic Net Pc Software V19,Simatic Pcs 7 V9.1,Simatic Pdm V9.2,Simatic Route Control V9.1,Simatic S7-pct,Simatic Step 7 V5,Simatic Wincc Oa V3.17,Simatic Wincc Oa V3.18,Simatic Wincc Oa V3.19,Simatic Wincc Runtime Advanced,Simatic Wincc Runtime Professional V16,Simatic Wincc Runtime Professional V17,Simatic Wincc Runtime Professional V18,Simatic Wincc Runtime Professional V19,Simatic Wincc V7.4,Simatic Wincc V7.5,Simatic Wincc V8.0,Sinamics Startdrive,Sinec Nms,Sinumerik One Virtual,Sinumerik Plc Programming Tool,Tia Portal Cloud Connector,Totally Integrated Automation Portal (tia Portal) V15.1,Totally Integrated Automation Portal (tia Portal) V16,Totally Integrated Automation Portal (tia Portal) V17,Totally Integrated Automation Portal (tia Portal) V18,Totally Integrated Automation Portal (tia Portal) V19",6.5,MEDIUM,0.00044999999227002263,false,,false,false,false,,false,false,2024-05-14T10:01:52.069Z,0 CVE-2024-31978,https://securityvulnerability.io/vulnerability/CVE-2024-31978,SINEC NMS Vulnerability: Authenticated Data Export Leads to File System Access,"A vulnerability has been identified in the SINEC NMS platform from Siemens that affects all versions prior to V2.0 SP2. This vulnerability is linked to the API endpoint that allows authenticated users to export monitoring data. The API is susceptible to path traversal attacks, which could permit an authenticated attacker to access and download sensitive files from the system's file directory. In certain scenarios, the exploited files may be deleted from the file system after being downloaded, potentially leading to data loss and unauthorized information retrieval.",Siemens,Sinec Nms,7.6,HIGH,0.0004400000034365803,false,,false,false,false,,false,false,2024-04-09T08:34:44.145Z,0 CVE-2024-23812,https://securityvulnerability.io/vulnerability/CVE-2024-23812,Command Injection Vulnerability in SINEC NMS,"A vulnerability exists in SINEC NMS due to improper neutralization of special characters during the report creation process. This flaw allows attackers to exploit the application by injecting malicious commands, potentially compromising system integrity and security. This issue affects all versions of SINEC NMS prior to V2.0 SP1, underscoring the importance of updating to mitigate risks associated with this vulnerability.",Siemens,Sinec Nms,8.8,HIGH,0.0006399999838322401,false,,false,false,false,,false,false,2024-02-13T09:00:24.566Z,0 CVE-2024-23811,https://securityvulnerability.io/vulnerability/CVE-2024-23811,Arbitrary File Upload Vulnerability in SINEC NMS Could Lead to Remote Code Execution,"A security vulnerability in SINEC NMS allows for arbitrary file uploads via TFTP to versions prior to V2.0 SP1. This flaw provides an opportunity for attackers to upload malicious files, including firmware images, potentially enabling remote code execution on affected systems. Users are urged to take immediate precautions to mitigate risks associated with this vulnerability.",Siemens,Sinec Nms,8.8,HIGH,0.0004600000102072954,false,,false,false,false,,false,false,2024-02-13T09:00:23.301Z,0 CVE-2024-23810,https://securityvulnerability.io/vulnerability/CVE-2024-23810,Unauthenticated Remote Attacker Can Execute Arbitrary SQL Queries on Server Database,"A SQL injection vulnerability exists in SINEC NMS, allowing unauthenticated remote attackers to manipulate server database queries. The flaw affects all versions prior to V2.0 SP1, potentially compromising data integrity and exposing sensitive information. It is crucial for organizations using this software to apply available patches and updates promptly to mitigate associated risks.",Siemens,Sinec Nms,9.8,CRITICAL,0.0008900000248104334,false,,false,false,false,,false,false,2024-02-13T09:00:21.960Z,0 CVE-2023-46284,https://securityvulnerability.io/vulnerability/CVE-2023-46284,Out of Bounds Write Vulnerability in Siemens Automation Products,"A significant out of bounds write vulnerability exists in various Siemens automation products, including Opcenter Execution Foundation and the Totally Integrated Automation Portal. This vulnerability arises when specific requests are processed on designated TCP ports (4002 and 4004), leading to a potential application crash. The affected services are designed to auto-restart following a crash, which may allow an attacker to exploit the application further. Timely updates to the latest versions are crucial for mitigating this risk.",Siemens,"Opcenter Execution Foundation,Opcenter Quality,Simatic Pcs Neo,Sinec Nms,Totally Integrated Automation Portal (tia Portal) V14,Totally Integrated Automation Portal (tia Portal) V15.1,Totally Integrated Automation Portal (tia Portal) V16,Totally Integrated Automation Portal (tia Portal) V17,Totally Integrated Automation Portal (tia Portal) V18",7.5,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,2023-12-12T12:15:00.000Z,0 CVE-2023-46283,https://securityvulnerability.io/vulnerability/CVE-2023-46283,Out of Bounds Write Vulnerability in Opcenter and TIA Portal by Siemens,"A vulnerability exists in various Siemens software products that allows for an out of bounds write, potentially leading an attacker to crash the application while processing specific requests on a designated TCP port. Following the crash, the affected service is configured to automatically restart, which could be exploited by an attacker for further malicious actions. It's crucial for users of Opcenter Execution Foundation, TIA Portal, and related products to ensure they are running the latest versions to mitigate this risk.",Siemens,"Opcenter Execution Foundation,Opcenter Quality,Simatic Pcs Neo,Sinec Nms,Totally Integrated Automation Portal (tia Portal) V14,Totally Integrated Automation Portal (tia Portal) V15.1,Totally Integrated Automation Portal (tia Portal) V16,Totally Integrated Automation Portal (tia Portal) V17,Totally Integrated Automation Portal (tia Portal) V18",7.5,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,2023-12-12T12:15:00.000Z,0 CVE-2023-46285,https://securityvulnerability.io/vulnerability/CVE-2023-46285,Input Validation Vulnerability in Siemens Automation Products,"An improper input validation vulnerability exists in various Siemens automation products. This flaw can be exploited by sending specially crafted messages to the service running on port 4004/tcp, potentially leading to a Denial-of-Service condition. Notably, the affected services are designed to auto-restart once a failure is detected, which may make detection of the attack more challenging.",Siemens,"Opcenter Execution Foundation,Opcenter Quality,Simatic Pcs Neo,Sinec Nms,Totally Integrated Automation Portal (tia Portal) V14,Totally Integrated Automation Portal (tia Portal) V15.1,Totally Integrated Automation Portal (tia Portal) V16,Totally Integrated Automation Portal (tia Portal) V17,Totally Integrated Automation Portal (tia Portal) V18",7.5,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,2023-12-12T12:15:00.000Z,0 CVE-2023-46282,https://securityvulnerability.io/vulnerability/CVE-2023-46282,Reflected Cross-Site Scripting Vulnerability in Siemens Automation Products,"A reflected cross-site scripting vulnerability has been found in various Siemens automation products, including the Opcenter Execution Foundation and the Totally Integrated Automation Portal. This flaw allows attackers to inject arbitrary JavaScript code into the web interface, which could subsequently be executed by another user, potentially compromising their session and leading to unauthorized actions. The affected versions span multiple platforms, necessitating immediate attention for users of these critical systems.",Siemens,"Opcenter Execution Foundation,Opcenter Quality,Simatic Pcs Neo,Sinec Nms,Totally Integrated Automation Portal (tia Portal) V14,Totally Integrated Automation Portal (tia Portal) V15.1,Totally Integrated Automation Portal (tia Portal) V16,Totally Integrated Automation Portal (tia Portal) V17,Totally Integrated Automation Portal (tia Portal) V18",6.1,MEDIUM,0.0006799999973736703,false,,false,false,false,,false,false,2023-12-12T12:15:00.000Z,0 CVE-2023-46281,https://securityvulnerability.io/vulnerability/CVE-2023-46281,CORS Misconfiguration in Siemens Web Interfaces,"A vulnerability exists in the web interfaces of several Siemens products, where an overly permissive CORS policy could allow an attacker to exploit this misconfiguration. By manipulating CORS settings, an attacker could deceive legitimate users into triggering unintended actions, which may compromise the security of the user's session or expose sensitive data.",Siemens,"Opcenter Execution Foundation,Opcenter Quality,Simatic Pcs Neo,Sinec Nms,Totally Integrated Automation Portal (tia Portal) V14,Totally Integrated Automation Portal (tia Portal) V15.1,Totally Integrated Automation Portal (tia Portal) V16,Totally Integrated Automation Portal (tia Portal) V17,Totally Integrated Automation Portal (tia Portal) V18",8.8,HIGH,0.0018500000005587935,false,,false,false,false,,false,false,2023-12-12T12:15:00.000Z,0 CVE-2023-44315,https://securityvulnerability.io/vulnerability/CVE-2023-44315,Stored Cross-Site Scripting Vulnerability in SINEC NMS by Siemens,"A stored cross-site scripting vulnerability exists in SINEC NMS prior to version 2.0. This flaw arises from inadequate sanitization of SNMP configuration data sourced from monitored devices. An attacker exploiting this vulnerability could implement a stored XSS attack, leading to potential unauthorized alterations of application data by authenticated users, undermining the integrity of the network management system.",Siemens,SINEC NMS,5.4,MEDIUM,0.0005300000193528831,false,,false,false,false,,false,false,2023-10-10T11:15:00.000Z,0 CVE-2022-30527,https://securityvulnerability.io/vulnerability/CVE-2022-30527,Improper Access Rights in SINEC NMS Application by Siemens,"A vulnerability exists in the SINEC NMS application that improperly assigns access rights to certain folders containing executable files and libraries. This issue can enable an authenticated local attacker to exploit the system by injecting arbitrary code and escalating privileges, potentially allowing unauthorized actions within the application.",Siemens,Sinec Nms,7.8,HIGH,0.0004199999966658652,false,,false,false,false,,false,false,2023-10-10T10:20:55.760Z,0 CVE-2022-24282,https://securityvulnerability.io/vulnerability/CVE-2022-24282,,"A vulnerability has been identified in SINEC NMS (All versions >= V1.0.3 < V2.0), SINEC NMS (All versions < V1.0.3), SINEMA Server V14 (All versions). The affected system allows to upload JSON objects that are deserialized to Java objects. Due to insecure deserialization of user-supplied content by the affected software, a privileged attacker could exploit this vulnerability by sending a maliciously crafted serialized Java object. This could allow the attacker to execute arbitrary code on the device with root privileges.",Siemens,"Sinec Nms,Sinema Server V14",7.2,HIGH,0.0004400000034365803,false,,false,false,false,,false,false,2022-03-08T00:00:00.000Z,0 CVE-2022-24281,https://securityvulnerability.io/vulnerability/CVE-2022-24281,,"A vulnerability has been identified in SINEC NMS (All versions < V1.0.3), SINEMA Server V14 (All versions). A privileged authenticated attacker could execute arbitrary commands in the local database by sending specially crafted requests to the webserver of the affected application.",Siemens,"Sinec Nms,Sinema Server V14",7.2,HIGH,0.0004400000034365803,false,,false,false,false,,false,false,2022-03-08T00:00:00.000Z,0 CVE-2022-25311,https://securityvulnerability.io/vulnerability/CVE-2022-25311,,"A vulnerability has been identified in SINEC NMS (All versions >= V1.0.3 < V2.0), SINEC NMS (All versions < V1.0.3), SINEMA Server V14 (All versions). The affected software do not properly check privileges between users during the same web browser session, creating an unintended sphere of control. This could allow an authenticated low privileged user to achieve privilege escalation.",Siemens,"Sinec Nms,Sinema Server V14",7.3,HIGH,0.0004400000034365803,false,,false,false,false,,false,false,2022-03-08T00:00:00.000Z,0 CVE-2021-33736,https://securityvulnerability.io/vulnerability/CVE-2021-33736,,A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.,Siemens,Sinec Nms,7.2,HIGH,0.0015800000401213765,false,,false,false,false,,false,false,2021-10-12T09:49:35.000Z,0 CVE-2021-33734,https://securityvulnerability.io/vulnerability/CVE-2021-33734,,A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). A privileged authenticated attacker could execute arbitrary commands in the local database by sending crafted requests to the webserver of the affected application.,Siemens,Sinec Nms,7.2,HIGH,0.0015800000401213765,false,,false,false,false,,false,false,2021-10-12T09:49:34.000Z,0