cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-38533,https://securityvulnerability.io/vulnerability/CVE-2023-38533,Insecure Temporary Download Files Could Disrupt Update Process,"A security issue has been identified in TIA Administrator affecting all versions prior to V3 SP2. This vulnerability arises from the improper handling of temporary download files which are created in a directory with insecure permissions. As a result, any authenticated attacker operating within the Windows environment could exploit this vulnerability to disrupt the update process, potentially leading to system instability and service interruptions. Organizations utilizing TIA Administrator should take necessary precautions to mitigate risks associated with this vulnerability.",Siemens,Tia Administrator,3.3,LOW,0.0004299999854993075,false,,false,false,false,,false,false,2024-06-11T11:14:55.951Z,0
CVE-2022-27194,https://securityvulnerability.io/vulnerability/CVE-2022-27194,,"A vulnerability has been identified in SIMATIC PCS neo (Administration Console) (All versions < V3.1 SP1), SINETPLAN (All versions), TIA Portal (V15, V15.1, V16 and V17). The affected system cannot properly process specially crafted packets sent to port 8888/tcp. A remote attacker could exploit this vulnerability to cause a Denial-of-Service condition. The affected devices must be restarted manually.",Siemens,"Simatic Pcs Neo (administration Console),Sinetplan,Tia Portal",7.5,HIGH,0.0017900000093504786,false,,false,false,false,,false,false,2022-04-12T09:07:59.000Z,0
CVE-2020-25238,https://securityvulnerability.io/vulnerability/CVE-2020-25238,,"A vulnerability has been identified in PCS neo (Administration Console) (All versions < V3.1), TIA Portal (V15, V15.1 and V16). Manipulating certain files in specific folders could allow a local attacker to execute code with SYSTEM privileges. The security vulnerability could be exploited by an attacker with a valid account and limited access rights on the system.",Siemens,"Pcs Neo (administration Console),Tia Portal",7.8,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,2021-02-09T15:38:18.000Z,0
CVE-2019-10915,https://securityvulnerability.io/vulnerability/CVE-2019-10915,,A vulnerability has been identified in TIA Administrator (All versions < V1.0 SP1 Upd1). The integrated configuration web application (TIA Administrator) allows to execute certain application commands without proper authentication. The vulnerability could be exploited by an attacker with local access to the affected system. Successful exploitation requires no privileges and no user interaction. An attacker could use the vulnerability to compromise confidentiality and integrity and availability of the affected system. At the time of advisory publication no public exploitation of this security vulnerability was known.,Siemens Ag,Tia Administrator,7.8,HIGH,0.0004600000102072954,false,,false,false,true,true,false,false,2019-07-11T21:17:46.000Z,0