Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Tag: siemens Clear
ID Title
CVE-2026-46749 Vulnerability in siemens (CVE-2026-46749)
vulnerability in siemens (CVE-2026-46749). Successful exploitation can lead to full system takeover.
CVE-2026-46748 Vulnerability in siemens (CVE-2026-46748)
vulnerability in siemens (CVE-2026-46748). Successful exploitation can lead to full system takeover.
CVE-2026-46747 Vulnerability in path-traversal (CVE-2026-46747)
vulnerability in path-traversal (CVE-2026-46747). Risk of unauthorized operations or information disclosure. Exploitable via `GET /api/sftp/uploadFiles`.
CVE-2026-46746 OS Command Injection in siemens (CVE-2026-46746)
OS command injection in siemens (CVE-2026-46746). Successful exploitation can lead to full system takeover.
CVE-2026-24349 Vulnerability in siemens (CVE-2026-24349)
vulnerability in siemens (CVE-2026-24349). Confidential information can be exposed externally.
CVE-2026-0257 KEV [KEV] Vulnerability in Palo alto networks paloaltonetworks (CVE-2026-0257)
vulnerability in Palo alto networks paloaltonetworks (CVE-2026-0257). Confidential information can be exposed externally. Listed in CISA KEV — actively exploited.
CVE-2026-44411 Vulnerability in siemens (CVE-2026-44411)
vulnerability in siemens (CVE-2026-44411). Successful exploitation can lead to full system takeover.
CVE-2026-33862 Cross-Site Scripting (XSS) in siemens (CVE-2026-33862)
cross-site scripting in siemens (CVE-2026-33862). Confidential information can be exposed externally.
CVE-2026-33893 Vulnerability in siemens (CVE-2026-33893)
vulnerability in siemens (CVE-2026-33893). Confidential information can be exposed externally.
CVE-2026-22925 Vulnerability in siemens (CVE-2026-22925)
vulnerability in siemens (CVE-2026-22925). Risk of unauthorized operations or information disclosure.
CVE-2025-40947 OS Command Injection in siemens (CVE-2025-40947)
OS command injection in siemens (CVE-2025-40947). Successful exploitation can lead to full system takeover.
CVE-2025-40948 Vulnerability in siemens (CVE-2025-40948)
vulnerability in siemens (CVE-2025-40948). Confidential information can be exposed externally.
CVE-2025-40949 OS Command Injection in siemens (CVE-2025-40949)
OS command injection in siemens (CVE-2025-40949). Successful exploitation can lead to full system takeover.
CVE-2026-22924 Vulnerability in siemens (CVE-2026-22924)
vulnerability in siemens (CVE-2026-22924). Data can be tampered with by attackers.
CVE-2026-0300 KEV [KEV] Out-of-Bounds Write in Palo alto networks palo-alto-networks (CVE-2026-0300)
out-of-bounds write in Palo alto networks palo-alto-networks (CVE-2026-0300). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2026-31431 KEV [KEV] Vulnerability in Linux redhat (CVE-2026-31431)
vulnerability in Linux redhat (CVE-2026-31431). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2025-40745 Vulnerability in siemens (CVE-2025-40745)
vulnerability in siemens (CVE-2025-40745). Risk of unauthorized operations or information disclosure.
CVE-2026-35535 Vulnerability in privilege-escalation (CVE-2026-35535)
vulnerability in privilege-escalation (CVE-2026-35535). Successful exploitation can lead to full system takeover.
CVE-2026-2673 Vulnerability in openssl (CVE-2026-2673)
vulnerability in openssl (CVE-2026-2673). Risk of unauthorized operations or information disclosure.
CVE-2026-24858 KEV [KEV] Vulnerability in Fortinet multiple-products (CVE-2026-24858)
vulnerability in Fortinet multiple-products (CVE-2026-24858). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2025-59718 KEV [KEV] Vulnerability in Fortinet multiple-products (CVE-2025-59718)
vulnerability in Fortinet multiple-products (CVE-2025-59718). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2025-40798 Out-of-Bounds Read in dos (CVE-2025-40798)
vulnerability in dos (CVE-2025-40798). Risk of unauthorized operations or information disclosure.
CVE-2025-40797 Out-of-Bounds Read in dos (CVE-2025-40797)
vulnerability in dos (CVE-2025-40797). Risk of unauthorized operations or information disclosure.
CVE-2025-40796 Out-of-Bounds Read in dos (CVE-2025-40796)
vulnerability in dos (CVE-2025-40796). Risk of unauthorized operations or information disclosure.
CVE-2025-40795 Vulnerability in dos (CVE-2025-40795)
vulnerability in dos (CVE-2025-40795). Successful exploitation can lead to full system takeover.
CVE-2025-38502 Out-of-Bounds Read in linux (CVE-2025-38502)
vulnerability in linux (CVE-2025-38502). Confidential information can be exposed externally.
CVE-2025-8732 Vulnerability in xmlsoft (CVE-2025-8732)
vulnerability in xmlsoft (CVE-2025-8732). Risk of unauthorized operations or information disclosure.
CVE-2025-6965 Vulnerability in SQLitePCLRaw.lib.e_sqlite3 (CVE-2025-6965)
vulnerability in SQLitePCLRaw.lib.e_sqlite3 (CVE-2025-6965). Data can be tampered with by attackers.
CVE-2024-50302 KEV [KEV] Vulnerability in :linux_kernel: (CVE-2024-50302)
vulnerability in :linux_kernel: (CVE-2024-50302). Confidential information can be exposed externally. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `:2025-03-05` or later.
CVE-2024-49894 Vulnerability in c (CVE-2024-49894)
vulnerability in c (CVE-2024-49894). Successful exploitation can lead to full system takeover.
CVE-2023-4911 KEV [KEV] Vulnerability in Gnu c (CVE-2023-4911)
vulnerability in Gnu c (CVE-2023-4911). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2023-44487 KEV [KEV] Vulnerability in Ietf golang.org/x/net (CVE-2023-44487)
vulnerability in Ietf golang.org/x/net (CVE-2023-44487). Risk of unauthorized operations or information disclosure. Exploitable via ``Channel``. Listed in CISA KEV — actively exploited. Mitigation: upgrade to `0.17.0` or later.
CVE-2022-40227 Vulnerability in dos (CVE-2022-40227)
vulnerability in dos (CVE-2022-40227). Risk of unauthorized operations or information disclosure.
CVE-2022-30065 Use-After-Free in dos (CVE-2022-30065)
vulnerability in dos (CVE-2022-30065). Successful exploitation can lead to full system takeover.
CVE-2016-8562 KEV [KEV] Vulnerability in Siemens simatic-cp (CVE-2016-8562)
vulnerability in Siemens simatic-cp (CVE-2016-8562). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2020-26146 Vulnerability in platform/vendor/qcom-opensource/wlan/qca-wifi-host-cmn (CVE-2020-26146)
vulnerability in platform/vendor/qcom-opensource/wlan/qca-wifi-host-cmn (CVE-2020-26146). Data can be tampered with by attackers. Mitigation: upgrade to `SoCVersion:2021-10-05` or later.
CVE-2021-22926 Vulnerability in haxx (CVE-2021-22926)
vulnerability in haxx (CVE-2021-22926). Risk of unauthorized operations or information disclosure. Exploitable via ``CURLOPT_SSLCERT``.
CVE-2020-15782 Buffer Overflow in siemens (CVE-2020-15782)
vulnerability in siemens (CVE-2020-15782). Successful exploitation can lead to full system takeover.
CVE-2021-22897 Vulnerability in haxx (CVE-2021-22897)
vulnerability in haxx (CVE-2021-22897). Risk of unauthorized operations or information disclosure. Exploitable via ``CURLOPT_SSL_CIPHER_LIST``.
CVE-2021-25660 Buffer Overflow in siemens (CVE-2021-25660)
vulnerability in siemens (CVE-2021-25660). Risk of unauthorized operations or information disclosure.
CVE-2021-25661 Vulnerability in siemens (CVE-2021-25661)
vulnerability in siemens (CVE-2021-25661). Risk of unauthorized operations or information disclosure.
CVE-2021-25662 Vulnerability in siemens (CVE-2021-25662)
vulnerability in siemens (CVE-2021-25662). Risk of unauthorized operations or information disclosure.
CVE-2021-27383 Buffer Overflow in siemens (CVE-2021-27383)
vulnerability in siemens (CVE-2021-27383). Risk of unauthorized operations or information disclosure.
CVE-2021-27384 Vulnerability in siemens (CVE-2021-27384)
vulnerability in siemens (CVE-2021-27384). Successful exploitation can lead to full system takeover.
CVE-2021-27385 Vulnerability in siemens (CVE-2021-27385)
vulnerability in siemens (CVE-2021-27385). Risk of unauthorized operations or information disclosure.
CVE-2021-27386 Buffer Overflow in siemens (CVE-2021-27386)
vulnerability in siemens (CVE-2021-27386). Risk of unauthorized operations or information disclosure.
CVE-2021-25667 A vulnerability has been identified in RUGGEDCOM RM1224 (All versions >= V4.3 and < V6.4), SCALANCE M-800 (All versions >= V4.3 and < V6.4), SCALANCE S615 (All versions >= V4.3 and < V6.4), SCALANCE S...
A vulnerability has been identified in RUGGEDCOM RM1224 (All versions >= V4.3 and < V6.4), SCALANCE M-800 (All versions >= V4.3 and < V6.4), SCALANCE S615 (All versions >= V4.3 and < V6.4), SCALANCE SC-600 Family (All versions >= V2.0 and < V2.1.3), SCALANCE XB-200 (All versions < V4.1), SCALANCE XC...
CVE-2017-14491 Out-of-Bounds Write in platform/external/dnsmasq (CVE-2017-14491)
out-of-bounds write in platform/external/dnsmasq (CVE-2017-14491). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `11:2021-03-01` or later.
CVE-2020-15798 Vulnerability in siemens (CVE-2020-15798)
vulnerability in siemens (CVE-2020-15798). Successful exploitation can lead to full system takeover.
CVE-2020-1971 Vulnerability in dos (CVE-2020-1971)
vulnerability in dos (CVE-2020-1971). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →