Siemens Automation License Manager — known CVE vulnerabilities
Every CVE whose affected-product data names Siemens Automation License Manager, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2016-8565 — CVSS 9.1 (critical): Siemens Automation License Manager (ALM) before 5.3 SP3 allows remote attackers to write to files, rename files, create directories, or…
CVE-2018-11455 — CVSS 8.8 (high): A vulnerability has been identified in Automation License Manager 5 (All versions < 5.3.4.4), Automation License Manager 6 (All versions <…
CVE-2022-43513 — CVSS 8.2 (high): A vulnerability has been identified in Automation License Manager V5 (All versions), Automation License Manager V6 (All versions < V6.0 SP9…
CVE-2020-7583 — CVSS 7.8 (high): A vulnerability has been identified in Automation License Manager 5 (All versions), Automation License Manager 6 (All versions < V6.0.8)…
CVE-2022-43514 — CVSS 7.7 (high): A vulnerability has been identified in Automation License Manager V5 (All versions), Automation License Manager V6 (All versions < V6.0 SP9…
CVE-2016-8563 — CVSS 7.5 (high): Siemens Automation License Manager (ALM) before 5.3 SP3 Update 1 allows remote attackers to cause a denial of service (ALM service outage)…
CVE-2021-25659 — CVSS 7.5 (high): A vulnerability has been identified in Automation License Manager 5 (All versions), Automation License Manager 6 (All versions < V6.0 SP9…
CVE-2011-4529 — CVSS 7.5 (high): Multiple buffer overflows in Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 allow remote attackers to execute arbitrary…
CVE-2016-8564 — CVSS 6.5 (medium): SQL injection vulnerability in Siemens Automation License Manager (ALM) before 5.3 SP3 Update 1 allows remote attackers to execute…
CVE-2018-11456 — CVSS 5.8 (medium): A vulnerability has been identified in Automation License Manager 5 (All versions < 5.3.4.4). An attacker with network access to the device…
CVE-2011-4532 — CVSS 5.0 (medium): Absolute path traversal vulnerability in the ALMListView.ALMListCtrl ActiveX control in almaxcx.dll in the graphical user interface in…
CVE-2011-4531 — CVSS 5.0 (medium): Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 allows remote attackers to cause a denial of service (NULL pointer…
CVE-2011-4530 — CVSS 5.0 (medium): Siemens Automation License Manager (ALM) 4.0 through 5.1+SP1+Upd1 does not properly copy fields obtained from clients, which allows remote…
CVE-2012-4691 — CVSS 3.3 (low): Memory leak in Siemens Automation License Manager (ALM) 4.x and 5.x before 5.2 allows remote attackers to cause a denial of service (memory…