Siemens Simatic S7-1500 Cpu Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Siemens Simatic S7-1500 Cpu Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2014-2251 — CVSS 8.3 (high): The random-number generator on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 does not have sufficient entropy, which…
CVE-2014-2255 — CVSS 7.8 (high): Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode…
CVE-2014-2259 — CVSS 7.8 (high): Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode…
CVE-2014-2257 — CVSS 7.8 (high): Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode…
CVE-2016-2200 — CVSS 7.5 (high): Siemens SIMATIC S7-1500 CPU devices before 1.8.3 allow remote attackers to cause a denial of service (STOP mode transition) via crafted…
CVE-2019-10936 — CVSS 7.5 (high): Affected devices improperly handle large amounts of specially crafted UDP packets. This could allow an unauthenticated remote attacker to…
CVE-2014-5074 — CVSS 7.1 (high): Siemens SIMATIC S7-1500 CPU devices with firmware before 1.6 allow remote attackers to cause a denial of service (device restart and STOP…
CVE-2014-2253 — CVSS 6.1 (medium): Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode…
CVE-2014-2249 — CVSS 5.8 (medium): Cross-site request forgery (CSRF) vulnerability on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 and SIMATIC S7-1200…
CVE-2014-2247 — CVSS 5.8 (medium): The integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to inject headers…
CVE-2022-25622 — CVSS 5.3 (medium): The PROFINET (PNIO) stack, when integrated with the Interniche IP stack, improperly handles internal resources for TCP segments where the…
CVE-2016-2201 — CVSS 5.3 (medium): Siemens SIMATIC S7-1500 CPU devices before 1.8.3 allow remote attackers to bypass a replay protection mechanism via packets on TCP port 102.
CVE-2014-2248 — CVSS 4.3 (medium): Open redirect vulnerability in the integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows…
CVE-2014-2246 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0…