Vulnerabilities
Findings from Legacy PMS & industrial gateway audit
14 findings
Filters:
| Risk | Vulnerability | CVE | Device | Detected | CVSS | |
|---|---|---|---|---|---|---|
Improper Check in Authenticator of Stack-Based Industrial Devices | CVE-2019-14309 | switch_24Siemens · SCALANCE X-216 | 1967-09-27 | 3.5 | ||
Denial of Service Vulnerability in OpenSSL Affecting Industrial Products | CVE-2022-0778 | pcs7_server_01Siemens · PCS 7 V9.1 | 1968-07-10 | 7.5 | ||
Denial of Service Vulnerability in OpenSSL Affecting Industrial Products | CVE-2022-0778 | switch_25Siemens · SCALANCE X-307-2 EEC | 1969-04-09 | 7.5 | ||
Denial of Service Vulnerability in OpenSSL Affecting Industrial Products | CVE-2022-0778 | peripheral_001Siemens · IM 154-8 PN/DP CPU | 1969-02-13 | 7.5 | ||
Missing CSRF Protection in the Web Server on Single-Page-Of Industrial Controls | CVE-2023-38380 | switch_01Hirschmann · RSPE 35 | 1968-02-20 | 6.5 | ||
Missing CSRF Protection in the Web Server on Single-Page-Of Industrial Controls | CVE-2023-38380 | kuka_krc_03KUKA · KSS 8.x | 1968-08-29 | 6.5 | ||
Missing CSRF Protection in the Web Server on Single-Page-Of Industrial Controls | CVE-2023-38380 | aveva_intouch_02AVEVA · InTouch 2023 | 1968-02-29 | 6.5 | ||
Improper Check in Authenticator of Stack-Based Industrial Devices | CVE-2019-14309 | ewon_flexy_02HMS · Ewon Flexy 14.x | 1969-10-02 | 3.5 | ||
Denial of Service Vulnerability in OpenSSL Affecting Industrial Products | CVE-2022-0778 | sentron_meter_bSiemens · SENTRON PAC V8.x | 1967-12-31 | 7.5 | ||
Denial of Service Vulnerability in OpenSSL Affecting Industrial Products | CVE-2022-0778 | honeywell_st800_01Honeywell · SmartLine ST800 V4.x | 1969-10-09 | 7.5 | ||
Improper Check in Authenticator of Stack-Based Industrial Devices | CVE-2019-14309 | pcs7_engineering_01Siemens · PCS 7 V8.2 | 1967-08-04 | 3.5 | ||
Improper Check in Authenticator of Stack-Based Industrial Devices | CVE-2019-14309 | fanuc_arm_01FANUC · R-30iB Plus | 1969-03-05 | 3.5 | ||
Improper Check in Authenticator of Stack-Based Industrial Devices | CVE-2019-14309 | wincc_server_01Siemens · WinCC V7.5 | 1969-02-08 | 3.5 | ||
Improper Check in Authenticator of Stack-Based Industrial Devices | CVE-2019-14309 | promass_flow_05Endress+Hauser · Proline Promass V5.x | 1969-04-21 | 3.5 |
