Shodan
Vulnerabilities
Vulnerable Software
Siemens:  >> Simatic S7-1500 Cpu Firmware  >> 1.0.1  Security Vulnerabilities
CVE-2014-5074
Siemens SIMATIC S7-1500 CPU devices with firmware before 1.6 allow remote attackers to cause a denial of service (device restart and STOP transition) via crafted TCP packets.
CVSS Score
7.1
EPSS Score
0.137
Published
2014-08-17
CVE-2014-2246
Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVSS Score
4.3
EPSS Score
0.005
Published
2014-03-16
CVE-2014-2247
The integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to inject headers via unspecified vectors.
CVSS Score
5.8
EPSS Score
0.007
Published
2014-03-16
CVE-2014-2248
Open redirect vulnerability in the integrated web server on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
CVSS Score
4.3
EPSS Score
0.007
Published
2014-03-16
CVE-2014-2249
Cross-site request forgery (CSRF) vulnerability on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 and SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.
CVSS Score
5.8
EPSS Score
0.002
Published
2014-03-16
CVE-2014-2251
The random-number generator on Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 does not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic protection mechanisms and hijack sessions via unspecified vectors.
CVSS Score
8.3
EPSS Score
0.009
Published
2014-03-16
CVE-2014-2253
Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted Profinet packets.
CVSS Score
6.1
EPSS Score
0.002
Published
2014-03-16
CVE-2014-2255
Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTP packets.
CVSS Score
7.8
EPSS Score
0.016
Published
2014-03-16
CVE-2014-2257
Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted ISO-TSAP packets.
CVSS Score
7.8
EPSS Score
0.009
Published
2014-03-16
CVE-2014-2259
Siemens SIMATIC S7-1500 CPU PLC devices with firmware before 1.5.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTPS packets.
CVSS Score
7.8
EPSS Score
0.016
Published
2014-03-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved