Shodan
Vulnerabilities
Vulnerable Software
Siemens:  >> Simatic S7 Cpu 1200 Firmware  >> 3.0  Security Vulnerabilities
CVE-2016-2846
Siemens SIMATIC S7-1200 CPU devices before 4.0 allow remote attackers to bypass a "user program block" protection mechanism via unspecified vectors.
CVSS Score
6.5
EPSS Score
0.002
Published
2016-03-16
CVE-2014-2908
Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVSS Score
4.3
EPSS Score
0.476
Published
2014-04-25
CVE-2014-2909
CRLF injection vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote attackers to inject arbitrary HTTP headers via unspecified vectors.
CVSS Score
5.8
EPSS Score
0.008
Published
2014-04-25
CVE-2014-2250
The random-number generator on Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 does not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic protection mechanisms and hijack sessions via unspecified vectors, a different vulnerability than CVE-2014-2251.
CVSS Score
8.3
EPSS Score
0.014
Published
2014-03-24
CVE-2014-2252
Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted PROFINET packets, a different vulnerability than CVE-2014-2253.
CVSS Score
6.1
EPSS Score
0.002
Published
2014-03-24
CVE-2014-2254
Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTP packets, a different vulnerability than CVE-2014-2255.
CVSS Score
7.8
EPSS Score
0.005
Published
2014-03-24
CVE-2014-2256
Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted ISO-TSAP packets, a different vulnerability than CVE-2014-2257.
CVSS Score
7.8
EPSS Score
0.009
Published
2014-03-24
CVE-2014-2258
Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTPS packets, a different vulnerability than CVE-2014-2259.
CVSS Score
7.8
EPSS Score
0.005
Published
2014-03-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved