Latest CVE Feed
-
7.5
HIGHCVE-2021-37194
A vulnerability has been identified in COMOS V10.2 (All versions only if web components are used), COMOS V10.3 (All versions < V10.3.3.3 only if web components are used), COMOS V10.4 (All versions < V10.4.1 only if web components are used). The COMOS Web ... Read more
Affected Products : comos- EPSS Score: %0.24
- Published: Feb. 09, 2022
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-37189
An issue was discovered on Digi TransPort Gateway devices through 5.2.13.4. They do not set the Secure attribute for sensitive cookies in HTTPS sessions, which could cause the user agent to send those cookies in cleartext over an HTTP session.... Read more
- EPSS Score: %0.19
- Published: Dec. 10, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-37188
An issue was discovered on Digi TransPort devices through 2021-07-21. An authenticated attacker may load customized firmware (because the bootloader does not verify that it is authentic), changing the behavior of the gateway.... Read more
- EPSS Score: %0.26
- Published: Dec. 10, 2021
- Modified: Nov. 21, 2024
-
6.5
MEDIUMCVE-2021-37187
An issue was discovered on Digi TransPort devices through 2021-07-21. An authenticated attacker may read a password file (with reversible passwords) from the device, which allows decoding of other users' passwords.... Read more
- EPSS Score: %0.31
- Published: Dec. 10, 2021
- Modified: Nov. 21, 2024
-
5.4
MEDIUMCVE-2021-37186
A vulnerability has been identified in LOGO! CMR2020 (All versions < V2.2), LOGO! CMR2040 (All versions < V2.2), SIMATIC RTU3010C (All versions < V4.0.9), SIMATIC RTU3030C (All versions < V4.0.9), SIMATIC RTU3031C (All versions < V4.0.9), SIMATIC RTU3041C... Read more
- EPSS Score: %0.16
- Published: Sep. 14, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-37185
A vulnerability has been identified in SIMATIC Drive Controller family (All versions >= V2.9.2 < V2.9.4), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (incl. SIPLUS variants) (All versions >= V21.9 < V21.9.4), SIMATIC S7-1200 CPU family (incl. SIPLUS v... Read more
Affected Products : simatic_s7-1500_software_controller_firmware simatic_drive_controller_cpu_1504d_tf_firmware simatic_drive_controller_cpu_1507d_tf_firmware simatic_s7-plcsim_advanced_firmware siplus_tim_1531_irc_firmware tim_1531_irc_firmware simatic_et_200sp_open_controller_cpu_1515sp_pc2_firmware simatic_s7-1200_cpu_1211c_firmware simatic_s7-1200_cpu_1212c_firmware simatic_s7-1200_cpu_1214c_firmware +87 more products- EPSS Score: %1.43
- Published: Feb. 09, 2022
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-37184
A vulnerability has been identified in Industrial Edge Management (All versions < V1.3). An unauthenticated attacker could change the the password of any user in the system under certain circumstances. With this an attacker could impersonate any valid use... Read more
Affected Products : industrial_edge_management- EPSS Score: %0.52
- Published: Sep. 14, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-37182
A vulnerability has been identified in SCALANCE XM408-4C (All versions < V6.5), SCALANCE XM408-4C (L3 int.) (All versions < V6.5), SCALANCE XM408-8C (All versions < V6.5), SCALANCE XM408-8C (L3 int.) (All versions < V6.5), SCALANCE XM416-4C (All versions ... Read more
Affected Products : scalance_xm408-4c_firmware scalance_xm408-4c_l3_firmware scalance_xm408-8c_firmware scalance_xm408-8c_l3_firmware scalance_xm416-4c_firmware scalance_xm416-4c_l3_firmware scalance_xr524-8c_firmware scalance_xr524-8c_l3_firmware scalance_xr526-8c_firmware scalance_xr526-8c_l3_firmware +24 more products- EPSS Score: %0.35
- Published: Jun. 14, 2022
- Modified: Nov. 21, 2024
-
10.0
CRITICALCVE-2021-37181
A vulnerability has been identified in Cerberus DMS V4.0 (All versions), Cerberus DMS V4.1 (All versions), Cerberus DMS V4.2 (All versions), Cerberus DMS V5.0 (All versions < v5.0 QU1), Desigo CC Compact V4.0 (All versions), Desigo CC Compact V4.1 (All ve... Read more
- EPSS Score: %1.10
- Published: Sep. 14, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-37180
A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). The PSKERNEL.dll library lacks proper validation while parsing user-supplied OBJ files that could cause an out of bounds access to an uninitialized pointer. An attacker c... Read more
- EPSS Score: %0.38
- Published: Aug. 10, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-37179
A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). The PSKERNEL.dll library in affected application lacks proper validation while parsing user-supplied OBJ files that could lead to a use-after-free condition. An attacker ... Read more
- EPSS Score: %0.53
- Published: Aug. 10, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-37178
A vulnerability has been identified in Solid Edge SE2021 (All Versions < SE2021MP7). An XML external entity injection vulnerability in the underlying XML parser could cause the affected application to disclose arbitrary files to remote attackers by loadin... Read more
- EPSS Score: %0.22
- Published: Aug. 10, 2021
- Modified: Nov. 21, 2024
-
4.3
MEDIUMCVE-2021-37176
A vulnerability has been identified in Simcenter Femap V2020.2 (All versions), Simcenter Femap V2021.1 (All versions). The femap.exe application lacks proper validation of user-supplied data when parsing modfem files. This could result in an out of bounds... Read more
Affected Products : simcenter_femap- EPSS Score: %0.17
- Published: Sep. 14, 2021
- Modified: Nov. 21, 2024
-
5.3
MEDIUMCVE-2021-37175
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM ROX RX1400 (All versions < V2.14.1), RUGGEDCOM ROX RX1500 (All versions < V2.14.1), RUGGEDCOM ROX RX1501 (All versions < V2.14.1), RUGGEDCOM ROX RX1510 (All ve... Read more
Affected Products : ruggedcom_rox_mx5000_firmware ruggedcom_rox_rx1400_firmware ruggedcom_rox_rx1500_firmware ruggedcom_rox_rx1501_firmware ruggedcom_rox_rx1510_firmware ruggedcom_rox_rx1511_firmware ruggedcom_rox_rx1512_firmware ruggedcom_rox_rx1524_firmware ruggedcom_rox_rx1536_firmware ruggedcom_rox_rx5000_firmware +10 more products- EPSS Score: %0.24
- Published: Sep. 14, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-37174
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM ROX RX1400 (All versions < V2.14.1), RUGGEDCOM ROX RX1500 (All versions < V2.14.1), RUGGEDCOM ROX RX1501 (All versions < V2.14.1), RUGGEDCOM ROX RX1510 (All ve... Read more
Affected Products : ruggedcom_rox_mx5000_firmware ruggedcom_rox_rx1400_firmware ruggedcom_rox_rx1500_firmware ruggedcom_rox_rx1501_firmware ruggedcom_rox_rx1510_firmware ruggedcom_rox_rx1511_firmware ruggedcom_rox_rx1512_firmware ruggedcom_rox_rx1524_firmware ruggedcom_rox_rx1536_firmware ruggedcom_rox_rx5000_firmware +10 more products- EPSS Score: %0.56
- Published: Sep. 14, 2021
- Modified: Nov. 21, 2024
-
9.0
HIGHCVE-2021-37173
A vulnerability has been identified in RUGGEDCOM ROX MX5000 (All versions < V2.14.1), RUGGEDCOM ROX RX1400 (All versions < V2.14.1), RUGGEDCOM ROX RX1500 (All versions < V2.14.1), RUGGEDCOM ROX RX1501 (All versions < V2.14.1), RUGGEDCOM ROX RX1510 (All ve... Read more
Affected Products : ruggedcom_rox_mx5000_firmware ruggedcom_rox_rx1400_firmware ruggedcom_rox_rx1500_firmware ruggedcom_rox_rx1501_firmware ruggedcom_rox_rx1510_firmware ruggedcom_rox_rx1511_firmware ruggedcom_rox_rx1512_firmware ruggedcom_rox_rx1524_firmware ruggedcom_rox_rx1536_firmware ruggedcom_rox_rx5000_firmware +10 more products- EPSS Score: %1.55
- Published: Sep. 14, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-37172
A vulnerability has been identified in SIMATIC S7-1200 CPU family (incl. SIPLUS variants) (V4.5.0). Affected devices fail to authenticate against configured passwords when provisioned using TIA Portal V13. This could allow an attacker using TIA Portal V13... Read more
Affected Products : simatic_s7-1200_cpu_firmware simatic_step_7_\(tia_portal\) simatic_s7-1200_firmware cpu_1211c cpu_1212c cpu_1212fc cpu_1214c cpu_1214fc cpu_1215c cpu_1215fc +1 more products- EPSS Score: %0.19
- Published: Aug. 10, 2021
- Modified: Nov. 21, 2024
-
10.0
HIGHCVE-2021-37167
An insecure permissions issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. A user logged in using the default credentials can gain root access to the devic... Read more
- EPSS Score: %0.58
- Published: Aug. 02, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-37166
A buffer overflow issue leading to denial of service was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. When HMI3 starts up, it binds a local service to a TCP po... Read more
- EPSS Score: %0.87
- Published: Aug. 02, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-37165
A buffer overflow issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. When a message is sent to the HMI TCP socket, it is forwarded to the hmiProcessMsg fun... Read more
- EPSS Score: %5.00
- Published: Aug. 02, 2021
- Modified: Nov. 21, 2024