Latest CVE Feed
-
5.5
MEDIUMCVE-2021-25674
A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 (All versions). An attacker with local access to the system could cause a Denial-of-Service condition in the application when it is used to open a specially crafted file. As a consequence, a NU... Read more
Affected Products : simatic_s7-plcsim- EPSS Score: %0.04
- Published: Mar. 15, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-25673
A vulnerability has been identified in SIMATIC S7-PLCSIM V5.4 (All versions). An attacker with local access to the system could cause a Denial-of-Service condition in the application when it is used to open a specially crafted file. As a consequence, the ... Read more
Affected Products : simatic_s7-plcsim- EPSS Score: %0.04
- Published: Mar. 15, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-25672
A vulnerability has been identified in Mendix Forgot Password Appstore module (All Versions < V3.2.1). The Forgot Password Marketplace module does not properly control access. An attacker could take over accounts.... Read more
Affected Products : forgot_password- EPSS Score: %0.34
- Published: Mar. 15, 2021
- Modified: Nov. 21, 2024
-
4.3
MEDIUMCVE-2021-25671
A vulnerability has been identified in RWG1.M12 (All versions < V1.16.16), RWG1.M12D (All versions < V1.16.16), RWG1.M8 (All versions < V1.16.16). Sending specially crafted ARP packets to an affected device could cause a partial denial-of-service, prevent... Read more
Affected Products : rwg1.m12_firmware rwg1.m12d_firmware rwg1.m8_firmware rwg1.m12 rwg1.m12d rwg1.m8- EPSS Score: %0.10
- Published: Jul. 13, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-25670
A vulnerability has been identified in Tecnomatix RobotExpert (All versions < V16.1). Affected applications lack proper validation of user-supplied data when parsing CELL files. This could result in an out of bounds write past the end of an allocated stru... Read more
Affected Products : tecnomatix_robotexpert- EPSS Score: %0.37
- Published: Apr. 22, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-25669
A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT PRO (All versions < 5.5.1), SCALANCE X202-2 IRT (All versions < 5.5.1), SCALANCE X202-2P IRT (incl. SIPLU... Read more
Affected Products : scalance_x200-4p_irt_firmware scalance_x201-3p_irt_firmware scalance_x201-3p_irt_pro_firmware scalance_x202-2p_irt_firmware scalance_x202-2p_irt_pro_firmware scalance_xf201-3p_irt_firmware scalance_xf202-2p_irt_firmware scalance_xf204-2ba_irt_firmware scalance_x202-2_irt_firmware scalance_x204_irt_firmware +48 more products- EPSS Score: %1.00
- Published: Apr. 22, 2021
- Modified: Nov. 21, 2024
-
9.8
CRITICALCVE-2021-25668
A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT PRO (All versions < 5.5.1), SCALANCE X202-2 IRT (All versions < 5.5.1), SCALANCE X202-2P IRT (incl. SIPLU... Read more
Affected Products : scalance_x200-4p_irt_firmware scalance_x201-3p_irt_firmware scalance_x201-3p_irt_pro_firmware scalance_x202-2p_irt_firmware scalance_x202-2p_irt_pro_firmware scalance_xf201-3p_irt_firmware scalance_xf202-2p_irt_firmware scalance_xf204-2ba_irt_firmware scalance_x202-2_irt_firmware scalance_x204_irt_firmware +48 more products- EPSS Score: %0.54
- Published: Apr. 22, 2021
- Modified: Nov. 21, 2024
-
8.8
HIGHCVE-2021-25667
A vulnerability has been identified in RUGGEDCOM RM1224 (All versions >= V4.3 and < V6.4), SCALANCE M-800 (All versions >= V4.3 and < V6.4), SCALANCE S615 (All versions >= V4.3 and < V6.4), SCALANCE SC-600 Family (All versions >= V2.0 and < V2.1.3), SCALA... Read more
- EPSS Score: %0.91
- Published: Mar. 15, 2021
- Modified: Nov. 21, 2024
-
4.3
MEDIUMCVE-2021-25666
A vulnerability has been identified in SCALANCE W780 and W740 (IEEE 802.11n) family (All versions < V6.3). Sending specially crafted packets through the ARP protocol to an affected device could cause a partial denial-of-service, preventing the device to o... Read more
- EPSS Score: %0.09
- Published: Feb. 09, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-25665
A vulnerability has been identified in Simcenter STAR-CCM+ Viewer (All versions < V2021.2.1). The starview+.exe application lacks proper validation of user-supplied data when parsing scene files. This could result in an out of bounds write past the end of... Read more
- EPSS Score: %0.40
- Published: Sep. 14, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-25662
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. SIPLUS variants) (All versions < V15.1 Update 6), SIMATIC HMI Comfort Outdoor Panels V16 7\" & 15\" (incl. SIPLUS variants) (All versions < V16 Update 4), SIMA... Read more
Affected Products : simatic_wincc_runtime_advanced simatic_hmi_comfort_outdoor_panels_7\"_firmware simatic_hmi_comfort_outdoor_panels_15\"_firmware simatic_hmi_comfort_panels_4\"_firmware simatic_hmi_comfort_panels_22\"_firmware simatic_hmi_ktp_mobile_panels_ktp400f_firmware simatic_hmi_ktp_mobile_panels_ktp700_firmware simatic_hmi_ktp_mobile_panels_ktp700f_firmware simatic_hmi_ktp_mobile_panels_ktp900_firmware simatic_hmi_ktp_mobile_panels_ktp900f_firmware +9 more products- EPSS Score: %0.74
- Published: May. 12, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-25661
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. SIPLUS variants) (All versions < V15.1 Update 6), SIMATIC HMI Comfort Outdoor Panels V16 7\" & 15\" (incl. SIPLUS variants) (All versions < V16 Update 4), SIMA... Read more
Affected Products : simatic_wincc_runtime_advanced simatic_hmi_comfort_outdoor_panels_7\"_firmware simatic_hmi_comfort_outdoor_panels_15\"_firmware simatic_hmi_comfort_panels_4\"_firmware simatic_hmi_comfort_panels_22\"_firmware simatic_hmi_ktp_mobile_panels_ktp400f_firmware simatic_hmi_ktp_mobile_panels_ktp700_firmware simatic_hmi_ktp_mobile_panels_ktp700f_firmware simatic_hmi_ktp_mobile_panels_ktp900_firmware simatic_hmi_ktp_mobile_panels_ktp900f_firmware +9 more products- EPSS Score: %0.37
- Published: May. 12, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-25660
A vulnerability has been identified in SIMATIC HMI Comfort Outdoor Panels V15 7\" & 15\" (incl. SIPLUS variants) (All versions < V15.1 Update 6), SIMATIC HMI Comfort Outdoor Panels V16 7\" & 15\" (incl. SIPLUS variants) (All versions < V16 Update 4), SIMA... Read more
Affected Products : simatic_wincc_runtime_advanced simatic_hmi_comfort_outdoor_panels_7\"_firmware simatic_hmi_comfort_outdoor_panels_15\"_firmware simatic_hmi_comfort_panels_4\"_firmware simatic_hmi_comfort_panels_22\"_firmware simatic_hmi_ktp_mobile_panels_ktp400f_firmware simatic_hmi_ktp_mobile_panels_ktp700_firmware simatic_hmi_ktp_mobile_panels_ktp700f_firmware simatic_hmi_ktp_mobile_panels_ktp900_firmware simatic_hmi_ktp_mobile_panels_ktp900f_firmware +9 more products- EPSS Score: %0.46
- Published: May. 12, 2021
- Modified: Nov. 21, 2024
-
7.5
HIGHCVE-2021-25659
A vulnerability has been identified in Automation License Manager 5 (All versions), Automation License Manager 6 (All versions < V6.0 SP9 Update 2). Sending specially crafted packets to port 4410/tcp of an affected system could lead to extensive memory be... Read more
Affected Products : automation_license_manager- EPSS Score: %0.44
- Published: Aug. 10, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-25657
A privilege escalation vulnerability was discovered in Avaya IP Office Admin Lite and USB Creator that may potentially allow a local user to escalate privileges. This issue affects Admin Lite and USB Creator 11.1 Feature Pack 2 Service Pack 1 and earlier ... Read more
Affected Products : ip_office- EPSS Score: %0.06
- Published: Sep. 02, 2022
- Modified: Nov. 21, 2024
-
5.4
MEDIUMCVE-2021-25656
Stored XSS injection vulnerabilities were discovered in the Avaya Aura Experience Portal Web management which could allow an authenticated user to potentially disclose sensitive information. Affected versions include 7.0 through 7.2.3 (without hotfix) and... Read more
Affected Products : aura_experience_portal- EPSS Score: %0.15
- Published: Jun. 24, 2021
- Modified: Nov. 21, 2024
-
6.1
MEDIUMCVE-2021-25655
A vulnerability in the system Service Menu component of Avaya Aura Experience Portal may allow URL Redirection to any untrusted site through a crafted attack. Affected versions include 7.0 through 7.2.3 (without hotfix) and 8.0.0 (without hotfix).... Read more
Affected Products : aura_experience_portal- EPSS Score: %0.12
- Published: Jun. 24, 2021
- Modified: Nov. 21, 2024
-
7.8
HIGHCVE-2021-25654
An arbitrary code execution vulnerability was discovered in Avaya Aura Device Services that may potentially allow a local user to execute specially crafted scripts. Affects 7.0 through 8.1.4.0 versions of Avaya Aura Device Services.... Read more
Affected Products : aura_device_services- EPSS Score: %0.21
- Published: Jun. 25, 2021
- Modified: Nov. 21, 2024
-
8.0
HIGHCVE-2021-25653
A privilege escalation vulnerability was discovered in Avaya Aura Appliance Virtualization Platform Utilities (AVPU) that may potentially allow a local user to escalate privileges. Affects 8.0.0.0 through 8.1.3.1 versions of AVPU.... Read more
Affected Products : aura_appliance_virtualization_platform- EPSS Score: %0.10
- Published: Jun. 24, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-25652
An information disclosure vulnerability was discovered in the directory and file management of Avaya Aura Appliance Virtualization Platform Utilities (AVPU). This vulnerability may potentially allow any local user to access system functionality and config... Read more
Affected Products : aura_appliance_virtualization_platform- EPSS Score: %0.25
- Published: Jun. 24, 2021
- Modified: Nov. 21, 2024