Siemens Simatic Step 7 V15 vulnerabilities

5 known vulnerabilities affecting siemens/simatic_step_7_v15.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH2MEDIUM3

Vulnerabilities

Page 1 of 1
CVE-2021-42029HIGHCVSS 7.8vAll versions2022-04-12
CVE-2021-42029 [HIGH] CWE-284 CVE-2021-42029: A vulnerability has been identified in SIMATIC STEP 7 (TIA Portal) V15 (All versions), SIMATIC STEP A vulnerability has been identified in SIMATIC STEP 7 (TIA Portal) V15 (All versions), SIMATIC STEP 7 (TIA Portal) V16 (All versions < V16 Update 5), SIMATIC STEP 7 (TIA Portal) V17 (All versions < V17 Update 2). An attacker could achieve privilege escalation on the web server of certain devices due to improper access control vulnerability in the engin
cvelistv5nvd
CVE-2020-7587HIGHCVSS 8.2vAll versions < V15.1 Update 52020-07-14
CVE-2020-7587 [HIGH] CWE-400 CVE-2020-7587: A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2), Opcenter E A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2), Opcenter Execution Foundation (All versions < V3.2), Opcenter Execution Process (All versions < V3.2), Opcenter Intelligence (All versions < V3.3), Opcenter Quality (All versions < V11.3), Opcenter RD&L (V8.0), SIMATIC IT LMS (All versions < V2.6), SIMATIC IT Produ
cvelistv5nvd
CVE-2020-7581MEDIUMCVSS 6.7vAll versions < V15.1 Update 52020-07-14
CVE-2020-7581 [MEDIUM] CWE-428 CVE-2020-7581: A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2), Opcenter E A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2), Opcenter Execution Foundation (All versions < V3.2), Opcenter Execution Process (All versions < V3.2), Opcenter Intelligence (All versions < V3.3), Opcenter Quality (All versions < V11.3), Opcenter RD&L (V8.0), SIMATIC Notifier Server for Windows (All versions),
cvelistv5nvd
CVE-2020-7588MEDIUMCVSS 5.3vAll versions < V15.1 Update 52020-07-14
CVE-2020-7588 [MEDIUM] CWE-20 CVE-2020-7588: A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2), Opcenter E A vulnerability has been identified in Opcenter Execution Discrete (All versions < V3.2), Opcenter Execution Foundation (All versions < V3.2), Opcenter Execution Process (All versions < V3.2), Opcenter Intelligence (All versions < V3.3), Opcenter Quality (All versions < V11.3), Opcenter RD&L (V8.0), SIMATIC IT LMS (All versions < V2.6), SIMATIC IT Prod
cvelistv5nvd
CVE-2020-7580MEDIUMCVSS 6.7vAll versions < V15.1 Update 52020-06-10
CVE-2020-7580 [MEDIUM] CWE-428 CVE-2020-7580: A vulnerability has been identified in SIMATIC Automation Tool (All versions < V4 SP2), SIMATIC NET A vulnerability has been identified in SIMATIC Automation Tool (All versions < V4 SP2), SIMATIC NET PC Software V14 (All versions < V14 SP1 Update 14), SIMATIC NET PC Software V15 (All versions), SIMATIC NET PC Software V16 (All versions < V16 Upd3), SIMATIC PCS neo (All versions < V3.0 SP1), SIMATIC ProSave (All versions < V17), SIMATIC S7-1500 Softwa
cvelistv5nvd