cbcvebase.

Siemens Sm-2556 Firmware vulnerabilities

3 known vulnerabilities affecting siemens/sm-2556_firmware.

Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2017-12739P2CRITICALCVSS 9.8vdnpi00venos00+4 more2017-11-15
CVE-2017-12739 [CRITICAL] CWE-1188 CVE-2017-12739: An issue was discovered on Siemens SICAM RTUs SM-2556 COM Modules with the firmware variants ENOS00, An issue was discovered on Siemens SICAM RTUs SM-2556 COM Modules with the firmware variants ENOS00, ERAC00, ETA2, ETLS00, MODi00, and DNPi00. The integrated web server (port 80/tcp) of the affected devices could allow unauthenticated remote attackers to execute arbitrary code on the affected device.
nvd
CVE-2017-12737P4MEDIUMCVSS 5.3vdnpi00venos00+4 more2017-11-15
CVE-2017-12737 [MEDIUM] CWE-200 CVE-2017-12737: An issue was discovered on Siemens SICAM RTUs SM-2556 COM Modules with the firmware variants ENOS00, An issue was discovered on Siemens SICAM RTUs SM-2556 COM Modules with the firmware variants ENOS00, ERAC00, ETA2, ETLS00, MODi00, and DNPi00. The integrated web server (port 80/tcp) of the affected devices could allow unauthenticated remote attackers to obtain sensitive device information over the network.
nvd
CVE-2017-12738P4MEDIUMCVSS 6.1vdnpi00venos00+4 more2017-11-15
CVE-2017-12738 [MEDIUM] CWE-79 CVE-2017-12738: An issue was discovered on Siemens SICAM RTUs SM-2556 COM Modules with the firmware variants ENOS00, An issue was discovered on Siemens SICAM RTUs SM-2556 COM Modules with the firmware variants ENOS00, ERAC00, ETA2, ETLS00, MODi00, and DNPi00. The integrated web server (port 80/tcp) of the affected devices could allow Cross-Site Scripting (XSS) attacks if unsuspecting users are tricked into clicking on a malicious link.
nvd
Siemens Sm-2556 Firmware vulnerabilities | cvebase