Vulnerabilidades em Siemens

1.636 resultados
Análise Vexday

O portfólio da Siemens acumula 1.633 CVEs catalogadas, volume expressivo que reflete a amplitude e a longevidade de seu ecossistema de produtos industriais e de automação. Nenhuma dessas vulnerabilidades consta atualmente no catálogo CISA KEV, taxa abaixo da média geral do catálogo, o que sugere menor pressão de exploração ativa no momento — embora 113 vulnerabilidades de severidade crítica e 31 surgidas nos últimos 90 dias indiquem um fluxo contínuo de exposição que requer monitoramento constante. O CVE mais relevante em termos de probabilidade de exploração é o CVE-2023-33919, com EPSS de 0,4772, valor que merece atenção em processos de priorização de correções. A falha mais frequente é do tipo CWE-125 (leitura fora dos limites de memória), padrão recorrente em componentes de software embarcado e de controle industrial que tende a viabilizar negação de serviço ou vazamento de informações sensíveis.

CVE-2024-41171CRITICALA vulnerability has been identified in SINUMERIK 828D V4 (All versions), SINUMERIK 828D V5 (All versions < V5.24), SINUMERIK 840D sl V4 (AllEPSS 0.1%CVE-2025-23403HIGHA vulnerability has been identified in SIMATIC IPC DiagBase (All versions), SIMATIC IPC DiagMonitor (All versions). The affected device do nEPSS 0.1%CVE-2025-40740HIGHA vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 5). The affected applications contain an out of boundEPSS 0.1%CVE-2025-40580MEDIUMA vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0 HF0). Affected devices are vulnerable to aEPSS 0.1%CVE-2024-37999HIGHA vulnerability has been identified in Medicalis Workflow Orchestrator (All versions). The affected application executes as a trusted accounEPSS 0.1%CVE-2025-40579MEDIUMA vulnerability has been identified in SCALANCE LPE9403 (6GK5998-3GS00-2AC2) (All versions < V4.0 HF0). Affected devices are vulnerable to aEPSS 0.1%CVE-2025-40739HIGHA vulnerability has been identified in Solid Edge SE2025 (All versions < V225.0 Update 5). The affected applications contain an out of boundEPSS 0.1%CVE-2025-40745MEDIUMA vulnerability has been identified in Siemens Software Center (All versions < V3.5.8.2), Simcenter 3D (All versions < V2506.6000), SimcenteEPSS 0.1%CVE-2026-23718HIGHA vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected applicEPSS 0.1%CVE-2025-40830HIGHA vulnerability has been identified in SINEC Security Monitor (All versions < V4.10.0). The affected application does not have proper authorEPSS 0.1%CVE-2024-47808HIGHA vulnerability has been identified in SINEC NMS (All versions < V3.0 SP1). The affected application contains a database function, that doesEPSS 0.1%CVE-2026-22923HIGHA vulnerability has been identified in NX (All versions < V2512), NX (Managed Mode) (All versions < V2512). The affected application containEPSS 0.1%CVE-2026-23717HIGHA vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected applicEPSS 0.1%CVE-2025-40768HIGHA vulnerability has been identified in SINEC Traffic Analyzer (6GK8822-1BG01-0BA0) (All versions < V3.0). The affected application exposes aEPSS 0.1%CVE-2026-23716HIGHA vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected applicEPSS 0.1%CVE-2026-23719HIGHA vulnerability has been identified in Simcenter Femap (All versions < V2512), Simcenter Nastran (All versions < V2512). The affected applicEPSS 0.1%CVE-2025-23365HIGHA vulnerability has been identified in TIA Administrator (All versions < V3.0.6). The affected application allows low-privileged users to trEPSS 0.1%CVE-2025-40812HIGHA vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Edge SE2025 (All versions < V225.0 Update EPSS 0.1%CVE-2025-40811HIGHA vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Edge SE2025 (All versions < V225.0 Update EPSS 0.1%CVE-2025-40809HIGHA vulnerability has been identified in Solid Edge SE2024 (All versions < V224.0 Update 14), Solid Edge SE2025 (All versions < V225.0 Update EPSS 0.1%