Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Siemens AG — Vulnerabilities & Security Advisories 135

Browse all 135 CVE security advisories affecting Siemens AG. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Siemens AG operates as a global conglomerate specializing in industrial automation, energy infrastructure, and healthcare technology. Its extensive portfolio of programmable logic controllers, human-machine interfaces, and medical imaging systems presents a broad attack surface, resulting in 135 recorded Common Vulnerabilities and Exposures. Historically, the most prevalent vulnerability classes affecting Siemens products include remote code execution, cross-site scripting, and privilege escalation flaws. These defects often stem from legacy protocols lacking robust authentication mechanisms or insecure default configurations in industrial control systems. Notable security incidents have highlighted risks associated with unpatched firmware and weak cryptographic implementations, particularly within SCADA environments. The company has responded by enhancing its product security lifecycle and issuing regular security advisories. However, the complexity of integrating these devices into critical infrastructure continues to pose significant challenges for defenders seeking to mitigate potential exploitation vectors effectively.

Top products by Siemens AG: SICAM MMU SINUMERIK 808D V4.7, SINUMERIK 808D V4.8, SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.7, SINUMERIK 840D sl V4.8 SICLOCK TC100, SICLOCK TC400 SCALANCE M875 SIMATIC PCS 7 V8.0 and earlier SINEMA Remote Connect Server EN100 Ethernet module DNP3 variant SIMATIC HMI Comfort Panels 4" - 22" TeleControl Server Basic Siveillance VMS 2017 R2 SIMATIC HMI Comfort Panels 4" - 22", SIMATIC HMI Comfort Outdoor Panels 7" & 15", SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 und KTP900F, SIMATIC WinCC Runtime Advanced, SIMATIC WinCC Runtime Professional, SIMATIC WinCC (TIA Portal), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel) SIMATIC RTLS Locating Manager XHQ Polarion SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.7, SINUMERIK 840D sl V4.8 ROX II SCALANCE SC-600 SIEMENS LOGO!8 SINAMICS PERFECT HARMONY GH180 with NXG I control, MLFBs: 6SR2...-, 6SR3...-, 6SR4...- All other SIPROTEC 5 device types with CPU variants CP300 and CP100 and the respective Ethernet communication modules Firmware variant IEC 61850 for EN100 Ethernet module SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V10, V11, V12, SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V13, SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V14, SIMATIC STEP 7 (TIA Portal) and WinCC (TIA Portal) V15 TIM 1531 IRC Automation License Manager 5 SIMATIC S7-300 CPU family Polarion Subversion Webclient Spectrum Power 4 SIMATIC S7-1200 CPU family (incl. SIPLUS variants) SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) SIMATIC IT UADM
CVE IDTitleCVSSSeverityPublished
CVE-2019-6580 Siemens Siveillance VMS 授权问题漏洞 — Siveillance VMS 2017 R2CWE-862 9.8 -2019-06-12
CVE-2019-6581 Siemens Siveillance VMS 权限许可和访问控制问题漏洞 — Siveillance VMS 2017 R2CWE-285 9.8 -2019-06-12
CVE-2019-6582 Siemens Siveillance VMS 权限许可和访问控制问题漏洞 — Siveillance VMS 2017 R2CWE-285 8.2 -2019-06-12
CVE-2019-6584 Siemens LOGO!8 代码问题漏洞 — SIEMENS LOGO!8CWE-384 8.8 -2019-06-12
CVE-2019-6571 Siemens LOGO!8 缓冲区错误漏洞 — SIEMENS LOGO!8CWE-119 7.5 -2019-06-12
CVE-2019-10916 多款Siemens产品SQL注入漏洞 — SIMATIC PCS 7 V8.0 and earlierCWE-89 8.8 -2019-05-14
CVE-2019-10917 Siemens SIMATIC PCS 7和SIMATIC WinCC 输入验证错误漏洞 — SIMATIC PCS 7 V8.0 and earlierCWE-248 8.8 -2019-05-14
CVE-2019-10918 西门子 SIMATIC WinCC 安全漏洞 — SIMATIC PCS 7 V8.0 and earlierCWE-749 8.8 -2019-05-14
CVE-2019-10922 Siemens SIMATIC WinCC和SIMATIC PCS 7 访问控制错误漏洞 — SIMATIC PCS 7 V8.0 and earlierCWE-306 9.8 -2019-05-14
CVE-2019-6572 多款Siemens产品信任管理问题漏洞 — SIMATIC HMI Comfort Panels 4" - 22"CWE-200 7.5 -2019-05-14
CVE-2019-6574 多款Siemens产品访问控制错误漏洞 — SINAMICS PERFECT HARMONY GH180 with NXG I control, MLFBs: 6SR2...-, 6SR3...-, 6SR4...-CWE-200 7.5 -2019-05-14
CVE-2019-6576 多款Siemens产品加密问题漏洞 — SIMATIC HMI Comfort Panels 4" - 22"CWE-310 7.5 -2019-05-14
CVE-2019-6577 多款Siemens产品跨站脚本漏洞 — SIMATIC HMI Comfort Panels 4" - 22"CWE-80 7.5 -2019-05-14
CVE-2019-6578 多款Siemens产品资源管理错误漏洞 — SINAMICS PERFECT HARMONY GH180 with NXG I control, MLFBs: 6SR2...-, 6SR3...-, 6SR4...-CWE-400 7.5 -2019-05-14
CVE-2019-6579 Siemens Spectrum Power 权限许可和访问控制问题漏洞 — Spectrum Power™ 4CWE-77 9.8 -2019-04-17
CVE-2018-13798 Siemens SICAM A8000 Series 安全漏洞 — SICAM A8000 CP-8000, SICAM A8000 CP-802X, SICAM A8000 CP-8050 7.5 -2019-03-21
CVE-2018-13804 Siemens SIMATIC IT LMS、SIMATIC IT Production Suite和SIMATIC IT UA Discrete Manufacturing 授权问题漏洞 — SIMATIC IT LMS, SIMATIC IT Production Suite, SIMATIC IT UA Discrete Manufacturing, SIMATIC IT UA Discrete Manufacturing, SIMATIC IT UA Discrete Manufacturing, SIMATIC IT UA Discrete Manufacturing, SIMATIC IT UA Discrete ManufacturingCWE-287 8.1 -2018-12-13
CVE-2018-13811 Siemens SIMATIC STEP 7 安全漏洞 — SIMATIC STEP 7 (TIA Portal)CWE-916 5.5 -2018-12-13
CVE-2018-13812 多款Siemens产品路径遍历漏洞 — SIMATIC HMI Comfort Panels 4" - 22", SIMATIC HMI Comfort Outdoor Panels 7" & 15", SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 und KTP900F, SIMATIC WinCC Runtime Advanced, SIMATIC WinCC Runtime Professional, SIMATIC WinCC (TIA Portal), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel)CWE-22 9.1 -2018-12-13
CVE-2018-13813 多款Siemens产品安全漏洞 — SIMATIC HMI Comfort Panels 4" - 22", SIMATIC HMI Comfort Outdoor Panels 7" & 15", SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 und KTP900F, SIMATIC WinCC Runtime Advanced, SIMATIC WinCC Runtime Professional, SIMATIC WinCC (TIA Portal), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel)CWE-601 9.1 -2018-12-13
CVE-2018-13814 Siemens SIMATIC Panels和SIMATIC WinCC 代码注入漏洞 — SIMATIC HMI Comfort Panels 4" - 22", SIMATIC HMI Comfort Outdoor Panels 7" & 15", SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900 und KTP900F, SIMATIC WinCC Runtime Advanced, SIMATIC WinCC Runtime Professional, SIMATIC WinCC (TIA Portal), SIMATIC HMI Classic Devices (TP/MP/OP/MP Mobile Panel)CWE-113 9.1 -2018-12-13
CVE-2018-13815 Siemens SIMATIC S7-1200和SIMATIC S7-1500 安全漏洞 — SIMATIC S7-1200, SIMATIC S7-1500CWE-410 7.5 -2018-12-13
CVE-2018-16555 多款Siemens产品跨站脚本漏洞 — SCALANCE S602, SCALANCE S612, SCALANCE S623, SCALANCE S627-2MCWE-80 5.4 -2018-12-13
CVE-2018-11457 多款Siemens产品缓冲区错误漏洞 — SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.7, SINUMERIK 840D sl V4.8CWE-122 8.1 -2018-12-12
CVE-2018-11458 多款Siemens产品数字错误漏洞 — SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.7, SINUMERIK 840D sl V4.8CWE-190 8.1 -2018-12-12
CVE-2018-11459 多款Siemens产品安全漏洞 — SINUMERIK 808D V4.7, SINUMERIK 808D V4.8, SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.7, SINUMERIK 840D sl V4.8CWE-693 7.8 -2018-12-12
CVE-2018-11460 多款Siemens产品安全漏洞 — SINUMERIK 808D V4.7, SINUMERIK 808D V4.8, SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.7, SINUMERIK 840D sl V4.8CWE-693 7.8 -2018-12-12
CVE-2018-11461 多款Siemens产品权限许可和访问控制漏洞 — SINUMERIK 808D V4.7, SINUMERIK 808D V4.8, SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.7, SINUMERIK 840D sl V4.8CWE-264 7.8 -2018-12-12
CVE-2018-11462 多款Siemens产品权限许可和访问控制漏洞 — SINUMERIK 808D V4.7, SINUMERIK 808D V4.8, SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.7, SINUMERIK 840D sl V4.8CWE-264 7.8 -2018-12-12
CVE-2018-11463 多款Siemens产品缓冲区错误漏洞 — SINUMERIK 808D V4.7, SINUMERIK 808D V4.8, SINUMERIK 828D V4.7, SINUMERIK 840D sl V4.7, SINUMERIK 840D sl V4.8CWE-121 7.8 -2018-12-12

This page lists every published CVE security advisory associated with Siemens AG. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.