Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Siemens — Vulnerabilities & Security Advisories 1603

Browse all 1603 CVE security advisories affecting Siemens. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Siemens operates as a global industrial technology conglomerate, primarily manufacturing automation systems, power infrastructure, and medical imaging devices. Its extensive portfolio of programmable logic controllers and human-machine interfaces frequently exposes critical vulnerabilities, with recorded Common Vulnerabilities and Exposures numbering in the thousands. Historically, these systems have suffered from remote code execution flaws, buffer overflows, and insecure default configurations that allow unauthorized privilege escalation. Notable incidents include the Stuxnet worm, which exploited Siemens PLCs to disrupt Iranian nuclear centrifuges, highlighting the severe physical consequences of digital compromise in industrial control environments. The company has since strengthened its security posture through firmware updates and secure-by-design principles, yet legacy devices remain vulnerable due to long operational lifecycles and limited patching capabilities in isolated networks.

Top products by Siemens: JT2Go TeleControl Server Basic SINEC NMS SINEMA Remote Connect Server Simcenter Femap SPPA-T3000 MS3000 Migration Server RUGGEDCOM ROX MX5000 Tecnomatix Plant Simulation RUGGEDCOM RM1224 LTE(4G) EU Tecnomatix Plant Simulation V2201 Parasolid V33.1 Teamcenter Visualization V14.2 JT Utilities Solid Edge SE2023 SCALANCE LPE9403 PADS Standard/Plus Viewer Solid Edge SE2022 SPPA-T3000 Application Server RUGGEDCOM i800 SINEC Traffic Analyzer SIMATIC RTLS Locating Manager RUGGEDCOM CROSSBOW LOGO! 8 BM (incl. SIPLUS variants) SINEC INS SIMATIC CN 4100 Simcenter Femap V2020.2 Control Center Server (CCS) Solid Edge SE2020 SIMATIC Drive Controller CPU 1504D TF Solid Edge SE2024
CVE IDTitleCVSSSeverityPublished
CVE-2022-26380 多款 Siemens 产品缓冲区错误漏洞 — SCALANCE X302-7 EEC (230V)CWE-125 7.5 -2022-04-12
CVE-2022-26335 多款 Siemens 产品安全漏洞 — SCALANCE X302-7 EEC (230V)CWE-120 7.5 -2022-04-12
CVE-2022-26334 Siemens SCALANCE安全漏洞 — SCALANCE X302-7 EEC (230V)CWE-120 7.5 -2022-04-12
CVE-2022-25756 多款 Siemens 产品跨站脚本漏洞 — SCALANCE X302-7 EEC (230V)CWE-80 7.5 -2022-04-12
CVE-2022-25755 Siemens SCALANCE 安全漏洞 — SCALANCE X302-7 EEC (230V)CWE-284 7.5 -2022-04-12
CVE-2022-25754 多款 Siemens 产品跨站请求伪造漏洞 — SCALANCE X302-7 EEC (230V)CWE-352 7.5 -2022-04-12
CVE-2022-25753 多款 Siemens 产品 缓冲区错误漏洞 — SCALANCE X302-7 EEC (230V)CWE-121 7.5 -2022-04-12
CVE-2022-25752 多款 Siemens 产品安全特征问题漏洞 — SCALANCE X302-7 EEC (230V)CWE-330 7.5 -2022-04-12
CVE-2022-25751 多款 Siemens 产品输入验证错误漏洞 — SCALANCE X302-7 EEC (230V)CWE-20 7.5 -2022-04-12
CVE-2022-25650 Siemens Mendix 安全漏洞 — Mendix Applications using Mendix 7CWE-284 6.5 -2022-04-12
CVE-2022-23450 Siemens SIMATIC 代码问题漏洞 — SIMATIC Energy Manager BasicCWE-502 9.8 -2022-04-12
CVE-2022-23449 Siemens SIMATIC 代码问题漏洞 — SIMATIC Energy Manager BasicCWE-427 7.3 -2022-04-12
CVE-2022-23448 Siemens SIMATIC安全漏洞 — SIMATIC Energy Manager BasicCWE-732 7.8 -2022-04-12
CVE-2021-42029 Siemens SIMATIC 安全漏洞 — SIMATIC STEP 7 (TIA Portal) V15CWE-284 9.8 -2022-04-12
CVE-2021-40368 Siemens SIMATIC S7-400 缓冲区错误漏洞 — SIMATIC S7-400 CPU 412-1 DP V7CWE-119 7.5 High2022-04-12
CVE-2022-25622 多款Siemens SIMATIC产品资源管理错误漏洞 — SIMATIC CFU DIQCWE-400 5.3 Medium2022-04-12
CVE-2022-26317 Siemens Mendix 安全特征问题特征问题漏洞 — Mendix Applications using Mendix 7CWE-284 7.5 -2022-03-08
CVE-2022-26314 Siemens Mendix 安全漏洞 — Mendix Forgot Password Appstore moduleCWE-307 9.8 -2022-03-08
CVE-2022-26313 Siemens Mendix 访问控制错误漏洞 — Mendix Forgot Password Appstore moduleCWE-284 9.8 -2022-03-08
CVE-2022-24661 Siemens Simcenter STAR-CCM+ 缓冲区错误漏洞 — Simcenter STAR-CCM+ ViewerCWE-119 7.8 -2022-03-08
CVE-2022-24408 Siemens SINUMERIK 安全漏洞 — SINUMERIK MCCWE-269 7.8 -2022-03-08
CVE-2022-24309 Siemens Mendix 安全漏洞 — Mendix Runtime V7CWE-284 6.8 Medium2022-03-08
CVE-2021-44478 Siemens Polarion Subversion Webclient 跨站脚本漏洞 — Polarion ALMCWE-79 6.1 -2022-03-08
CVE-2021-42020 Siemens RUGGEDCOM代码问题漏洞 — RUGGEDCOM i800CWE-754 7.5 High2022-03-08
CVE-2021-42019 Siemens RUGGEDCOM 输入验证错误漏洞 — RUGGEDCOM i800CWE-190 5.9 Medium2022-03-08
CVE-2021-42018 Siemens RUGGEDCOM 缓冲区错误漏洞 — RUGGEDCOM i800CWE-122 5.9 Medium2022-03-08
CVE-2021-42017 Siemens RUGGEDCOM 安全特征问题漏洞 — RUGGEDCOM i800CWE-358 5.9 Medium2022-03-08
CVE-2021-42016 Siemens RUGGEDCOM 安全漏洞 — RUGGEDCOM i800CWE-208 7.5 High2022-03-08
CVE-2021-41543 Siemens Climatix Pol909 日志信息泄露漏洞 — Climatix POL909 (AWB module)CWE-284 6.5 -2022-03-08
CVE-2021-41542 Climatix POL909 跨站脚本漏洞 — Climatix POL909 (AWB module)CWE-79 6.1 -2022-03-08

This page lists every published CVE security advisory associated with Siemens. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.