Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Siemens — Vulnerabilities & Security Advisories 1603

Browse all 1603 CVE security advisories affecting Siemens. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Siemens operates as a global industrial technology conglomerate, primarily manufacturing automation systems, power infrastructure, and medical imaging devices. Its extensive portfolio of programmable logic controllers and human-machine interfaces frequently exposes critical vulnerabilities, with recorded Common Vulnerabilities and Exposures numbering in the thousands. Historically, these systems have suffered from remote code execution flaws, buffer overflows, and insecure default configurations that allow unauthorized privilege escalation. Notable incidents include the Stuxnet worm, which exploited Siemens PLCs to disrupt Iranian nuclear centrifuges, highlighting the severe physical consequences of digital compromise in industrial control environments. The company has since strengthened its security posture through firmware updates and secure-by-design principles, yet legacy devices remain vulnerable due to long operational lifecycles and limited patching capabilities in isolated networks.

Top products by Siemens: JT2Go TeleControl Server Basic SINEC NMS SINEMA Remote Connect Server Simcenter Femap SPPA-T3000 MS3000 Migration Server RUGGEDCOM ROX MX5000 Tecnomatix Plant Simulation RUGGEDCOM RM1224 LTE(4G) EU Tecnomatix Plant Simulation V2201 Parasolid V33.1 Teamcenter Visualization V14.2 JT Utilities Solid Edge SE2023 SCALANCE LPE9403 PADS Standard/Plus Viewer Solid Edge SE2022 SPPA-T3000 Application Server RUGGEDCOM i800 SINEC Traffic Analyzer SIMATIC RTLS Locating Manager RUGGEDCOM CROSSBOW LOGO! 8 BM (incl. SIPLUS variants) SINEC INS SIMATIC CN 4100 Simcenter Femap V2020.2 Control Center Server (CCS) Solid Edge SE2020 SIMATIC Drive Controller CPU 1504D TF Solid Edge SE2024
CVE IDTitleCVSSSeverityPublished
CVE-2018-4842 Siemens SCALANCE X-200 IRT和SCALANCE X-300 跨站脚本漏洞 — SCALANCE X-200IRT switch family (incl. SIPLUS NET variants)CWE-79 4.8 -2018-06-14
CVE-2018-4848 Siemens SCALANCE X-200 IRT 跨站脚本漏洞 — SCALANCE X-200 switch family (incl. SIPLUS NET variants)CWE-80 9.1 -2018-06-14
CVE-2018-4832 Siemens多款产品输入验证错误漏洞 — OpenPCS 7 V7.1 and earlierCWE-20 6.5 -2018-04-24
CVE-2018-4843 Siemens SIMATIC CP 343-1 Advanced 输入验证错误漏洞 — SIMATIC S7-400 CPU 414-3 PN/DP V7CWE-20 6.5 Medium2018-03-20
CVE-2018-4839 多款Siemens产品加密问题漏洞 — DIGSI 4CWE-326 5.9 -2018-03-08
CVE-2018-4840 多款Siemens产品访问控制错误漏洞 — DIGSI 4CWE-306 7.5 -2018-03-08
CVE-2018-4834 Siemens Desigo PXC Series 代码问题漏洞 — Desigo PXC00-E.D V4.10CWE-306 9.8 Critical2018-01-24
CVE-2017-12736 多款Siemens产品安全漏洞 — RUGGEDCOM i800CWE-1188 8.8 High2017-12-26
CVE-2017-12741 多款Siemens产品资源管理错误漏洞 — Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet ControllerCWE-400 7.5 High2017-12-26
CVE-2017-12734 Siemens LOGO!8 BM 信息泄露漏洞 — LOGO! 8 BM (incl. SIPLUS variants)CWE-895 7.5 -2017-08-30
CVE-2017-12735 Siemens LOGO!8 BM 安全漏洞 — LOGO! 8 BM (incl. SIPLUS variants)CWE-300 7.4 -2017-08-30
CVE-2017-2681 多款Siemens产品资源管理错误漏洞 — Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet ControllerCWE-400 6.5 Medium2017-05-11
CVE-2017-2680 Siemens SIMATIC 资源管理错误漏洞 — Development/Evaluation Kits for PROFINET IO: DK Standard Ethernet ControllerCWE-400 6.5 Medium2017-05-11

This page lists every published CVE security advisory associated with Siemens. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.