threat
engine
.sh
Back
·
··:··
Home
/
Product
/
siemens simatic ipc677e firmware
Product
siemens simatic ipc677e firmware
18 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2021-42554
all versions
An issue was discovered in Insyde InsydeH2O with Kernel 5.0 before 05.08.42, Kernel 5.1 before 05.16.42, Kernel 5.2 before 05.26.4
8.2
HIGH
CVE-2021-42059
all versions
An issue was discovered in Insyde InsydeH2O Kernel 5.0 before 05.08.41, Kernel 5.1 before 05.16.41, Kernel 5.2 before 05.26.41, Ke
6.7
MEDIUM
CVE-2021-41838
all versions
An issue was discovered in SdHostDriver in the kernel 5.0 through 5.5 in Insyde InsydeH2O. There is an SMM callout that allows an
8.2
HIGH
CVE-2021-41837
all versions
An issue was discovered in AhciBusDxe in the kernel 5.0 through 5.5 in Insyde InsydeH2O. Because of an Untrusted Pointer Dereferen
8.2
HIGH
CVE-2021-33627
all versions
An issue was discovered in Insyde InsydeH2O Kernel 5.0 before 05.09.11, 5.1 before 05.17.11, 5.2 before 05.27.11, 5.3 before 05.36
8.2
HIGH
CVE-2021-33625
all versions
An issue was discovered in Kernel 5.x in Insyde InsydeH2O, affecting HddPassword. Software SMI services that use the Communicate()
7.5
HIGH
CVE-2020-5953
all versions
A vulnerability exists in System Management Interrupt (SWSMI) handler of InsydeH2O UEFI Firmware code located in SWSMI handler tha
7.5
HIGH
CVE-2021-33626
all versions
A vulnerability exists in SMM (System Management Mode) branch that registers a SWSMI handler that does not sufficiently check or v
7.8
HIGH
CVE-2020-27339
all versions
In the kernel in Insyde InsydeH2O 5.x, certain SMM drivers did not correctly validate the CommBuffer and CommBufferSize parameters
6.7
MEDIUM
CVE-2020-8704
< 25.02.10
Race condition in a subsystem in the Intel(R) LMS versions before 2039.1.0.0 may allow a privileged user to potentially enable esc
6.4
MEDIUM
CVE-2020-8703
< 25.02.10
Improper buffer restrictions in a subsystem in the Intel(R) CSME versions before 11.8.86, 11.12.86, 11.22.86, 12.0.81, 13.0.47, 13
6.7
MEDIUM
CVE-2020-8670
< 25.02.10
Race condition in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation of privil
6.4
MEDIUM
CVE-2020-24507
< 25.02.10
Improper initialization in a subsystem in the Intel(R) CSME versions before 11.8.86, 11.12.86, 11.22.86, 12.0.81, 13.0.47, 13.30.1
4.4
MEDIUM
CVE-2020-24506
< 25.02.10
Out of bound read in a subsystem in the Intel(R) CSME versions before 12.0.81, 13.0.47, 13.30.17, 14.1.53 and 14.5.32 may allow a
4.4
MEDIUM
CVE-2020-12357
all versions
Improper initialization in the firmware for some Intel(R) Processors may allow a privileged user to potentially enable escalation
6.7
MEDIUM
CVE-2020-8698
< 25.02.08
Improper isolation of shared resources in some Intel(R) Processors may allow an authenticated user to potentially enable informati
5.5
MEDIUM
CVE-2020-0590
< 25.02.08
Improper input validation in BIOS firmware for some Intel(R) Processors may allow an authenticated user to potentially enable esca
7.8
HIGH
CVE-2020-0543
< 25.02.06
Incomplete cleanup from specific special register read operations in some Intel(R) Processors may allow an authenticated user to p
5.5
MEDIUM
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin