threat
engine
.sh
Back
·
··:··
Home
/
Product
/
siemens simatic s7 1500 firmware
Product
siemens simatic s7 1500 firmware
13 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2020-8744
all versions
Improper initialization in subsystem for Intel(R) CSME versions before12.0.70, 13.0.40, 13.30.10, 14.0.45 and 14.5.25, Intel(R) TX
7.8
HIGH
CVE-2019-6575
<= 2.5
A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (in
7.5
HIGH
CVE-2019-6568
< 2.6.1
The webserver of the affected devices contains a vulnerability that may lead to a denial of service condition. An attacker may ca
7.5
HIGH
CVE-2018-16559
<= 1.8.5
A vulnerability has been identified in SIMATIC S7-1500 CPU (All versions >= V2.0 and < V2.5), SIMATIC S7-1500 CPU (All versions <=
7.5
HIGH
CVE-2018-16558
<= 1.8.5
A vulnerability has been identified in SIMATIC S7-1500 CPU (All versions >= V2.0 and < V2.5), SIMATIC S7-1500 CPU (All versions <=
7.5
HIGH
CVE-2018-13815
< 2.6
A vulnerability has been identified in SIMATIC S7-1200 (All versions), SIMATIC S7-1500 (All Versions < V2.6). An attacker could ex
7.5
HIGH
CVE-2018-13805
>= 2.0 and < 2.5
A vulnerability has been identified in SIMATIC ET 200SP Open Controller (All versions >= V2.0 and < V2.1.6), SIMATIC S7-1500 Softw
7.5
HIGH
CVE-2018-3639
< 2.6
Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all
5.5
MEDIUM
CVE-2018-4843
< 1.7.0
A vulnerability has been identified in SIMATIC S7-400 CPU 414-3 PN/DP V7 (All versions < V7.0.3), SIMATIC S7-400 CPU 414F-3 PN/D
6.5
MEDIUM
CVE-2017-12741
< 2.0
Specially crafted packets sent to port 161/udp could cause a denial of service condition. The affected devices must be restarted m
7.5
HIGH
CVE-2017-2681
< 2.1
Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of s
6.5
MEDIUM
CVE-2017-2680
< 2.1
Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Etherne
6.5
MEDIUM
CVE-2014-0160
all versions
The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packets, which
7.5
HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin