threat
engine
.sh
Back
·
··:··
Home
/
Product
/
siemens sinema server
Product
siemens sinema server
17 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2023-35796
all versions
A vulnerability has been identified in SINEMA Server V14 (All versions). The affected application improperly sanitizes certain SNM
8.3
HIGH
CVE-2022-25311
all versions
A vulnerability has been identified in SINEC NMS (All versions >= V1.0.3 < V2.0), SINEC NMS (All versions < V1.0.3), SINEMA Server
7.3
HIGH
CVE-2021-40438
all versions
A crafted request uri-path can cause mod_proxy to forward the request to an origin server choosen by the remote user. This issue a
9.0
CRITICAL
CVE-2021-39275
all versions
ap_escape_quotes() may write beyond the end of a buffer when given malicious input. No included modules pass untrusted data to the
9.8
CRITICAL
CVE-2021-34798
all versions
Malformed requests may cause the server to dereference a NULL pointer. This issue affects Apache HTTP Server 2.4.48 and earlier.
7.5
HIGH
CVE-2019-10941
< 14.0
A vulnerability has been identified in SINEMA Server (All versions < V14 SP3). Missing authentication for functionality that requi
5.3
MEDIUM
CVE-2021-3449
all versions
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renego
5.9
MEDIUM
CVE-2020-25237
< 14.0
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP1 Update 1), SINEMA Server (All versions < V14.0 SP2 Updat
8.1
HIGH
CVE-2020-7580
all versions
A vulnerability has been identified in SIMATIC Automation Tool (All versions < V4 SP2), SIMATIC NET PC Software V14 (All versions
6.7
MEDIUM
CVE-2019-10940
< 14.0
A vulnerability has been identified in SINEMA Server (All versions < V14.0 SP2 Update 1). Incorrect session validation could allow
9.9
CRITICAL
CVE-2019-6575
all versions
A vulnerability has been identified in SIMATIC CP 443-1 OPC UA (All versions), SIMATIC ET 200SP Open Controller CPU 1515SP PC2 (in
7.5
HIGH
CVE-2017-6865
all versions
A vulnerability has been identified in Primary Setup Tool (PST) (All versions < V4.2 HF1), SIMATIC Automation Tool (All versions <
6.5
MEDIUM
CVE-2016-7165
<= 13.0
A vulnerability has been identified in Primary Setup Tool (PST) (All versions < V4.2 HF1), SIMATIC IT Production Suite (All versio
6.4
MEDIUM
CVE-2016-6486
all versions
Siemens SINEMA Server uses weak permissions for the application folder, which allows local users to gain privileges via unspecifie
7.8
HIGH
CVE-2014-2733
<= 12.0
Siemens SINEMA Server before 12 SP1 allows remote attackers to cause a denial of service (web-interface outage) via crafted HTTP r
CVE-2014-2732
<= 12.0
Multiple directory traversal vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote atta
CVE-2014-2731
<= 12.0
Multiple unspecified vulnerabilities in the integrated web server in Siemens SINEMA Server before 12 SP1 allow remote attackers to
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin