Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Sinamics_sl150_firmware
(Siemens)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 11 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2021-06-28 | CVE-2021-31337 | The Telnet service of the SIMATIC HMI Comfort Panels system component in affected products does not require authentication, which may allow a remote attacker to gain access to the device if the service is enabled. Telnet is disabled by default on the SINAMICS Medium Voltage Products (SINAMICS SL150: All versions, SINAMICS SM150: All versions, SINAMICS SM150i: All versions). | Sinamics_sl150_firmware, Sinamics_sm150_firmware, Sinamics_sm150i_firmware | 9.8 | ||
| 2021-06-15 | CVE-2021-27388 | SINAMICS medium voltage routable products are affected by a vulnerability in the Sm@rtServer component for remote access that could allow an unauthenticated attacker to cause a denial-of-service condition, and/or execution of limited configuration modifications and/or execution of limited control commands on the SINAMICS Medium Voltage Products, Remote Access (SINAMICS SL150: All versions, SINAMICS SM150: All versions, SINAMICS SM150i: All versions). | Sinamics_sl150_firmware, Sinamics_sm150_firmware, Sinamics_sm150i_firmware | 9.8 |