Latest siemens comos Vulnerabilities

CVE-2023-46601
A vulnerability has been identified in COMOS (All versions). The affected application lacks proper access controls in making the SQLServer connection. This could allow an attacker to query the databas...
Siemens COMOS
CVE-2023-43505
A vulnerability has been identified in COMOS (All versions). The affected application lacks proper access controls in SMB shares. This could allow an attacker to access files that the user should not ...
Siemens COMOS
CVE-2023-43504
A vulnerability has been identified in COMOS (All versions < V10.4.4). Ptmcast executable used for testing cache validation service in affected application is vulnerable to Structured Exception Handle...
Siemens COMOS<10.4.4
CVE-2023-43503
A vulnerability has been identified in COMOS (All versions < V10.4.4). Caching system in the affected application leaks sensitive information such as user and project information in cleartext via UDP.
Siemens COMOS<10.4.4
CVE-2023-24482
A vulnerability has been identified in COMOS V10.2 (All versions), COMOS V10.3.3.1 (All versions < V10.3.3.1.45), COMOS V10.3.3.2 (All versions < V10.3.3.2.33), COMOS V10.3.3.3 (All versions < V10.3.3...
Siemens COMOS>=10.2<10.3.3.1.45
Siemens COMOS>=10.3.3.2<10.3.3.2.33
Siemens COMOS>=10.3.3.3<10.3.3.3.9
Siemens COMOS>=10.3.3.4<10.3.3.4.6
Siemens COMOS>=10.4.0.0<10.4.0.0.31
Siemens COMOS>=10.4.1.0<10.4.1.0.32
and 1 more
CVE-2021-37194
A vulnerability has been identified in COMOS V10.2 (All versions only if web components are used), COMOS V10.3 (All versions < V10.3.3.3 only if web components are used), COMOS V10.4 (All versions < V...
Siemens COMOS>=10.3<10.3.3.3
Siemens COMOS>=10.4<10.4.1
Siemens COMOS=10.2
CVE-2021-37198
A vulnerability has been identified in COMOS V10.2 (All versions only if web components are used), COMOS V10.3 (All versions < V10.3.3.3 only if web components are used), COMOS V10.4 (All versions < V...
Siemens COMOS<=10.2
Siemens COMOS>=10.3<10.3.3.3
Siemens COMOS=10.4
CVE-2021-37196
A vulnerability has been identified in COMOS V10.2 (All versions only if web components are used), COMOS V10.3 (All versions < V10.3.3.3 only if web components are used), COMOS V10.3 (All versions >= ...
Siemens COMOS<=10.2
Siemens COMOS>=10.3<10.3.3.3
Siemens COMOS=10.4
CVE-2021-37195
A vulnerability has been identified in COMOS V10.2 (All versions only if web components are used), COMOS V10.3 (All versions < V10.3.3.3 only if web components are used), COMOS V10.4 (All versions < V...
Siemens COMOS<=10.2
Siemens COMOS>=10.3<10.3.3.2.14
Siemens COMOS=4.1
CVE-2021-37197
A vulnerability has been identified in COMOS V10.2 (All versions only if web components are used), COMOS V10.3 (All versions < V10.3.3.3 only if web components are used), COMOS V10.4 (All versions < V...
Siemens COMOS<=10.2
Siemens COMOS>=10.3<10.3.3.3
Siemens COMOS=10.4
CVE-2021-45046
Apache Log4j2 Thread Context Message Pattern and Context Lookup Pattern vulnerable to a denial of service attack
debian/apache-log4j2
debian/apache-log4j2<=2.15.0-1<=2.15.0-1~deb10u1<=2.15.0-1~deb11u1
redhat/eap7-log4j<0:2.17.1-1.redhat_00001.1.el8ea
redhat/eap7-log4j<0:2.17.1-1.redhat_00001.1.el7ea
maven/org.apache.logging.log4j:log4j-core<2.12.2
maven/org.apache.logging.log4j:log4j-core>=2.13.0<2.16.0
and 110 more
CVE-2021-44228
Apache Log4j2 Remote Code Execution Vulnerability
debian/apache-log4j1.2
debian/apache-log4j2
debian/apache-log4j2<=2.13.3-1<=2.7-2<=2.11.1-2
Apple Xcode<13.3
Apache Log4j2
redhat/log4j<2.15.0
and 429 more
CVE-2021-32950
Siemens JT2Go DXF File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Siemens JT2Go
Opendesign Drawings Sdk<2022.4
Siemens COMOS<10.4.1
Siemens JT2Go<13.2.0.1
Siemens Teamcenter Visualization<13.2.0.1
CVE-2021-32952
Siemens JT2Go DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Siemens JT2Go
Opendesign Drawings Sdk<=2022.4
Siemens COMOS<10.4.1
Siemens JT2Go<13.2.0.2
Siemens Teamcenter Visualization<13.2.0.2
CVE-2021-32944
Siemens JT2Go DGN File Parsing Use-After-Free Remote Code Execution Vulnerability
Siemens JT2Go
Opendesign Drawings Sdk<2022.4
Siemens COMOS<10.4.1
Siemens JT2Go<13.2.0.1
Siemens Teamcenter Visualization<13.2.0.1
CVE-2021-32940
Siemens JT2Go DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Siemens JT2Go
Opendesign Drawings Sdk<2022.5
Siemens COMOS<10.4.1
Siemens JT2Go<13.2.0.1
Siemens Teamcenter Visualization<13.2.0.1
CVE-2021-32938
Siemens JT2Go DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability
Siemens JT2Go
Opendesign Drawings Sdk<2022.4
Siemens COMOS<10.4.1
Siemens JT2Go<13.2.0.1
Siemens Teamcenter Visualization<13.2.0.1
CVE-2021-32936
Siemens JT2Go DXF File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Siemens JT2Go
Opendesign Drawings Sdk<2022.4
Siemens COMOS<10.4.1
Siemens JT2Go<13.2.0.1
Siemens Teamcenter Visualization<13.2.0.1
CVE-2021-32946
Siemens JT2Go DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Siemens JT2Go
Opendesign Drawings Sdk<=2022.4
Siemens COMOS<10.4.1
Siemens JT2Go<13.2.0.2
Siemens Teamcenter Visualization<13.2.0.2
CVE-2021-31784
An out-of-bounds write vulnerability exists in the file-reading procedure in Open Design Alliance Drawings SDK before 2021.6 on all supported by ODA platforms in static configuration. This can allow a...
Opendesign Drawings Sdk<2021.6
Siemens COMOS<10.4.1
CVE-2021-25178
Siemens JT2Go DXF and DWG File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability
Siemens JT2Go
Opendesign Drawings Software Development Kit<2021.11
Siemens COMOS<10.4.1
Siemens JT2Go<13.1.0.1
Siemens Teamcenter Visualization<13.1.0.1
CVE-2021-25176
Siemens JT2Go DXF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability
Siemens JT2Go
Opendesign Drawings Software Development Kit<2021.11
Siemens COMOS<10.4.1
Siemens JT2Go<13.1.0.1
Siemens Teamcenter Visualization<13.1.0.1
CVE-2021-25177
Siemens JT2Go DXF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability
Siemens JT2Go
Opendesign Drawings Software Development Kit<2021.11
Siemens COMOS<10.4.1
Siemens JT2Go<13.1.0.1
Siemens Teamcenter Visualization<13.1.0.1
CVE-2021-25174
Siemens JT2Go DGN File Parsing Memory Corruption Remote Code Execution Vulnerability
Opendesign Drawings Software Development Kit<2021.12
Siemens COMOS<10.4.1
Siemens JT2Go<13.1.0.1
Siemens Teamcenter Visualization<13.1.0.1
Siemens JT2Go
CVE-2021-25173
Siemens JT2Go DGN File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability
Opendesign Drawings Software Development Kit<2021.12
Siemens COMOS<10.4.1
Siemens JT2Go<13.1.0.1
Siemens Teamcenter Visualization<13.1.0.1
Siemens JT2Go
CVE-2021-25175
Siemens JT2Go DXF File Parsing Untrusted Pointer Dereference Remote Code Execution Vulnerability
Siemens JT2Go
Opendesign Drawings Software Development Kit<2021.11
Siemens COMOS<10.4.1
Siemens JT2Go<13.1.0.1
Siemens Teamcenter Visualization<13.1.0.1

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203