This page lists publicly disclosed CVE vulnerabilities affecting siemens simatic_s7_cpu_1217c (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2014-2909 | CRLF injection vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote attackers to inject arbitrary HTTP headers via unspecified vectors. | [email protected] | 5.8 | 2.42% | 2014-04-25 | 2026-06-16 |
| CVE-2014-2908 | Cross-site scripting (XSS) vulnerability in the integrated web server on Siemens SIMATIC S7-1200 CPU devices 2.x and 3.x allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. | [email protected] | 4.3 | 20.95% | 2014-04-25 | 2026-06-16 |
| CVE-2014-2258 | Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTPS packets, a different vulnerability than CVE-2014-2259. | [email protected] | 7.8 | 4.60% | 2014-03-24 | 2026-06-16 |
| CVE-2014-2256 | Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted ISO-TSAP packets, a different vulnerability than CVE-2014-2257. | [email protected] | 7.8 | 3.58% | 2014-03-24 | 2026-06-16 |
| CVE-2014-2254 | Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted HTTP packets, a different vulnerability than CVE-2014-2255. | [email protected] | 7.8 | 4.60% | 2014-03-24 | 2026-06-16 |
| CVE-2014-2252 | Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 allow remote attackers to cause a denial of service (defect-mode transition) via crafted PROFINET packets, a different vulnerability than CVE-2014-2253. | [email protected] | 6.1 | 1.24% | 2014-03-24 | 2026-06-16 |
| CVE-2014-2250 | The random-number generator on Siemens SIMATIC S7-1200 CPU PLC devices with firmware before 4.0 does not have sufficient entropy, which makes it easier for remote attackers to defeat cryptographic protection mechanisms and hijack sessions via unspecified vectors, a different vulnerability than CVE-2014-2251. | [email protected] | 8.3 | 3.13% | 2014-03-24 | 2026-06-16 |