VRDA Feed by JPCERT/CC
  Vulnerability Response Decision Assistance Feed : 脆弱性脅威分析用情報の定型データ配信
[ about VRDA Feed | JPCERT/CC



 
分析対象脆弱性情報 (リビジョン番号 : 1) [ Download XML
JVNDB-2026-015487     ( CVE-2024-3596 | CVE-2026-27446 )
Siemens製品に対するアップデート(2026年5月)
https://jvndb.jvn.jp/ja/contents/2026/JVNDB-2026-015487.html

原文

新規:18件SSA-032379: Multiple Vulnerabilities in SIMATIC CN 4100 Before V5.0SSA-078743: Remote Code Execution Vulnerability in Ruggedcom Rox Before V2.17.1SSA-081142: Arbitrary Code Execution Vulnerability in Ruggedcom Rox Before 2.17.1SSA-085541: Missing Authentication in Critical Function in ActiveMQ Artemis (CVE-2026-27446) in Opcenter RDnLSSA-357982: Path Traversal Vulnerability in ROS# Before 2.2.2SSA-387223: Unauthenticated Control Panel Escape Vulnerability on SIMATIC HMI Unified Comfort before V21.0SSA-392349: Denial of Service Vulnerability in Industrial DevicesSSA-545643: Multiple Vulnerabilities in KACO Blueplanet InvertersSSA-577017: Multiple Vulnerabilities in Ruggedcom Rox Before 2.17.1SSA-688146: Multiple Cross-Site Scripting Vulnerabilities in SIMATIC S7 PLCs Web ServerSSA-783943: HTTP Request Smuggling Vulnerability in SENTRON 7KT PAC1261 Data Manager Before V2.1.0SSA-786884: Insufficient Randomness in Session Identifier Vulnerability in SIPROTEC 5SSA-827383: Multiple Vulnerabilities in TeamcenterSSA-870926: Datakit Vulnerability in Simcenter FemapSSA-876049: Prototype Pollution Vulnerability in Axios Library Affecting Siemens gWAP Before V3.1.1SSA-921111: Two File Parsing Vulnerabilities in Solid Edge Before version SE225 Update 5SSA-967325: Buffer Overflow Vulnerability in Palo Alto Networks PAN-OS on RUGGEDCOM APE1808 DevicesSSA-973901: Arbitrary File Disclosure Vulnerability in Ruggedcom Rox Before V2.17.1更新:11件SSA-001536: Authorization Bypass Vulnerability in Siemens Industrial Edge DevicesSSA-082556: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1.5SSA-216014: Vulnerabilities in EFI variable of SIMATIC IPCs, SIMATIC Tablet PCs, and SIMATIC Field PGsSSA-265688: Vulnerabilities in the additional GNU/Linux subsystem of the SIMATIC S7-1500 TM MFP V1.1SSA-280834: Improper OpenVPN Credential Validation Vulnerability in SCALANCE M-800 and SC-600 FamiliesSSB-295699: Configuration of Microsoft Defender Antivirus for SIMATIC PCS 7 and SIMATIC PCS neoSSA-452276: Eval Injection Vulnerability in SIMATIC S7-1500SSA-723487: RADIUS Protocol Susceptible to Forgery Attacks (CVE-2024-3596) - Impact to SCALANCE, RUGGEDCOM and Related ProductsSSA-827968: Vulnerability in Nozomi Guardian/CMC Before V26.2.0 on RUGGEDCOM APE1808 DevicesSSA-904646: Sensitive Data Exposure Vulnerability in SIPROTEC 5 DevicesSSA-975644: Multiple Vulnerabilities in Fortigate NGFW on RUGGEDCOM APE1808 Devices

翻訳   (表示)





この情報について
分析情報提供元:
JVN iPedia
初版公開日:
2026-05-14
分析対象脆弱性情報の分類:
アドバイザリ・注意喚起
最終更新日:
2026-05-14




脆弱性の影響を受ける製品の識別子
cpe:/o:siemens:multiple_product
 


脆弱性の分析内容
[攻撃元区分]  [?]
未評価 [?]

ローカル [?]
隣接 [?]
ネットワーク [?]
[攻撃条件の複雑さ]  [?]
未評価 [?]

 [?]
 [?]
 [?]
[攻撃前の認証要否]  [?]
未評価 [?]

複数 [?]
単一 [?]
不要 [?]
[機密性への影響]  [?]
未評価 [?]

影響なし [?]
部分的 [?]
全面的 [?]
[完全性への影響]  [?]
未評価 [?]

影響なし [?]
部分的 [?]
全面的 [?]
[可用性への影響]  [?]
未評価 [?]

影響なし [?]
部分的 [?]
全面的 [?]
関連情報
Common Vulnerabilities and Exposures (CVE) CVE-2024-3596




Common Vulnerabilities and Exposures (CVE) CVE-2026-27446








参考情報
JVN JVNVU#99296478




Copyright © 2026 JPCERT/CC All Rights Reserved.