Known Vulnerabilities for products from Softing
Listed below are 15 of the newest known vulnerabilities associated with the vendor "Softing".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-14028 | Not Provided | 2026-03-27 | 2026-03-27 | |
| CVE-2023-7339 | Not Provided | 2026-03-27 | 2026-03-27 | |
| CVE-2021-42577 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-03-11 | 2022-03-18 |
| CVE-2021-42262 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.5 - MEDIUM | 2022-03-11 | 2022-03-18 |
| CVE-2021-40873 | An issue was discovered in Softing Industrial Automation OPC UA C++ SDK before 5.66, and uaToolkit Embedded before 1.40. Remo... | 7.5 - HIGH | 2021-11-10 | 2021-11-16 |
| CVE-2021-40872 | An issue was discovered in Softing Industrial Automation uaToolkit Embedded before 1.40. Remote attackers to cause a denial o... | 7.5 - HIGH | 2021-11-10 | 2021-11-16 |
| CVE-2021-40871 | An issue was discovered in Softing Industrial Automation OPC UA C++ SDK before 5.66. Remote attackers to cause a denial of se... | 7.5 - HIGH | 2021-11-10 | 2021-11-16 |
| CVE-2021-32994 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-04-04 | 2022-04-13 |
| CVE-2021-29661 | Softing AG OPC Toolbox through 4.10.1.13035 allows /en/diag_values.html Stored XSS via the ITEMLISTVALUES##ITEMID parameter, ... | 5.4 - MEDIUM | 2021-04-02 | 2021-04-08 |
| CVE-2021-29660 | A Cross-Site Request Forgery (CSRF) vulnerability in en/cfg_setpwd.html in Softing AG OPC Toolbox through 4.10.1.13035 allows... | 8.8 - HIGH | 2021-04-02 | 2021-04-08 |
| CVE-2020-14524 | Softing Industrial Automation all versions prior to the latest build of version 4.47.0, The affected product is vulnerable to... | 9.8 - CRITICAL | 2020-08-25 | 2021-09-23 |
| CVE-2020-14522 | Softing Industrial Automation all versions prior to the latest build of version 4.47.0, The affected product is vulnerable to... | 7.5 - HIGH | 2020-08-25 | 2020-08-28 |
| CVE-2019-15051 | An issue was discovered in Softing uaGate (SI, MB, 840D) firmware through 1.71.00.1225. A CGI script is vulnerable to command... | 8.8 - HIGH | 2019-10-10 | 2020-08-24 |
| CVE-2019-11528 | An issue was discovered in Softing uaGate SI 1.60.01. A system default path for executables is user writable. | 7.5 - HIGH | 2019-10-10 | 2021-07-21 |
| CVE-2019-11527 | An issue was discovered in Softing uaGate SI 1.60.01. A CGI script is vulnerable to command injection with a maliciously craf... | 8.8 - HIGH | 2019-10-10 | 2019-10-15 |
| CVE-2019-11526 | An issue was discovered in Softing uaGate SI 1.60.01. A maintenance script, that is executable via sudo, is vulnerable to fil... | 9.8 - CRITICAL | 2019-10-10 | 2021-07-21 |
| CVE-2014-6616 | Cross-site scripting (XSS) vulnerability in Softing FG-100 PROFIBUS Single Channel (FG-100-PB) with firmware FG-x00-PB_V2.02.... | 4.3 - MEDIUM | 2015-08-31 | 2018-10-09 |
Known software with vulnerabilities from Softing
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Softing | Opc | 4.20.00 |
| Operating System | Softing | Uagate Si Firmware | 1.60.01 |