Desigo Consumption Control Info Center Siemens Desigo Consumption Control Info Center

Do you want an email whenever new security vulnerabilities are reported in Siemens Desigo Consumption Control Info Center?

By the Year

In 2024 there have been 0 vulnerabilities in Siemens Desigo Consumption Control Info Center . Desigo Consumption Control Info Center did not have any published security vulnerabilities last year.

Year Vulnerabilities Average Score
2024 0 0.00
2023 0 0.00
2022 0 0.00
2021 1 9.00
2020 0 0.00
2019 0 0.00
2018 0 0.00

It may take a day or so for new Desigo Consumption Control Info Center vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Siemens Desigo Consumption Control Info Center Security Vulnerabilities

It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations

CVE-2021-45046 9 - Critical - December 14, 2021

It was found that the fix to address CVE-2021-44228 in Apache Log4j 2.15.0 was incomplete in certain non-default configurations. This could allows attackers with control over Thread Context Map (MDC) input data when the logging configuration uses a non-default Pattern Layout with either a Context Lookup (for example, $${ctx:loginId}) or a Thread Context Map pattern (%X, %mdc, or %MDC) to craft malicious input data using a JNDI Lookup pattern resulting in an information leak and remote code execution in some environments and local code execution in all environments. Log4j 2.16.0 (Java 8) and 2.12.2 (Java 7) fix this issue by removing support for message lookup patterns and disabling JNDI functionality by default.

EL Injection

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Siemens Tracealertserverplus or by Siemens? Click the Watch button to subscribe.

Siemens
Vendor

subscribe