CRITICAL🇬🇧 English

CVE-2020-25226

CVSS 9.8v3.1pub. 2021-01-12upd. 2024-11-21

A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.5), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.5.0). The web server of the affected devices contains a vulnerability that may lead to a buffer overflow condition. An attacker could cause this condition on the webserver by sending a specially crafted request. The webserver could stop and not recover anymore.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Siemens Scalance X200 4pirt

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X200 4pirt Firmware

    OS
    Siemens
    < 5.5.0
  • Siemens Scalance X201 3pirt

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X201 3pirt Firmware

    OS
    Siemens
    < 5.5.0
  • Siemens Scalance X202 2irt

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X202 2irt Firmware

    OS
    Siemens
    < 5.5.0
  • Siemens Scalance X202 2pirt

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X202 2pirt Firmware

    OS
    Siemens
    < 5.5.0
  • Siemens Scalance X202 2pirt Siplus Net

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X202 2pirt Siplus Net Firmware

    OS
    Siemens
    < 5.5.0
  • Siemens Scalance X204irt

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X204irt Firmware

    OS
    Siemens
    < 5.5.0
  • Siemens Scalance X307 3

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X307 3 Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Scalance X307 3ld

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X307 3ld Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Scalance X308 2

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X308 2 Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Scalance X308 2ld

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X308 2ld Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Scalance X308 2lh

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X308 2lh\+

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X308 2lh Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Scalance X308 2lh\+ Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Scalance X308 2m

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X308 2m Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Scalance X308 2m Ts

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X308 2m Ts Firmware

    OS
    Siemens
    wszystkie wersje
  • Siemens Scalance X310

    HW
    Siemens
    wszystkie wersje
  • Siemens Scalance X310fe

    HW
    Siemens
    wszystkie wersje
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Memory
CWE
Referencje

Powiązane podatności

CVE-2022-36323CRITICAL9.1ten sam produkt

Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker w...

CVE-2022-26649CRITICAL9.6ten sam produkt

A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < V5.5.2), SCALANCE X201-3P IRT (All...

CVE-2022-25752CRITICAL9.8ten sam produkt

A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANC...

CVE-2021-25668CRITICAL9.8ten sam produkt

A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT (All ...

CVE-2021-25669CRITICAL9.8ten sam produkt

A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT (All ...