Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-836527.pdf | Mitigation Patch Vendor Advisory |
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
Configuration 13 (hide)
AND |
|
Configuration 14 (hide)
AND |
|
Configuration 15 (hide)
AND |
|
Configuration 16 (hide)
AND |
|
Configuration 17 (hide)
AND |
|
Configuration 18 (hide)
AND |
|
Configuration 19 (hide)
AND |
|
Configuration 20 (hide)
AND |
|
Configuration 21 (hide)
AND |
|
Configuration 22 (hide)
AND |
|
Configuration 23 (hide)
AND |
|
Configuration 24 (hide)
AND |
|
19 Apr 2022, 18:10
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 4.3
v3 : 6.1 |
CPE | cpe:2.3:h:siemens:scalance_x307-2eec:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x306-1ldfe:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x308-2m:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x307-3ld:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x304-2fe:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x307-3_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_xr324-4m_poe_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x307-2eec_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x308-2m_ts:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x308-2m_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x320-1fe_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x308-2ld:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x308-2lh\+_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x307-3:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x408-2:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:siplus_net_scalance_x308-2:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x308-2lh\+:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x310_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x307-3ld_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x320-1-2ldfe:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_xr324-12m_ts:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x304-2fe_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x308-2:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x308-2ld_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_xr324-4m_poe_ts_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x310:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x408-2_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_xr324-12m:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_xr324-4m_poe_ts:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x308-2_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x308-2lh:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:siplus_net_scalance_x308-2_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x308-2m_poe_firmware:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x308-2lh_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_xr324-4m_eec_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x310fe:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x306-1ldfe_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x310fe_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x308-2m_poe:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_xr324-12m_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x302-7eec:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_xr324-12m_ts_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x302-7eec_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x320-1fe:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x308-2m_ts_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x320-1-2ldfe_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_xr324-4m_eec:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_xr324-4m_poe:-:*:*:*:*:*:*:* |
|
References | (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-836527.pdf - Mitigation, Patch, Vendor Advisory | |
First Time |
Siemens scalance X308-2lh\+ Firmware
Siemens Siemens scalance Xr324-12m Ts Firmware Siemens scalance X308-2m Poe Siemens scalance X307-3ld Firmware Siemens scalance X302-7eec Siemens siplus Net Scalance X308-2 Firmware Siemens scalance X308-2m Firmware Siemens scalance Xr324-12m Siemens scalance Xr324-4m Eec Firmware Siemens scalance X307-2eec Siemens scalance X308-2m Ts Siemens scalance X308-2lh\+ Siemens scalance X408-2 Siemens scalance X308-2ld Siemens scalance X304-2fe Siemens scalance Xr324-4m Poe Ts Siemens scalance X320-1fe Siemens scalance X308-2m Ts Firmware Siemens scalance X308-2m Poe Firmware Siemens scalance X308-2m Siemens scalance X308-2lh Firmware Siemens scalance X320-1-2ldfe Firmware Siemens scalance X320-1-2ldfe Siemens scalance X307-3 Siemens scalance X310fe Siemens scalance Xr324-4m Poe Ts Firmware Siemens scalance X308-2 Firmware Siemens scalance X308-2ld Firmware Siemens scalance X306-1ldfe Firmware Siemens scalance X310 Firmware Siemens scalance X307-3 Firmware Siemens scalance Xr324-12m Firmware Siemens scalance X308-2 Siemens scalance Xr324-12m Ts Siemens scalance Xr324-4m Poe Siemens scalance X408-2 Firmware Siemens scalance Xr324-4m Poe Firmware Siemens scalance X307-3ld Siemens scalance X310fe Firmware Siemens scalance X302-7eec Firmware Siemens scalance X306-1ldfe Siemens scalance X308-2lh Siemens scalance X310 Siemens scalance Xr324-4m Eec Siemens scalance X307-2eec Firmware Siemens scalance X320-1fe Firmware Siemens scalance X304-2fe Firmware Siemens siplus Net Scalance X308-2 |
|
CWE | CWE-79 |
12 Apr 2022, 10:15
Type | Values Removed | Values Added |
---|---|---|
Summary | A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE X302-7 EEC (24V, coated), SCALANCE X302-7 EEC (2x 230V), SCALANCE X302-7 EEC (2x 230V, coated), SCALANCE X302-7 EEC (2x 24V), SCALANCE X302-7 EEC (2x 24V, coated), SCALANCE X304-2FE, SCALANCE X306-1LD FE, SCALANCE X307-2 EEC (230V), SCALANCE X307-2 EEC (230V, coated), SCALANCE X307-2 EEC (24V), SCALANCE X307-2 EEC (24V, coated), SCALANCE X307-2 EEC (2x 230V), SCALANCE X307-2 EEC (2x 230V, coated), SCALANCE X307-2 EEC (2x 24V), SCALANCE X307-2 EEC (2x 24V, coated), SCALANCE X307-3, SCALANCE X307-3, SCALANCE X307-3LD, SCALANCE X307-3LD, SCALANCE X308-2, SCALANCE X308-2, SCALANCE X308-2LD, SCALANCE X308-2LD, SCALANCE X308-2LH, SCALANCE X308-2LH, SCALANCE X308-2LH+, SCALANCE X308-2LH+, SCALANCE X308-2M, SCALANCE X308-2M, SCALANCE X308-2M PoE, SCALANCE X308-2M PoE, SCALANCE X308-2M TS, SCALANCE X308-2M TS, SCALANCE X310, SCALANCE X310, SCALANCE X310FE, SCALANCE X310FE, SCALANCE X320-1 FE, SCALANCE X320-1-2LD FE, SCALANCE X408-2, SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M TS (24V), SCALANCE XR324-12M TS (24V), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M PoE (230V, ports on front), SCALANCE XR324-4M PoE (230V, ports on rear), SCALANCE XR324-4M PoE (24V, ports on front), SCALANCE XR324-4M PoE (24V, ports on rear), SCALANCE XR324-4M PoE TS (24V, ports on front), SIPLUS NET SCALANCE X308-2. The integrated web server could allow Cross-Site Scripting (XSS) attacks if unsuspecting users are tricked into accessing a malicious link. This can be used by an attacker to trigger a malicious request on the affected device. |
12 Apr 2022, 09:39
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Published : 2022-04-12 09:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-25756
Mitre link : CVE-2022-25756
CVE.ORG link : CVE-2022-25756
JSON object : View
siemens
- scalance_x408-2
- scalance_x308-2ld
- scalance_x308-2m_poe
- scalance_x306-1ldfe_firmware
- scalance_xr324-12m
- scalance_x320-1fe_firmware
- scalance_x307-2eec
- scalance_x308-2ld_firmware
- scalance_xr324-12m_ts
- scalance_xr324-12m_ts_firmware
- scalance_x308-2m
- scalance_x320-1-2ldfe_firmware
- scalance_x308-2
- scalance_x304-2fe_firmware
- scalance_x302-7eec
- scalance_xr324-12m_firmware
- scalance_x306-1ldfe
- scalance_x408-2_firmware
- scalance_x307-3ld
- siplus_net_scalance_x308-2
- scalance_x308-2lh_firmware
- scalance_xr324-4m_poe_ts
- scalance_x308-2m_poe_firmware
- scalance_x308-2m_ts_firmware
- scalance_xr324-4m_poe
- scalance_x307-3ld_firmware
- scalance_x308-2lh\+
- scalance_x307-3
- scalance_x310
- scalance_x320-1fe
- scalance_xr324-4m_poe_firmware
- scalance_x308-2lh
- scalance_x310fe
- scalance_x307-3_firmware
- scalance_x320-1-2ldfe
- scalance_x308-2lh\+_firmware
- scalance_x302-7eec_firmware
- scalance_x308-2m_ts
- scalance_x310_firmware
- scalance_x308-2_firmware
- scalance_x308-2m_firmware
- scalance_xr324-4m_eec_firmware
- siplus_net_scalance_x308-2_firmware
- scalance_x307-2eec_firmware
- scalance_x304-2fe
- scalance_x310fe_firmware
- scalance_xr324-4m_poe_ts_firmware
- scalance_xr324-4m_eec