Link | Resource |
---|---|
https://cert-portal.siemens.com/productcert/pdf/ssa-310038.pdf | Patch Vendor Advisory |
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
Configuration 7 (hide)
AND |
|
Configuration 8 (hide)
AND |
|
Configuration 9 (hide)
AND |
|
Configuration 10 (hide)
AND |
|
Configuration 11 (hide)
AND |
|
Configuration 12 (hide)
AND |
|
Configuration 13 (hide)
AND |
|
Configuration 14 (hide)
AND |
|
Configuration 15 (hide)
AND |
|
Configuration 16 (hide)
AND |
|
Configuration 17 (hide)
AND |
|
Configuration 18 (hide)
AND |
|
Configuration 19 (hide)
AND |
|
Configuration 20 (hide)
AND |
|
Configuration 21 (hide)
AND |
|
Configuration 22 (hide)
AND |
|
Configuration 23 (hide)
AND |
|
Configuration 24 (hide)
AND |
|
Configuration 25 (hide)
AND |
|
Configuration 26 (hide)
AND |
|
Configuration 27 (hide)
AND |
|
Configuration 28 (hide)
AND |
|
Configuration 29 (hide)
AND |
|
11 Apr 2023, 10:15
Type | Values Removed | Values Added |
---|---|---|
Summary | A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < V5.5.2), SCALANCE X201-3P IRT (All versions < V5.5.2), SCALANCE X201-3P IRT PRO (All versions < V5.5.2), SCALANCE X202-2IRT (All versions < V5.5.2), SCALANCE X202-2IRT (All versions < V5.5.2), SCALANCE X202-2P IRT (All versions < V5.5.2), SCALANCE X202-2P IRT PRO (All versions < V5.5.2), SCALANCE X204-2 (All versions < V5.2.6), SCALANCE X204-2FM (All versions < V5.2.6), SCALANCE X204-2LD (All versions < V5.2.6), SCALANCE X204-2LD TS (All versions < V5.2.6), SCALANCE X204-2TS (All versions < V5.2.6), SCALANCE X204IRT (All versions < V5.5.2), SCALANCE X204IRT (All versions < V5.5.2), SCALANCE X204IRT PRO (All versions < V5.5.2), SCALANCE X206-1 (All versions < V5.2.6), SCALANCE X206-1LD (All versions < V5.2.6), SCALANCE X208 (All versions < V5.2.6), SCALANCE X208PRO (All versions < V5.2.6), SCALANCE X212-2 (All versions < V5.2.6), SCALANCE X212-2LD (All versions < V5.2.6), SCALANCE X216 (All versions < V5.2.6), SCALANCE X224 (All versions < V5.2.6), SCALANCE XF201-3P IRT (All versions < V5.5.2), SCALANCE XF202-2P IRT (All versions < V5.5.2), SCALANCE XF204 (All versions < V5.2.6), SCALANCE XF204-2 (All versions < V5.2.6), SCALANCE XF204-2BA IRT (All versions < V5.5.2), SCALANCE XF204IRT (All versions < V5.5.2), SCALANCE XF206-1 (All versions < V5.2.6), SCALANCE XF208 (All versions < V5.2.6). The webserver of affected devices calculates session ids and nonces in an insecure manner. This could allow an unauthenticated remote attacker to brute-force session ids and hijack existing sessions. | |
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 8.8 |
15 Jul 2022, 17:24
Type | Values Removed | Values Added |
---|---|---|
References | (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-310038.pdf - Patch, Vendor Advisory | |
First Time |
Siemens scalance X204-2ld Ts Firmware
Siemens scalance X212-2 Siemens scalance X208 Siemens scalance Xf204irt Siemens scalance X201-3p Irt Siemens scalance X216 Siemens scalance X204-2ld Ts Siemens scalance X201-3p Irt Pro Siemens scalance X204irt Siemens scalance X212-2ld Firmware Siemens scalance X208 Pro Siemens scalance Xf202-2p Irt Siemens scalance Xf201-3p Irt Firmware Siemens scalance X204-2ts Siemens scalance X202-2irt Firmware Siemens scalance Xf204-2 Firmware Siemens scalance X202-2irt Siemens scalance Xf204-2ba Irt Siemens scalance Xf204irt Firmware Siemens scalance Xf204-2ba Irt Firmware Siemens scalance X212-2 Firmware Siemens scalance X204-2ld Siemens scalance Xf204-2 Siemens scalance X202-2p Irt Firmware Siemens scalance X206-1 Firmware Siemens scalance X204irt Pro Siemens scalance X200-4p Irt Siemens scalance X204irt Firmware Siemens scalance Xf208 Firmware Siemens scalance Xf202-2p Irt Firmware Siemens scalance X224 Siemens scalance Xf204 Siemens scalance X202-2p Irt Siemens scalance X204-2ld Firmware Siemens scalance X208 Firmware Siemens scalance X201-3p Irt Firmware Siemens scalance X206-1ld Siemens Siemens scalance X206-1 Siemens scalance X204-2ts Firmware Siemens scalance X206-1ld Firmware Siemens scalance X204-2fm Siemens scalance Xf208 Siemens scalance X212-2ld Siemens scalance Xf204 Firmware Siemens scalance X204irt Pro Firmware Siemens scalance X200-4p Irt Firmware Siemens scalance Xf201-3p Irt Siemens scalance X204-2fm Firmware Siemens scalance X204-2 Firmware Siemens scalance X208 Pro Firmware Siemens scalance Xf206-1 Firmware Siemens scalance X204-2 Siemens scalance X202-2p Irt Pro Siemens scalance X202-2p Irt Pro Firmware Siemens scalance X216 Firmware Siemens scalance Xf206-1 Siemens scalance X201-3p Irt Pro Firmware Siemens scalance X224 Firmware |
|
CVSS |
v2 : v3 : |
v2 : 7.5
v3 : 9.8 |
CWE | CWE-330 | |
CPE | cpe:2.3:h:siemens:scalance_xf206-1:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x202-2irt_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x208:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_xf202-2p_irt_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x201-3p_irt_pro:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_xf201-3p_irt:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x200-4p_irt:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x212-2_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x204-2fm_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x206-1ld_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_xf204-2ba_irt:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x212-2:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x204irt_pro:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x201-3p_irt_pro_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_xf208_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_xf204irt:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x212-2ld:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_xf201-3p_irt_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x204-2ts:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x204-2:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x204-2ld_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x204-2ld_ts_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x224_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x212-2ld_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x216_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_xf208:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x200-4p_irt_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x206-1ld:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_xf202-2p_irt:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x216:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x208_pro:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x206-1_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x202-2p_irt_pro:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x204irt_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x204-2ld:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x201-3p_irt_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x204irt_pro_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_xf204-2:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x202-2p_irt_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x206-1:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_xf206-1_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x204-2ld_ts:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x202-2p_irt_pro_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x204irt:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x201-3p_irt:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_xf204_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_xf204-2ba_irt_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x204-2_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x224:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_xf204-2_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x202-2irt:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_xf204:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x204-2fm:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_xf204irt_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:scalance_x202-2p_irt:-:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x204-2ts_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x208_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:scalance_x208_pro_firmware:*:*:*:*:*:*:*:* |
12 Jul 2022, 10:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Published : 2022-07-12 10:15
Updated : 2023-12-10 14:35
NVD link : CVE-2022-26647
Mitre link : CVE-2022-26647
CVE.ORG link : CVE-2022-26647
JSON object : View
siemens
- scalance_x208_pro
- scalance_x202-2p_irt_firmware
- scalance_xf206-1
- scalance_x204irt_pro_firmware
- scalance_x204-2ts
- scalance_x206-1
- scalance_x216
- scalance_x204-2ld_ts
- scalance_xf204-2_firmware
- scalance_x202-2p_irt_pro_firmware
- scalance_x204irt
- scalance_x206-1ld_firmware
- scalance_x204-2
- scalance_x206-1_firmware
- scalance_xf204-2ba_irt
- scalance_xf208
- scalance_xf204-2ba_irt_firmware
- scalance_xf202-2p_irt
- scalance_x204irt_firmware
- scalance_x204-2ld
- scalance_x201-3p_irt_pro_firmware
- scalance_x204-2fm
- scalance_xf208_firmware
- scalance_xf204-2
- scalance_x224_firmware
- scalance_x204-2ld_ts_firmware
- scalance_x201-3p_irt_pro
- scalance_x202-2p_irt
- scalance_x212-2_firmware
- scalance_xf206-1_firmware
- scalance_x204-2fm_firmware
- scalance_x200-4p_irt_firmware
- scalance_x201-3p_irt_firmware
- scalance_x204irt_pro
- scalance_xf204irt_firmware
- scalance_x204-2ld_firmware
- scalance_x204-2_firmware
- scalance_x202-2irt
- scalance_x212-2
- scalance_xf204irt
- scalance_xf204
- scalance_xf204_firmware
- scalance_xf201-3p_irt_firmware
- scalance_x208
- scalance_x201-3p_irt
- scalance_x200-4p_irt
- scalance_x212-2ld
- scalance_x208_firmware
- scalance_x216_firmware
- scalance_x206-1ld
- scalance_x202-2irt_firmware
- scalance_x212-2ld_firmware
- scalance_xf201-3p_irt
- scalance_xf202-2p_irt_firmware
- scalance_x208_pro_firmware
- scalance_x224
- scalance_x202-2p_irt_pro
- scalance_x204-2ts_firmware
Use of Insufficiently Random Values