Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Scalance_x200irt_firmware
(Siemens)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 4 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2018-06-14 | CVE-2018-4842 | A vulnerability has been identified in SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.4.1), SCALANCE X-200RNA switch family (All versions < V3.2.7), SCALANCE X-300 switch family (incl. X408 and SIPLUS NET variants) (All versions < V4.1.3). A remote, authenticated attacker with access to the configuration web server could be able to store script code on the web site, if the HRP redundancy option is set. This code could be executed in the web browser of victims... | Scalance_x200_firmware, Scalance_x200irt_firmware, Scalance_x300_firmware | 4.8 | ||
2018-06-14 | CVE-2018-4833 | A vulnerability has been identified in RFID 181EIP (All versions), RUGGEDCOM Win (V4.4, V4.5, V5.0, and V5.1), SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.3), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.4.1), SCALANCE X-200RNA switch family (All versions < V3.2.6), SCALANCE X-300 switch family (incl. SIPLUS NET variants) (All versions < V4.1.3), SCALANCE X408 (All versions < V4.1.3), SCALANCE X414 (All versions), SIMATIC... | Rfid_181\-Eip_firmware, Ruggedcom_wimax_firmware, Scalance_x200_firmware, Scalance_x200irt_firmware, Scalance_x204rna_firmware, Scalance_x300_firmware, Scalance_x408_firmware, Scalance_x414_firmware, Simatic_rf182c_firmware | 8.8 | ||
2013-05-24 | CVE-2013-3634 | A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (Versions < V5.0.0 for CVE-2013-3633 and versions < V4.5.0 for CVE-2013-3634), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.1.0). The implementation of SNMPv3 does not check the user credentials sufficiently. Therefore, an attacker is able to execute SNMP commands without correct credentials. | Scalance_x200\-4p_irt, Scalance_x200irt_firmware, Scalance_x201\-3p_irt, Scalance_x202\-2irt, Scalance_x202\-2p_irt, Scalance_x204irt, Scalance_xf204irt | N/A | ||
2013-05-24 | CVE-2013-3633 | A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (Versions < V5.0.0 for CVE-2013-3633 and versions < V4.5.0 for CVE-2013-3634), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.1.0). The user privileges for the web interface are only enforced on client side and not properly verified on server side. Therefore, an attacker is able to execute privileged commands using an unprivileged account. | Scalance_x200\-4p_irt, Scalance_x200irt_firmware, Scalance_x201\-3p_irt, Scalance_x202\-2irt, Scalance_x202\-2p_irt, Scalance_x204irt, Scalance_xf204irt | N/A |