Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

siemens scalance w700 series firmware vulnerabilities and exploits

(subscribe to this query)
6.5
CVSSv3

CVE-2020-26143

An issue exists in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. The WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configura...
Alfa Awus036h Firmware 1030.36.604Arista C-75 Firmware -Arista O-90 Firmware -Arista C-65 Firmware -Arista W-68 Firmware -Siemens Scalance W700 Ieee 802.11n Firmware
6.5
CVSSv3

CVE-2020-26144

An issue exists on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC1042 (i.e., LLC/SNAP) header for EAPOL. An adversary can abuse this to inject arbitrary netw...
Samsung Galaxy I9305 Firmware 4.4.4Arista C-250 FirmwareArista C-260 FirmwareArista C-230 FirmwareArista C-235 FirmwareArista C-200 FirmwareArista C-120 FirmwareArista C-130 FirmwareArista C-100 FirmwareArista C-110 FirmwareArista O-105 FirmwareArista W-118 FirmwareArista C-75 Firmware -Arista O-90 Firmware -Arista C-65 Firmware -Arista W-68 Firmware -Siemens Scalance W700 Ieee 802.11ax FirmwareSiemens Scalance W700 Ieee 802.11n Firmware
5.9
CVSSv3

CVE-2021-3449

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_ce...
Openssl OpensslDebian Debian Linux 9.0Debian Debian Linux 10.0Freebsd Freebsd 12.2Netapp Santricity Smi-s Provider -Netapp Snapcenter -Netapp Oncommand Workflow Automation -Netapp Storagegrid -Netapp Oncommand Insight -Netapp Ontap Select Deploy Administration Utility -Netapp Active Iq Unified Manager -Netapp Cloud Volumes Ontap Mediator -Netapp E-series Performance Analyzer -Tenable Tenable.scTenable NessusTenable Nessus Network Monitor 5.11.1Tenable Nessus Network Monitor 5.12.0Tenable Nessus Network Monitor 5.12.1Tenable Nessus Network Monitor 5.13.0Tenable Nessus Network Monitor 5.11.0Tenable Log Correlation EngineFedoraproject Fedora 34
5.4
CVSSv3

CVE-2020-26147

An issue exists in the Linux kernel 5.8.9. The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragment...
Linux Linux KernelDebian Debian Linux 9.0Arista C-75 Firmware -Arista O-90 Firmware -Arista C-65 Firmware -Arista W-68 Firmware -Siemens Scalance W700 Ieee 802.11n FirmwareSiemens Scalance W1700 Ieee 802.11ac Firmware
5.3
CVSSv3

CVE-2020-26146

An issue exists on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfiltrate selected fragments. This vulnerability is exploitable when another device sends fr...
Samsung Galaxy I9305 Firmware 4.4.4Arista C-250 FirmwareArista C-260 FirmwareArista C-230 FirmwareArista C-235 FirmwareArista C-200 FirmwareArista C-120 FirmwareArista C-130 FirmwareArista C-100 FirmwareArista C-110 FirmwareArista O-105 FirmwareArista W-118 FirmwareArista C-75 Firmware -Arista O-90 Firmware -Arista C-65 Firmware -Arista W-68 Firmware -Siemens Scalance W700 Ieee 802.11n FirmwareSiemens Scalance W1700 Ieee 802.11ac FirmwareSiemens Scalance W1750d Firmware
NA

CVE-2013-4651

Siemens Scalance W7xx devices with firmware prior to 4.5.4 use the same hardcoded X.509 certificate across different customers' installations, which makes it easier for remote malicious users to conduct man-in-the-middle attacks against SSL sessions by leveraging the certifi...
Siemens Scalance W700 Series FirmwareSiemens Scalance W744-1 -Siemens Scalance W744-1pro -Siemens Scalance W746-1 -Siemens Scalance W746-1pro -Siemens Scalance W747-1 -Siemens Scalance W747-1rr -Siemens Scalance W784-1 -Siemens Scalance W784-1rr -Siemens Scalance W786-1pro -Siemens Scalance W786-2pro -Siemens Scalance W786-2rr -Siemens Scalance W786-3pro -Siemens Scalance W788-1pro -Siemens Scalance W788-1rr -Siemens Scalance W788-2pro -Siemens Scalance W788-2rr -
NA

CVE-2013-4652

Unspecified vulnerability in the command-line management interface on Siemens Scalance W7xx devices with firmware prior to 4.5.4 allows remote malicious users to bypass authentication and execute arbitrary code via a (1) SSH or (2) TELNET connection.
Siemens Scalance W700 Series FirmwareSiemens Scalance W744-1 -Siemens Scalance W744-1pro -Siemens Scalance W746-1 -Siemens Scalance W746-1pro -Siemens Scalance W747-1 -Siemens Scalance W747-1rr -Siemens Scalance W784-1 -Siemens Scalance W784-1rr -Siemens Scalance W786-1pro -Siemens Scalance W786-2pro -Siemens Scalance W786-2rr -Siemens Scalance W786-3pro -Siemens Scalance W788-1pro -Siemens Scalance W788-1rr -Siemens Scalance W788-2pro -Siemens Scalance W788-2rr -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCPCVE-2024-4577CVE-2024-2695CVE-2024-31870injectionCVE-2024-3813arbitrary codeCVE-2024-27801CVE-2024-30120
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook