The authentication implementation in the web server on Siemens SCALANCE X-200 switches with firmware prior to 5.0.0 does not use a sufficient source of entropy for generating values of random numbers, which makes it easier for remote malicious users to hijack sessions by predicting a value.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
siemens scalance x-200 series firmware |
||
siemens scalance x-200 series firmware 4.3 |
||
siemens scalance x-200 - |
||
siemens scalance x-200rna - |
||
siemens scalance x200-4p irt - |
||
siemens scalance x201-3p irt - |
||
siemens scalance x202-2irt - |
||
siemens scalance x202-2p irt - |
||
siemens scalance x204irt - |
||
siemens scalance xf-200 - |