Siemens SINAMICS S/G controllers with firmware prior to 4.6.11 do not require authentication for FTP and TELNET sessions, which allows remote malicious users to bypass intended access restrictions via TCP traffic to port (1) 21 or (2) 23.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
siemens sinamics_s\\/g_family_firmware |
||
siemens sinamics_s120 - |
||
siemens sinamics_s120cm - |
||
siemens sinamics_s150 - |
||
siemens sinamics_g110d - |
||
siemens sinamics_g130 - |
||
siemens sinamics_g180 - |
||
siemens sinamics_g120p - |
||
siemens sinamics_g120d - |
||
siemens sinamics_g120c - |
||
siemens sinamics_g120 - |
||
siemens sinamics_g110 - |
||
siemens sinamics_g150 - |
||
siemens sinamics_s110 - |