Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact
9.6
CVSSv3

CVE-2022-26649

Published: 12/07/2022 Updated: 11/04/2023
CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10
CVSS v3 Base Score: 9.6 | Impact Score: 6 | Exploitability Score: 2.8
VMScore: 694
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Vulnerability Summary

A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < V5.5.2), SCALANCE X201-3P IRT (All versions < V5.5.2), SCALANCE X201-3P IRT PRO (All versions < V5.5.2), SCALANCE X202-2IRT (All versions < V5.5.2), SCALANCE X202-2IRT (All versions < V5.5.2), SCALANCE X202-2P IRT (All versions < V5.5.2), SCALANCE X202-2P IRT PRO (All versions < V5.5.2), SCALANCE X204-2 (All versions < V5.2.6), SCALANCE X204-2FM (All versions < V5.2.6), SCALANCE X204-2LD (All versions < V5.2.6), SCALANCE X204-2LD TS (All versions < V5.2.6), SCALANCE X204-2TS (All versions < V5.2.6), SCALANCE X204IRT (All versions < V5.5.2), SCALANCE X204IRT (All versions < V5.5.2), SCALANCE X204IRT PRO (All versions < V5.5.2), SCALANCE X206-1 (All versions < V5.2.6), SCALANCE X206-1LD (All versions < V5.2.6), SCALANCE X208 (All versions < V5.2.6), SCALANCE X208PRO (All versions < V5.2.6), SCALANCE X212-2 (All versions < V5.2.6), SCALANCE X212-2LD (All versions < V5.2.6), SCALANCE X216 (All versions < V5.2.6), SCALANCE X224 (All versions < V5.2.6), SCALANCE XF201-3P IRT (All versions < V5.5.2), SCALANCE XF202-2P IRT (All versions < V5.5.2), SCALANCE XF204 (All versions < V5.2.6), SCALANCE XF204-2 (All versions < V5.2.6), SCALANCE XF204-2BA IRT (All versions < V5.5.2), SCALANCE XF204IRT (All versions < V5.5.2), SCALANCE XF206-1 (All versions < V5.2.6), SCALANCE XF208 (All versions < V5.2.6). Affected devices do not properly validate the URI of incoming HTTP GET requests. This could allow an unauthenticated remote malicious user to crash affected devices.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

siemens scalance x204-2 firmware

siemens scalance x204-2fm firmware

siemens scalance x204-2ld firmware

siemens scalance x204-2ld ts firmware

siemens scalance x204-2ts firmware

siemens scalance x206-1 firmware

siemens scalance x206-1ld firmware

siemens scalance x208 firmware

siemens scalance x208 pro firmware

siemens scalance x212-2 firmware

siemens scalance x212-2ld firmware

siemens scalance x216 firmware

siemens scalance x224 firmware

siemens scalance xf204 firmware

siemens scalance xf204-2 firmware

siemens scalance xf206-1 firmware

siemens scalance xf208 firmware

siemens scalance x200-4p irt firmware

siemens scalance x201-3p irt firmware

siemens scalance x201-3p irt pro firmware

siemens scalance x202-2irt firmware

siemens scalance x202-2p irt firmware

siemens scalance x202-2p irt pro firmware

siemens scalance x204irt firmware

siemens scalance x204irt pro firmware

siemens scalance xf201-3p irt firmware

siemens scalance xf202-2p irt firmware

siemens scalance xf204-2ba irt firmware

siemens scalance xf204irt firmware

ICS Advisories

Siemens SCALANCE X Switch Devices

References

CWE-120https://cert-portal.siemens.com/productcert/pdf/ssa-310038.pdfhttps://nvd.nist.govhttps://www.cisa.gov/uscert/ics/advisories/icsa-22-195-01
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995CVE-2024-36680CVE-2024-35537unauthorizedCVE-2024-21518CVE-2024-37673cross-site scriptingSSRFCVE-2024-6241
Vulmon Logo Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook