Published: 13/12/2022 Updated: 15/12/2022

CVSS v3 Base Score: 6.1 | Impact Score: 2.7 | Exploitability Score: 2.8

VMScore: 0

A vulnerability has been identified in SCALANCE X204RNA (HSR) (All versions < V3.2.7), SCALANCE X204RNA (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (HSR) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP/HSR) (All versions < V3.2.7). The integrated web server could allow Cross-Site Scripting (XSS) attacks if unsuspecting users are tricked into accessing a malicious link. This can be used by an malicious user to trigger a malicious request on the affected device.

Vulnerable Product	Search on Vulmon	Subscribe to Product
siemens 6gk5204-0ba00-2mb2 firmware
siemens 6gk5204-0ba00-2kb2 firmware
siemens 6gk5204-0bs00-2na3 firmware
siemens 6gk5204-0bs00-3la3 firmware
siemens 6gk5204-0bs00-3pa3 firmware

Critical Infrastructure Sectors: Chemical, Critical Manufacturing, Energy, Food and Agriculture, Water and Wastewater Systems

CWE-79 https://cert-portal.siemens.com/productcert/pdf/ssa-363821.pdf https://nvd.nist.gov https://www.cisa.gov/uscert/ics/advisories/icsa-22-349-02

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-46350

Vulnerability Summary

Vulnerability Trend

ICS Advisories

References

Vulmon Search

About

Products

Connect