CVE-2022-25753

EPSS 4.64%
Veröffentlicht 12.04.2022 09:15:14
Zuletzt bearbeitet 21.11.2024 06:52:56
Quelle productcert@siemens.com
Teams Watchlist Login
Unerledigt Login

A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE X302-7 EEC (24V, coated), SCALANCE X302-7 EEC (2x 230V), SCALANCE X302-7 EEC (2x 230V, coated), SCALANCE X302-7 EEC (2x 24V), SCALANCE X302-7 EEC (2x 24V, coated), SCALANCE X304-2FE, SCALANCE X306-1LD FE, SCALANCE X307-2 EEC (230V), SCALANCE X307-2 EEC (230V, coated), SCALANCE X307-2 EEC (24V), SCALANCE X307-2 EEC (24V, coated), SCALANCE X307-2 EEC (2x 230V), SCALANCE X307-2 EEC (2x 230V, coated), SCALANCE X307-2 EEC (2x 24V), SCALANCE X307-2 EEC (2x 24V, coated), SCALANCE X307-3, SCALANCE X307-3, SCALANCE X307-3LD, SCALANCE X307-3LD, SCALANCE X308-2, SCALANCE X308-2, SCALANCE X308-2LD, SCALANCE X308-2LD, SCALANCE X308-2LH, SCALANCE X308-2LH, SCALANCE X308-2LH+, SCALANCE X308-2LH+, SCALANCE X308-2M, SCALANCE X308-2M, SCALANCE X308-2M PoE, SCALANCE X308-2M PoE, SCALANCE X308-2M TS, SCALANCE X308-2M TS, SCALANCE X310, SCALANCE X310, SCALANCE X310FE, SCALANCE X310FE, SCALANCE X320-1 FE, SCALANCE X320-1-2LD FE, SCALANCE X408-2, SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M TS (24V), SCALANCE XR324-12M TS (24V), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M PoE (230V, ports on front), SCALANCE XR324-4M PoE (230V, ports on rear), SCALANCE XR324-4M PoE (24V, ports on front), SCALANCE XR324-4M PoE (24V, ports on rear), SCALANCE XR324-4M PoE TS (24V, ports on front), SIPLUS NET SCALANCE X308-2. The handling of arguments such as IP addresses in the CLI of affected devices is prone to buffer overflows. This could allow an authenticated remote attacker to execute arbitrary code on the device.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 2 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Siemens ≫ Scalance X302-7eec Firmware Version < 4.1.4

Siemens ≫ Scalance X302-7eec Version-

Siemens ≫ Scalance X304-2fe Firmware Version < 4.1.4

Siemens ≫ Scalance X304-2fe Version-

Siemens ≫ Scalance X306-1ldfe Firmware Version < 4.1.4

Siemens ≫ Scalance X306-1ldfe Version-

Siemens ≫ Scalance X307-2eec Firmware Version < 4.1.4

Siemens ≫ Scalance X307-2eec Version-

Siemens ≫ Scalance X307-3 Firmware Version < 4.1.4

Siemens ≫ Scalance X307-3 Version-

Siemens ≫ Scalance X307-3ld Firmware Version < 4.1.4

Siemens ≫ Scalance X307-3ld Version-

Siemens ≫ Scalance X308-2 Firmware Version < 4.1.4

Siemens ≫ Scalance X308-2 Version-

Siemens ≫ Scalance X308-2ld Firmware Version < 4.1.4

Siemens ≫ Scalance X308-2ld Version-

Siemens ≫ Scalance X308-2lh Firmware Version < 4.1.4

Siemens ≫ Scalance X308-2lh Version-

Siemens ≫ Scalance X308-2lh+ Firmware Version < 4.1.4

Siemens ≫ Scalance X308-2lh+ Version-

Siemens ≫ Scalance X308-2m Firmware Version < 4.1.4

Siemens ≫ Scalance X308-2m Version-

Siemens ≫ Scalance X308-2m Poe Firmware Version-

Siemens ≫ Scalance X308-2m Poe Version-

Siemens ≫ Scalance X308-2m Ts Firmware Version < 4.1.4

Siemens ≫ Scalance X308-2m Ts Version-

Siemens ≫ Scalance X310 Firmware Version < 4.1.4

Siemens ≫ Scalance X310 Version-

Siemens ≫ Scalance X310fe Firmware Version < 4.1.4

Siemens ≫ Scalance X310fe Version-

Siemens ≫ Scalance X320-1fe Firmware Version < 4.1.4

Siemens ≫ Scalance X320-1fe Version-

Siemens ≫ Scalance X320-1-2ldfe Firmware Version < 4.1.4

Siemens ≫ Scalance X320-1-2ldfe Version-

Siemens ≫ Scalance X408-2 Firmware Version < 4.1.4

Siemens ≫ Scalance X408-2 Version-

Siemens ≫ Scalance Xr324-4m Eec Firmware Version < 4.1.4

Siemens ≫ Scalance Xr324-4m Eec Version-

Siemens ≫ Scalance Xr324-4m Poe Firmware Version < 4.1.4

Siemens ≫ Scalance Xr324-4m Poe Version-

Siemens ≫ Scalance Xr324-4m Poe Ts Firmware Version < 4.1.4

Siemens ≫ Scalance Xr324-4m Poe Ts Version-

Siemens ≫ Scalance Xr324-12m Firmware Version < 4.1.4

Siemens ≫ Scalance Xr324-12m Version-

Siemens ≫ Scalance Xr324-12m Ts Firmware Version < 4.1.4

Siemens ≫ Scalance Xr324-12m Ts Version-

Siemens ≫ Siplus Net Scalance X308-2 Firmware Version < 4.1.4

Siemens ≫ Siplus Net Scalance X308-2 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	4.64%	0.887

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.8	2.8	5.9	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	6.5	8	6.4	AV:N/AC:L/Au:S/C:P/I:P/A:P

CWE-121 Stack-based Buffer Overflow

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

https://cert-portal.siemens.com/productcert/pdf/ssa-836527.pdf

Patch

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2022-25753

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-25753

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-25753

EUVD