CVE-2020-28393
- EPSS 0.53%
- Veröffentlicht 12.05.2021 14:15:11
- Zuletzt bearbeitet 21.11.2024 05:22:42
An unauthenticated remote attacker could create a permanent denial-of-service condition by sending specially crafted OSPF packets. Successful exploitation requires OSPF to be enabled on an affected device on the SCALANCE XM-400, XR-500 (All versions ...
CVE-2021-3449
- EPSS 13.18%
- Veröffentlicht 25.03.2021 15:15:13
- Zuletzt bearbeitet 21.11.2024 06:21:33
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but incl...
CVE-2019-13946
- EPSS 0.55%
- Veröffentlicht 11.02.2020 16:15:15
- Zuletzt bearbeitet 21.11.2024 04:25:45
Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lead to a denial of service condition due to lack of ...
CVE-2017-12736
- EPSS 0.28%
- Veröffentlicht 26.12.2017 04:29:13
- Zuletzt bearbeitet 12.08.2025 12:15:26
After initial configuration, the Ruggedcom Discovery Protocol (RCDP) is still able to write to the device under certain conditions. This could allow an attacker located in the adjacent network of the targeted device to perform unauthorized adminis...