Siemens

Scalance Sc622-2c Firmware

11 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2022-46140

  • EPSS 0.11%
  • Published 13.12.2022 16:15:25
  • Last modified 14.01.2025 11:15:10

Affected devices use a weak encryption scheme to encrypt the debug zip file. This could allow an authenticated attacker to decrypt the contents of the file and retrieve debug information about the system.

5.7

CVE-2022-46142

  • EPSS 0.07%
  • Published 13.12.2022 16:15:25
  • Last modified 14.01.2025 11:15:11

Affected devices store the CLI user passwords encrypted in flash memory. Attackers with physical access to the device could retrieve the file and decrypt the CLI user passwords.

5.1

CVE-2022-46143

  • EPSS 0.28%
  • Published 13.12.2022 16:15:25
  • Last modified 14.01.2025 11:15:11

Affected devices do not check the TFTP blocksize correctly. This could allow an authenticated attacker to read from an uninitialized buffer that potentially contains previously allocated data.

9.1

CVE-2022-36323

  • EPSS 0.51%
  • Published 10.08.2022 12:15:12
  • Last modified 21.11.2024 07:12:47

Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker with administrative privileges to inject code or spawn a system root shell.

4.8

CVE-2022-36325

  • EPSS 0.37%
  • Published 10.08.2022 12:15:12
  • Last modified 21.11.2024 07:12:47

Affected devices do not properly sanitize data introduced by an user when rendering the web interface. This could allow an authenticated remote attacker with administrative privileges to inject code and lead to a DOM-based XSS.

4.3

CVE-2022-32205

Exploit
  • EPSS 1.4%
  • Published 07.07.2022 13:15:08
  • Last modified 05.05.2025 17:18:12

A malicious server can serve excessive amounts of `Set-Cookie:` headers in a HTTP response to curl and curl < 7.84.0 stores all of them. A sufficiently large amount of (big) cookies make subsequent HTTP requests to this, or other servers to which the...

6.5

CVE-2022-32206

Exploit
  • EPSS 2.57%
  • Published 07.07.2022 13:15:08
  • Last modified 05.05.2025 17:18:13

curl < 7.84.0 supports "chained" HTTP compression algorithms, meaning that a serverresponse can be compressed multiple times and potentially with different algorithms. The number of acceptable "links" in this "decompression chain" was unbounded, allo...

7.8

CVE-2022-30065

Exploit
  • EPSS 0.6%
  • Published 18.05.2022 15:15:10
  • Last modified 21.11.2024 07:02:09

A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function.

7.5

CVE-2018-25032

Exploit
  • EPSS 0.09%
  • Published 25.03.2022 09:15:08
  • Last modified 21.08.2025 20:37:11

zlib before 1.2.12 allows memory corruption when deflating (i.e., when compressing) if the input has many distant matches.

7.5

CVE-2021-41991

  • EPSS 2.33%
  • Published 18.10.2021 14:15:10
  • Last modified 21.11.2024 06:27:02

The in-memory certificate cache in strongSwan before 5.9.4 has a remote integer overflow upon receiving many requests with different certificates to fill the cache and later trigger the replacement of cache entries. The code attempts to select a less...