Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-25226

A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.5), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.5.0). The web server of the affected devices contains a vulnerability that may lead to a buffer overflow condition. An attacker could cause this condition on the webserver by sending a specially crafted request. The webserver could stop and not recover anymore.

Published

2021-01-12T21:15:16.543

Last Modified

2024-11-21T05:17:42.257

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

10.0

Impact Score

10.0

Weaknesses

Type: Primary
CWE-122
Type: Secondary
CWE-787

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	siemens	scalance_x200-4pirt_firmware	< 5.5.0	Yes
Hardware	siemens	scalance_x200-4pirt	-	No
Operating System	siemens	scalance_x201-3pirt_firmware	< 5.5.0	Yes
Hardware	siemens	scalance_x201-3pirt	-	No
Operating System	siemens	scalance_x202-2irt_firmware	< 5.5.0	Yes
Hardware	siemens	scalance_x202-2irt	-	No
Operating System	siemens	scalance_x202-2pirt_firmware	< 5.5.0	Yes
Hardware	siemens	scalance_x202-2pirt	-	No
Operating System	siemens	scalance_x202-2pirt_siplus_net_firmware	< 5.5.0	Yes
Hardware	siemens	scalance_x202-2pirt_siplus_net	-	No
Operating System	siemens	scalance_x204irt_firmware	< 5.5.0	Yes
Hardware	siemens	scalance_x204irt	-	No
Operating System	siemens	scalance_x307-3_firmware	*	Yes
Hardware	siemens	scalance_x307-3	-	No
Operating System	siemens	scalance_x307-3ld_firmware	*	Yes
Hardware	siemens	scalance_x307-3ld	-	No
Operating System	siemens	scalance_x308-2_firmware	*	Yes
Hardware	siemens	scalance_x308-2	-	No
Operating System	siemens	scalance_x308-2ld_firmware	*	Yes
Hardware	siemens	scalance_x308-2ld	-	No
Operating System	siemens	scalance_x308-2lh_firmware	*	Yes
Hardware	siemens	scalance_x308-2lh	-	No
Operating System	siemens	scalance_x308-2lh\+_firmware	*	Yes
Hardware	siemens	scalance_x308-2lh\+	-	No
Operating System	siemens	scalance_x308-2m_firmware	*	Yes
Hardware	siemens	scalance_x308-2m	-	No
Operating System	siemens	scalance_x308-2m_ts_firmware	*	Yes
Hardware	siemens	scalance_x308-2m_ts	-	No
Operating System	siemens	scalance_x310_firmware	*	Yes
Hardware	siemens	scalance_x310	-	No
Operating System	siemens	scalance_x310fe_firmware	*	Yes
Hardware	siemens	scalance_x310fe	-	No
Operating System	siemens	scalance_x320-1fe_firmware	*	Yes
Hardware	siemens	scalance_x320-1fe	-	No
Operating System	siemens	scalance_x320-3ldfe_firmware	*	Yes
Hardware	siemens	scalance_x320-3ldfe	-	No
Operating System	siemens	scalance_xb205-3_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xb205-3	-	No
Operating System	siemens	scalance_xb205-3ld_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xb205-3ld	-	No
Operating System	siemens	scalance_xb208_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xb208	-	No
Operating System	siemens	scalance_xb213-3_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xb213-3	-	No
Operating System	siemens	scalance_xb213-3ld_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xb213-3ld	-	No
Operating System	siemens	scalance_xb216_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xb216	-	No
Operating System	siemens	scalance_xc206-2_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc206-2	-	No
Operating System	siemens	scalance_xc206-2g_poe__firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc206-2g_poe_	-	No
Operating System	siemens	scalance_xc206-2g_poe_eec_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc206-2g_poe_eec	-	No
Operating System	siemens	scalance_xc206-2sfp_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc206-2sfp	-	No
Operating System	siemens	scalance_xc206-2sfp_eec_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc206-2sfp_eec	-	No
Operating System	siemens	scalance_xc206-2sfp_g_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc206-2sfp_g	-	No
Operating System	siemens	scalance_xc206-2sfp_g_\(e\/ip\)_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc206-2sfp_g_\(e\/ip\)	-	No
Operating System	siemens	scalance_xc206-2sfp_g_eec_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc206-2sfp_g_eec	-	No
Operating System	siemens	scalance_xc208_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc208	-	No
Operating System	siemens	scalance_xc208eec_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc208eec	-	No
Operating System	siemens	scalance_xc208g_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc208g	-	No
Operating System	siemens	scalance_xc208g_\(e\/ip\)_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc208g_\(e\/ip\)	-	No
Operating System	siemens	scalance_xc208g_eec_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc208g_eec	-	No
Operating System	siemens	scalance_xc208g_poe_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc208g_poe	-	No
Operating System	siemens	scalance_xc216_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc216	-	No
Operating System	siemens	scalance_xc216-4c_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc216-4c	-	No
Operating System	siemens	scalance_xc216-4c_g_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc216-4c_g	-	No
Operating System	siemens	scalance_xc216-4c_g_\(e\/ip\)_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc216-4c_g_\(e\/ip\)	-	No
Operating System	siemens	scalance_xc216-4c_g_eec_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc216-4c_g_eec	-	No
Operating System	siemens	scalance_xc216eec_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc216eec	-	No
Operating System	siemens	scalance_xc224-4c_g__firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc224-4c_g_	-	No
Operating System	siemens	scalance_xc224-4c_g_\(e\/ip\)_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc224-4c_g_\(e\/ip\)	-	No
Operating System	siemens	scalance_xc224-4c_g_eec_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc224-4c_g_eec	-	No
Operating System	siemens	scalance_xc224__firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xc224_	-	No
Operating System	siemens	scalance_xf201-3p_irt_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xf201-3p_irt	-	No
Operating System	siemens	scalance_xf202-2p_irt_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xf202-2p_irt	-	No
Operating System	siemens	scalance_xf204_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xf204	-	No
Operating System	siemens	scalance_xf204-2_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xf204-2	-	No
Operating System	siemens	scalance_xf204-2ba_dna_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xf204-2ba_dna	-	No
Operating System	siemens	scalance_xf204-2ba_irt_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xf204-2ba_irt	-	No
Operating System	siemens	scalance_xf204_dna_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xf204_dna	-	No
Operating System	siemens	scalance_xf204irt_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xf204irt	-	No
Operating System	siemens	scalance_xf206-1_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xf206-1	-	No
Operating System	siemens	scalance_xf208_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xf208	-	No
Operating System	siemens	scalance_xp208_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xp208	-	No
Operating System	siemens	scalance_xp208_\(eip\)_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xp208_\(eip\)	-	No
Operating System	siemens	scalance_xp208eec_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xp208eec	-	No
Operating System	siemens	scalance_xp208poe_eec_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xp208poe_eec	-	No
Operating System	siemens	scalance_xp216_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xp216	-	No
Operating System	siemens	scalance_xp216_\(eip\)_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xp216_\(eip\)	-	No
Operating System	siemens	scalance_xp216eec_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xp216eec	-	No
Operating System	siemens	scalance_xp216poe_eec_firmware	< 5.2.5	Yes
Hardware	siemens	scalance_xp216poe_eec	-	No

References

https://cert-portal.siemens.com/productcert/pdf/ssa-139628.pdf Vendor Advisory ([email protected])
https://cert-portal.siemens.com/productcert/pdf/ssa-139628.pdf Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)