Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-26334

A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE X302-7 EEC (24V, coated), SCALANCE X302-7 EEC (2x 230V), SCALANCE X302-7 EEC (2x 230V, coated), SCALANCE X302-7 EEC (2x 24V), SCALANCE X302-7 EEC (2x 24V, coated), SCALANCE X304-2FE, SCALANCE X306-1LD FE, SCALANCE X307-2 EEC (230V), SCALANCE X307-2 EEC (230V, coated), SCALANCE X307-2 EEC (24V), SCALANCE X307-2 EEC (24V, coated), SCALANCE X307-2 EEC (2x 230V), SCALANCE X307-2 EEC (2x 230V, coated), SCALANCE X307-2 EEC (2x 24V), SCALANCE X307-2 EEC (2x 24V, coated), SCALANCE X307-3, SCALANCE X307-3, SCALANCE X307-3LD, SCALANCE X307-3LD, SCALANCE X308-2, SCALANCE X308-2, SCALANCE X308-2LD, SCALANCE X308-2LD, SCALANCE X308-2LH, SCALANCE X308-2LH, SCALANCE X308-2LH+, SCALANCE X308-2LH+, SCALANCE X308-2M, SCALANCE X308-2M, SCALANCE X308-2M PoE, SCALANCE X308-2M PoE, SCALANCE X308-2M TS, SCALANCE X308-2M TS, SCALANCE X310, SCALANCE X310, SCALANCE X310FE, SCALANCE X310FE, SCALANCE X320-1 FE, SCALANCE X320-1-2LD FE, SCALANCE X408-2, SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M TS (24V), SCALANCE XR324-12M TS (24V), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M PoE (230V, ports on front), SCALANCE XR324-4M PoE (230V, ports on rear), SCALANCE XR324-4M PoE (24V, ports on front), SCALANCE XR324-4M PoE (24V, ports on rear), SCALANCE XR324-4M PoE TS (24V, ports on front), SIPLUS NET SCALANCE X308-2. Affected devices do not properly validate the GET parameter XNo of incoming HTTP requests. This could allow an unauthenticated remote attacker to crash affected devices.

Published

2022-04-12T09:15:14.880

Last Modified

2024-11-21T06:53:46.077

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: COMPLETE
Exploitability Score

10.0

Impact Score

6.9

Weaknesses
  • Type: Secondary
    CWE-120
  • Type: Primary
    CWE-120
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System siemens scalance_x302-7eec_firmware < 4.1.4 Yes
Hardware siemens scalance_x302-7eec - No
Operating System siemens scalance_x304-2fe_firmware < 4.1.4 Yes
Hardware siemens scalance_x304-2fe - No
Operating System siemens scalance_x306-1ldfe_firmware < 4.1.4 Yes
Hardware siemens scalance_x306-1ldfe - No
Operating System siemens scalance_x307-2eec_firmware < 4.1.4 Yes
Hardware siemens scalance_x307-2eec - No
Operating System siemens scalance_x307-3_firmware < 4.1.4 Yes
Hardware siemens scalance_x307-3 - No
Operating System siemens scalance_x307-3ld_firmware < 4.1.4 Yes
Hardware siemens scalance_x307-3ld - No
Operating System siemens scalance_x308-2_firmware < 4.1.4 Yes
Hardware siemens scalance_x308-2 - No
Operating System siemens scalance_x308-2ld_firmware < 4.1.4 Yes
Hardware siemens scalance_x308-2ld - No
Operating System siemens scalance_x308-2lh_firmware < 4.1.4 Yes
Hardware siemens scalance_x308-2lh - No
Operating System siemens scalance_x308-2lh\+_firmware < 4.1.4 Yes
Hardware siemens scalance_x308-2lh\+ - No
Operating System siemens scalance_x308-2m_firmware < 4.1.4 Yes
Hardware siemens scalance_x308-2m - No
Operating System siemens scalance_x308-2m_poe_firmware - Yes
Hardware siemens scalance_x308-2m_poe - No
Operating System siemens scalance_x308-2m_ts_firmware < 4.1.4 Yes
Hardware siemens scalance_x308-2m_ts - No
Operating System siemens scalance_x310_firmware < 4.1.4 Yes
Hardware siemens scalance_x310 - No
Operating System siemens scalance_x310fe_firmware < 4.1.4 Yes
Hardware siemens scalance_x310fe - No
Operating System siemens scalance_x320-1fe_firmware < 4.1.4 Yes
Hardware siemens scalance_x320-1fe - No
Operating System siemens scalance_x320-1-2ldfe_firmware < 4.1.4 Yes
Hardware siemens scalance_x320-1-2ldfe - No
Operating System siemens scalance_x408-2_firmware < 4.1.4 Yes
Hardware siemens scalance_x408-2 - No
Operating System siemens scalance_xr324-4m_eec_firmware < 4.1.4 Yes
Hardware siemens scalance_xr324-4m_eec - No
Operating System siemens scalance_xr324-4m_poe_firmware < 4.1.4 Yes
Hardware siemens scalance_xr324-4m_poe - No
Operating System siemens scalance_xr324-4m_poe_ts_firmware < 4.1.4 Yes
Hardware siemens scalance_xr324-4m_poe_ts - No
Operating System siemens scalance_xr324-12m_firmware < 4.1.4 Yes
Hardware siemens scalance_xr324-12m - No
Operating System siemens scalance_xr324-12m_ts_firmware < 4.1.4 Yes
Hardware siemens scalance_xr324-12m_ts - No
Operating System siemens siplus_net_scalance_x308-2_firmware < 4.1.4 Yes
Hardware siemens siplus_net_scalance_x308-2 - No
References