Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-46143

Affected devices do not check the TFTP blocksize correctly. This could allow an authenticated attacker to read from an uninitialized buffer that potentially contains previously allocated data.

Published

2022-12-13T16:15:25.137

Last Modified

2025-01-14T11:15:11.840

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 2.7 (LOW)

Weaknesses

Type: Primary
CWE-1284
Type: Secondary
CWE-1284

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	siemens	ruggedcom_rm1224_lte\(4g\)_eu_firmware	*	Yes
Hardware	siemens	ruggedcom_rm1224_lte\(4g\)_eu	-	No
Operating System	siemens	ruggedcom_rm1224_lte\(4g\)_nam_firmware	*	Yes
Hardware	siemens	ruggedcom_rm1224_lte\(4g\)_nam	-	No
Operating System	siemens	scalance_m804pb_firmware	*	Yes
Hardware	siemens	scalance_m804pb	-	No
Operating System	siemens	scalance_m812-1_adsl-router_firmware	*	Yes
Hardware	siemens	scalance_m812-1_adsl-router	-	No
Operating System	siemens	scalance_m816-1_adsl-router_firmware	*	Yes
Hardware	siemens	scalance_m816-1_adsl-router	-	No
Operating System	siemens	scalance_m826-2_shdsl-router_firmware	*	Yes
Hardware	siemens	scalance_m826-2_shdsl-router	-	No
Operating System	siemens	scalance_m874-2_firmware	*	Yes
Hardware	siemens	scalance_m874-2	-	No
Operating System	siemens	scalance_m874-3_firmware	*	Yes
Hardware	siemens	scalance_m874-3	-	No
Operating System	siemens	scalance_m876-3_firmware	*	Yes
Hardware	siemens	scalance_m876-3	-	No
Operating System	siemens	scalance_m876-4_firmware	*	Yes
Hardware	siemens	scalance_m876-4	-	No
Operating System	siemens	scalance_mum853-1_firmware	*	Yes
Hardware	siemens	scalance_mum853-1	-	No
Operating System	siemens	scalance_mum856-1_firmware	*	Yes
Hardware	siemens	scalance_mum856-1	-	No
Operating System	siemens	scalance_s615_firmware	*	Yes
Hardware	siemens	scalance_s615	-	No
Operating System	siemens	scalance_s615_eec_firmware	*	Yes
Hardware	siemens	scalance_s615_eec	-	No
Operating System	siemens	scalance_sc622-2c_firmware	< 2.3	Yes
Hardware	siemens	scalance_sc622-2c	-	No
Operating System	siemens	scalance_sc626-2c_firmware	< 2.3	Yes
Hardware	siemens	scalance_sc626-2c	-	No
Operating System	siemens	scalance_sc632-2c_firmware	< 2.3	Yes
Hardware	siemens	scalance_sc632-2c	-	No
Operating System	siemens	scalance_sc636-2c_firmware	< 2.3	Yes
Hardware	siemens	scalance_sc636-2c	-	No
Operating System	siemens	scalance_sc642-2c_firmware	< 2.3	Yes
Hardware	siemens	scalance_sc642-2c	-	No
Operating System	siemens	scalance_sc646-2c_firmware	< 2.3	Yes
Hardware	siemens	scalance_sc646-2c	-	No
Operating System	siemens	scalance_w721-1_rj45_firmware	*	Yes
Hardware	siemens	scalance_w721-1_rj45	-	No
Operating System	siemens	scalance_w722-1_rj45_firmware	*	Yes
Hardware	siemens	scalance_w722-1_rj45	-	No
Operating System	siemens	scalance_w734-1_rj45_firmware	*	Yes
Hardware	siemens	scalance_w734-1_rj45	-	No
Operating System	siemens	scalance_w738-1_m12_firmware	*	Yes
Hardware	siemens	scalance_w738-1_m12	-	No
Operating System	siemens	scalance_w748-1_m12_firmware	*	Yes
Hardware	siemens	scalance_w748-1_m12	-	No
Operating System	siemens	scalance_w761-1_rj45_firmware	-	Yes
Hardware	siemens	scalance_w761-1_rj45	-	No
Operating System	siemens	scalance_w774-1_m12_eec_firmware	-	Yes
Hardware	siemens	scalance_w774-1_m12_eec	-	No
Operating System	siemens	scalance_w774-1_m12_rj45_firmware	-	Yes
Hardware	siemens	scalance_w774-1_m12_rj45	-	No
Operating System	siemens	scalance_w774-1_rj45_firmware	-	Yes
Hardware	siemens	scalance_w774-1_rj45	-	No
Operating System	siemens	scalance_w778-1_m12_firmware	-	Yes
Hardware	siemens	scalance_w778-1_m12	-	No
Operating System	siemens	scalance_w778-1_m12_eec_firmware	-	Yes
Hardware	siemens	scalance_w778-1_m12_eec	-	No
Operating System	siemens	scalance_w786-1_rj45_firmware	-	Yes
Hardware	siemens	scalance_w786-1_rj45	-	No
Operating System	siemens	scalance_w786-2_rj45_firmware	-	Yes
Hardware	siemens	scalance_w786-2_rj45	-	No
Operating System	siemens	scalance_w786-2_sfp_firmware	-	Yes
Hardware	siemens	scalance_w786-2_sfp	-	No
Operating System	siemens	scalance_w786-2ia_rj45_firmware	-	Yes
Hardware	siemens	scalance_w786-2ia_rj45	-	No
Operating System	siemens	scalance_w788-1_m12_firmware	-	Yes
Hardware	siemens	scalance_w788-1_m12	-	No
Operating System	siemens	scalance_w788-1_rj45_firmware	-	Yes
Hardware	siemens	scalance_w788-1_rj45	-	No
Operating System	siemens	scalance_w788-2_m12_firmware	-	Yes
Hardware	siemens	scalance_w788-2_m12	-	No
Operating System	siemens	scalance_w788-2_m12_eec_firmware	-	Yes
Hardware	siemens	scalance_w788-2_m12_eec	-	No
Operating System	siemens	scalance_w1748-1_m12_firmware	-	Yes
Hardware	siemens	scalance_w1748-1_m12	-	No
Operating System	siemens	scalance_w1788-1_m12_firmware	-	Yes
Hardware	siemens	scalance_w1788-1_m12	-	No
Operating System	siemens	scalance_w1788-2_eec_m12_firmware	-	Yes
Hardware	siemens	scalance_w1788-2_eec_m12	-	No
Operating System	siemens	scalance_w1788-2_m12_firmware	-	Yes
Hardware	siemens	scalance_w1788-2_m12	-	No
Operating System	siemens	scalance_w1788-2ia_m12_firmware	-	Yes
Hardware	siemens	scalance_w1788-2ia_m12	-	No
Operating System	siemens	scalance_wam763-1_firmware	-	Yes
Hardware	siemens	scalance_wam763-1	-	No
Operating System	siemens	scalance_wam766-1_firmware	-	Yes
Hardware	siemens	scalance_wam766-1	-	No
Operating System	siemens	scalance_wam766-1_6ghz_firmware	-	Yes
Hardware	siemens	scalance_wam766-1_6ghz	-	No
Operating System	siemens	scalance_wam766-1_ecc_firmware	-	Yes
Hardware	siemens	scalance_wam766-1_ecc	-	No
Operating System	siemens	scalance_wum763-1_firmware	-	Yes
Hardware	siemens	scalance_wum763-1	-	No
Operating System	siemens	scalance_wum766-1_firmware	-	Yes
Hardware	siemens	scalance_wum766-1	-	No
Operating System	siemens	scalance_wum766-1_6ghz_firmware	-	Yes
Hardware	siemens	scalance_wum766-1_6ghz	-	No
Operating System	siemens	scalance_xb205-3_firmware	-	Yes
Hardware	siemens	scalance_xb205-3	-	No
Operating System	siemens	scalance_xb205-3ld_firmware	-	Yes
Hardware	siemens	scalance_xb205-3ld	-	No
Operating System	siemens	scalance_xb208_firmware	-	Yes
Hardware	siemens	scalance_xb208	-	No
Operating System	siemens	scalance_xb213-3_firmware	-	Yes
Hardware	siemens	scalance_xb213-3	-	No
Operating System	siemens	scalance_xb213-3ld_firmware	-	Yes
Hardware	siemens	scalance_xb213-3ld	-	No
Operating System	siemens	scalance_xb216_firmware	-	Yes
Hardware	siemens	scalance_xb216	-	No
Operating System	siemens	scalance_xc206-2_firmware	-	Yes
Hardware	siemens	scalance_xc206-2	-	No
Operating System	siemens	scalance_xc206-2g_poe_firmware	-	Yes
Hardware	siemens	scalance_xc206-2g_poe	-	No
Operating System	siemens	scalance_xc206-2g_poe_eec_firmware	-	Yes
Hardware	siemens	scalance_xc206-2g_poe_eec	-	No
Operating System	siemens	scalance_xc206-2sfp_firmware	-	Yes
Hardware	siemens	scalance_xc206-2sfp	-	No
Operating System	siemens	scalance_xc206-2sfp_eec_firmware	-	Yes
Hardware	siemens	scalance_xc206-2sfp_eec	-	No
Operating System	siemens	scalance_xc206-2sfp_g_firmware	-	Yes
Hardware	siemens	scalance_xc206-2sfp_g	-	No
Operating System	siemens	scalance_xc206-2sfp_g_eec_firmware	-	Yes
Hardware	siemens	scalance_xc206-2sfp_g_eec	-	No
Operating System	siemens	scalance_xc208_firmware	-	Yes
Hardware	siemens	scalance_xc208	-	No
Operating System	siemens	scalance_xc208_eec_firmware	-	Yes
Hardware	siemens	scalance_xc208_eec	-	No
Operating System	siemens	scalance_xc208_poe_firmware	-	Yes
Hardware	siemens	scalance_xc208_poe	-	No
Operating System	siemens	scalance_xc216_firmware	-	Yes
Hardware	siemens	scalance_xc216	-	No
Operating System	siemens	scalance_xc216-3g_poe_firmware	-	Yes
Hardware	siemens	scalance_xc216-3g_poe	-	No
Operating System	siemens	scalance_xc216-4c_firmware	-	Yes
Hardware	siemens	scalance_xc216-4c	-	No
Operating System	siemens	scalance_xc216-4c_g_firmware	-	Yes
Hardware	siemens	scalance_xc216-4c_g	-	No
Operating System	siemens	scalance_xc216-4c_g_eec_firmware	-	Yes
Hardware	siemens	scalance_xc216-4c_g_eec	-	No
Operating System	siemens	scalance_xc216eec_firmware	-	Yes
Hardware	siemens	scalance_xc216eec	-	No
Operating System	siemens	scalance_xc224_firmware	-	Yes
Hardware	siemens	scalance_xc224	-	No
Operating System	siemens	scalance_xc224-4c_g_firmware	-	Yes
Hardware	siemens	scalance_xc224-4c_g	-	No
Operating System	siemens	scalance_xc224-4c_g_eec_firmware	-	Yes
Hardware	siemens	scalance_xc224-4c_g_eec	-	No
Operating System	siemens	scalance_xf204_firmware	-	Yes
Hardware	siemens	scalance_xf204	-	No
Operating System	siemens	scalance_xf204_dna_firmware	-	Yes
Hardware	siemens	scalance_xf204_dna	-	No
Operating System	siemens	scalance_xf204-2ba_firmware	-	Yes
Hardware	siemens	scalance_xf204-2ba	-	No
Operating System	siemens	scalance_xf204-2bca_dna_firmware	-	Yes
Hardware	siemens	scalance_xf204-2bca_dna	-	No
Operating System	siemens	scalance_xm408-4c_firmware	-	Yes
Hardware	siemens	scalance_xm408-4c	-	No
Operating System	siemens	scalance_xm408-8c_firmware	-	Yes
Hardware	siemens	scalance_xm408-8c	-	No
Operating System	siemens	scalance_xm416-4c_firmware	-	Yes
Hardware	siemens	scalance_xm416-4c	-	No
Operating System	siemens	scalance_xp208_firmware	-	Yes
Hardware	siemens	scalance_xp208	-	No
Operating System	siemens	scalance_xp208eec_firmware	-	Yes
Hardware	siemens	scalance_xp208eec	-	No
Operating System	siemens	scalance_xp208poe_eec_firmware	-	Yes
Hardware	siemens	scalance_xp208poe_eec	-	No
Operating System	siemens	scalance_xp216_firmware	-	Yes
Hardware	siemens	scalance_xp216	-	No
Operating System	siemens	scalance_xp216eec_firmware	-	Yes
Hardware	siemens	scalance_xp216eec	-	No
Operating System	siemens	scalance_xp216poe_eec_firmware	-	Yes
Hardware	siemens	scalance_xp216poe_eec	-	No
Operating System	siemens	scalance_xr324wg_firmware	-	Yes
Hardware	siemens	scalance_xr324wg	-	No
Operating System	siemens	scalance_xr326-2c_firmware	-	Yes
Hardware	siemens	scalance_xr326-2c	-	No
Operating System	siemens	scalance_xr326-2c_poe_firmware	-	Yes
Hardware	siemens	scalance_xr326-2c_poe	-	No
Operating System	siemens	scalance_xr328-4c_wg_firmware	-	Yes
Hardware	siemens	scalance_xr328-4c_wg	-	No
Operating System	siemens	scalance_xr524-8c_firmware	-	Yes
Hardware	siemens	scalance_xr524-8c	-	No
Operating System	siemens	scalance_xr526-8c_firmware	-	Yes
Hardware	siemens	scalance_xr526-8c	-	No
Operating System	siemens	scalance_xr528-6m_firmware	-	Yes
Hardware	siemens	scalance_xr528-6m	-	No
Operating System	siemens	scalance_xr552-12m_firmware	-	Yes
Hardware	siemens	scalance_xr552-12m	-	No
Operating System	siemens	siplus_net_scalance_xc206-2_firmware	-	Yes
Hardware	siemens	siplus_net_scalance_xc206-2	-	No
Operating System	siemens	siplus_net_scalance_xc206-2sfp_firmware	-	Yes
Hardware	siemens	siplus_net_scalance_xc206-2sfp	-	No
Operating System	siemens	siplus_net_scalance_xc208_firmware	-	Yes
Hardware	siemens	siplus_net_scalance_xc208	-	No
Operating System	siemens	siplus_net_scalance_xc216-4c_firmware	-	Yes
Hardware	siemens	siplus_net_scalance_xc216-4c	-	No

References

https://cert-portal.siemens.com/productcert/html/ssa-180704.html ([email protected])
https://cert-portal.siemens.com/productcert/html/ssa-413565.html ([email protected])
https://cert-portal.siemens.com/productcert/pdf/ssa-180704.pdf ([email protected])
https://cert-portal.siemens.com/productcert/pdf/ssa-413565.pdf Vendor Advisory ([email protected])
https://cert-portal.siemens.com/productcert/pdf/ssa-180704.pdf (af854a3a-2127-422b-91ae-364da2661108)
https://cert-portal.siemens.com/productcert/pdf/ssa-413565.pdf Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)