Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-46143

Affected devices do not check the TFTP blocksize correctly. This could allow an authenticated attacker to read from an uninitialized buffer that potentially contains previously allocated data.

Security Impact Summary

This vulnerability carries a LOW severity rating with a CVSS v3.1 score of 2.7, indicating it can be exploited remotely over the network with relatively low complexity without requiring user interaction . The vulnerability impacts limited data confidentiality, for affected systems. Impacting 202 products from siemens, from siemens, from siemens and 199 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

Reported in 2022, this vulnerability emerged during an era marked by increased sophistication in supply chain attacks, cloud infrastructure vulnerabilities, and software-as-a-service (SaaS) security challenges. Security practices during this period emphasized zero-trust architectures, container security, and API protection.

Published

2022-12-13T16:15:25.137

Last Modified

2025-01-14T11:15:11.840

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 2.7 (LOW)

Weaknesses
  • Type: Secondary
    CWE-1284
  • Type: Secondary
    CWE-1284
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System siemens ruggedcom_rm1224_lte\(4g\)_eu_firmware * Yes
Hardware siemens ruggedcom_rm1224_lte\(4g\)_eu - No
Operating System siemens ruggedcom_rm1224_lte\(4g\)_nam_firmware * Yes
Hardware siemens ruggedcom_rm1224_lte\(4g\)_nam - No
Operating System siemens scalance_m804pb_firmware * Yes
Hardware siemens scalance_m804pb - No
Operating System siemens scalance_m812-1_adsl-router_firmware * Yes
Hardware siemens scalance_m812-1_adsl-router - No
Operating System siemens scalance_m816-1_adsl-router_firmware * Yes
Hardware siemens scalance_m816-1_adsl-router - No
Operating System siemens scalance_m826-2_shdsl-router_firmware * Yes
Hardware siemens scalance_m826-2_shdsl-router - No
Operating System siemens scalance_m874-2_firmware * Yes
Hardware siemens scalance_m874-2 - No
Operating System siemens scalance_m874-3_firmware * Yes
Hardware siemens scalance_m874-3 - No
Operating System siemens scalance_m876-3_firmware * Yes
Hardware siemens scalance_m876-3 - No
Operating System siemens scalance_m876-4_firmware * Yes
Hardware siemens scalance_m876-4 - No
Operating System siemens scalance_mum853-1_firmware * Yes
Hardware siemens scalance_mum853-1 - No
Operating System siemens scalance_mum856-1_firmware * Yes
Hardware siemens scalance_mum856-1 - No
Operating System siemens scalance_s615_firmware * Yes
Hardware siemens scalance_s615 - No
Operating System siemens scalance_s615_eec_firmware * Yes
Hardware siemens scalance_s615_eec - No
Operating System siemens scalance_sc622-2c_firmware < 2.3 Yes
Hardware siemens scalance_sc622-2c - No
Operating System siemens scalance_sc626-2c_firmware < 2.3 Yes
Hardware siemens scalance_sc626-2c - No
Operating System siemens scalance_sc632-2c_firmware < 2.3 Yes
Hardware siemens scalance_sc632-2c - No
Operating System siemens scalance_sc636-2c_firmware < 2.3 Yes
Hardware siemens scalance_sc636-2c - No
Operating System siemens scalance_sc642-2c_firmware < 2.3 Yes
Hardware siemens scalance_sc642-2c - No
Operating System siemens scalance_sc646-2c_firmware < 2.3 Yes
Hardware siemens scalance_sc646-2c - No
Operating System siemens scalance_w721-1_rj45_firmware * Yes
Hardware siemens scalance_w721-1_rj45 - No
Operating System siemens scalance_w722-1_rj45_firmware * Yes
Hardware siemens scalance_w722-1_rj45 - No
Operating System siemens scalance_w734-1_rj45_firmware * Yes
Hardware siemens scalance_w734-1_rj45 - No
Operating System siemens scalance_w738-1_m12_firmware * Yes
Hardware siemens scalance_w738-1_m12 - No
Operating System siemens scalance_w748-1_m12_firmware * Yes
Hardware siemens scalance_w748-1_m12 - No
Operating System siemens scalance_w761-1_rj45_firmware - Yes
Hardware siemens scalance_w761-1_rj45 - No
Operating System siemens scalance_w774-1_m12_eec_firmware - Yes
Hardware siemens scalance_w774-1_m12_eec - No
Operating System siemens scalance_w774-1_m12_rj45_firmware - Yes
Hardware siemens scalance_w774-1_m12_rj45 - No
Operating System siemens scalance_w774-1_rj45_firmware - Yes
Hardware siemens scalance_w774-1_rj45 - No
Operating System siemens scalance_w778-1_m12_firmware - Yes
Hardware siemens scalance_w778-1_m12 - No
Operating System siemens scalance_w778-1_m12_eec_firmware - Yes
Hardware siemens scalance_w778-1_m12_eec - No
Operating System siemens scalance_w786-1_rj45_firmware - Yes
Hardware siemens scalance_w786-1_rj45 - No
Operating System siemens scalance_w786-2_rj45_firmware - Yes
Hardware siemens scalance_w786-2_rj45 - No
Operating System siemens scalance_w786-2_sfp_firmware - Yes
Hardware siemens scalance_w786-2_sfp - No
Operating System siemens scalance_w786-2ia_rj45_firmware - Yes
Hardware siemens scalance_w786-2ia_rj45 - No
Operating System siemens scalance_w788-1_m12_firmware - Yes
Hardware siemens scalance_w788-1_m12 - No
Operating System siemens scalance_w788-1_rj45_firmware - Yes
Hardware siemens scalance_w788-1_rj45 - No
Operating System siemens scalance_w788-2_m12_firmware - Yes
Hardware siemens scalance_w788-2_m12 - No
Operating System siemens scalance_w788-2_m12_eec_firmware - Yes
Hardware siemens scalance_w788-2_m12_eec - No
Operating System siemens scalance_w1748-1_m12_firmware - Yes
Hardware siemens scalance_w1748-1_m12 - No
Operating System siemens scalance_w1788-1_m12_firmware - Yes
Hardware siemens scalance_w1788-1_m12 - No
Operating System siemens scalance_w1788-2_eec_m12_firmware - Yes
Hardware siemens scalance_w1788-2_eec_m12 - No
Operating System siemens scalance_w1788-2_m12_firmware - Yes
Hardware siemens scalance_w1788-2_m12 - No
Operating System siemens scalance_w1788-2ia_m12_firmware - Yes
Hardware siemens scalance_w1788-2ia_m12 - No
Operating System siemens scalance_wam763-1_firmware - Yes
Hardware siemens scalance_wam763-1 - No
Operating System siemens scalance_wam766-1_firmware - Yes
Hardware siemens scalance_wam766-1 - No
Operating System siemens scalance_wam766-1_6ghz_firmware - Yes
Hardware siemens scalance_wam766-1_6ghz - No
Operating System siemens scalance_wam766-1_ecc_firmware - Yes
Hardware siemens scalance_wam766-1_ecc - No
Operating System siemens scalance_wum763-1_firmware - Yes
Hardware siemens scalance_wum763-1 - No
Operating System siemens scalance_wum766-1_firmware - Yes
Hardware siemens scalance_wum766-1 - No
Operating System siemens scalance_wum766-1_6ghz_firmware - Yes
Hardware siemens scalance_wum766-1_6ghz - No
Operating System siemens scalance_xb205-3_firmware - Yes
Hardware siemens scalance_xb205-3 - No
Operating System siemens scalance_xb205-3ld_firmware - Yes
Hardware siemens scalance_xb205-3ld - No
Operating System siemens scalance_xb208_firmware - Yes
Hardware siemens scalance_xb208 - No
Operating System siemens scalance_xb213-3_firmware - Yes
Hardware siemens scalance_xb213-3 - No
Operating System siemens scalance_xb213-3ld_firmware - Yes
Hardware siemens scalance_xb213-3ld - No
Operating System siemens scalance_xb216_firmware - Yes
Hardware siemens scalance_xb216 - No
Operating System siemens scalance_xc206-2_firmware - Yes
Hardware siemens scalance_xc206-2 - No
Operating System siemens scalance_xc206-2g_poe_firmware - Yes
Hardware siemens scalance_xc206-2g_poe - No
Operating System siemens scalance_xc206-2g_poe_eec_firmware - Yes
Hardware siemens scalance_xc206-2g_poe_eec - No
Operating System siemens scalance_xc206-2sfp_firmware - Yes
Hardware siemens scalance_xc206-2sfp - No
Operating System siemens scalance_xc206-2sfp_eec_firmware - Yes
Hardware siemens scalance_xc206-2sfp_eec - No
Operating System siemens scalance_xc206-2sfp_g_firmware - Yes
Hardware siemens scalance_xc206-2sfp_g - No
Operating System siemens scalance_xc206-2sfp_g_eec_firmware - Yes
Hardware siemens scalance_xc206-2sfp_g_eec - No
Operating System siemens scalance_xc208_firmware - Yes
Hardware siemens scalance_xc208 - No
Operating System siemens scalance_xc208_eec_firmware - Yes
Hardware siemens scalance_xc208_eec - No
Operating System siemens scalance_xc208_poe_firmware - Yes
Hardware siemens scalance_xc208_poe - No
Operating System siemens scalance_xc216_firmware - Yes
Hardware siemens scalance_xc216 - No
Operating System siemens scalance_xc216-3g_poe_firmware - Yes
Hardware siemens scalance_xc216-3g_poe - No
Operating System siemens scalance_xc216-4c_firmware - Yes
Hardware siemens scalance_xc216-4c - No
Operating System siemens scalance_xc216-4c_g_firmware - Yes
Hardware siemens scalance_xc216-4c_g - No
Operating System siemens scalance_xc216-4c_g_eec_firmware - Yes
Hardware siemens scalance_xc216-4c_g_eec - No
Operating System siemens scalance_xc216eec_firmware - Yes
Hardware siemens scalance_xc216eec - No
Operating System siemens scalance_xc224_firmware - Yes
Hardware siemens scalance_xc224 - No
Operating System siemens scalance_xc224-4c_g_firmware - Yes
Hardware siemens scalance_xc224-4c_g - No
Operating System siemens scalance_xc224-4c_g_eec_firmware - Yes
Hardware siemens scalance_xc224-4c_g_eec - No
Operating System siemens scalance_xf204_firmware - Yes
Hardware siemens scalance_xf204 - No
Operating System siemens scalance_xf204_dna_firmware - Yes
Hardware siemens scalance_xf204_dna - No
Operating System siemens scalance_xf204-2ba_firmware - Yes
Hardware siemens scalance_xf204-2ba - No
Operating System siemens scalance_xf204-2bca_dna_firmware - Yes
Hardware siemens scalance_xf204-2bca_dna - No
Operating System siemens scalance_xm408-4c_firmware - Yes
Hardware siemens scalance_xm408-4c - No
Operating System siemens scalance_xm408-8c_firmware - Yes
Hardware siemens scalance_xm408-8c - No
Operating System siemens scalance_xm416-4c_firmware - Yes
Hardware siemens scalance_xm416-4c - No
Operating System siemens scalance_xp208_firmware - Yes
Hardware siemens scalance_xp208 - No
Operating System siemens scalance_xp208eec_firmware - Yes
Hardware siemens scalance_xp208eec - No
Operating System siemens scalance_xp208poe_eec_firmware - Yes
Hardware siemens scalance_xp208poe_eec - No
Operating System siemens scalance_xp216_firmware - Yes
Hardware siemens scalance_xp216 - No
Operating System siemens scalance_xp216eec_firmware - Yes
Hardware siemens scalance_xp216eec - No
Operating System siemens scalance_xp216poe_eec_firmware - Yes
Hardware siemens scalance_xp216poe_eec - No
Operating System siemens scalance_xr324wg_firmware - Yes
Hardware siemens scalance_xr324wg - No
Operating System siemens scalance_xr326-2c_firmware - Yes
Hardware siemens scalance_xr326-2c - No
Operating System siemens scalance_xr326-2c_poe_firmware - Yes
Hardware siemens scalance_xr326-2c_poe - No
Operating System siemens scalance_xr328-4c_wg_firmware - Yes
Hardware siemens scalance_xr328-4c_wg - No
Operating System siemens scalance_xr524-8c_firmware - Yes
Hardware siemens scalance_xr524-8c - No
Operating System siemens scalance_xr526-8c_firmware - Yes
Hardware siemens scalance_xr526-8c - No
Operating System siemens scalance_xr528-6m_firmware - Yes
Hardware siemens scalance_xr528-6m - No
Operating System siemens scalance_xr552-12m_firmware - Yes
Hardware siemens scalance_xr552-12m - No
Operating System siemens siplus_net_scalance_xc206-2_firmware - Yes
Hardware siemens siplus_net_scalance_xc206-2 - No
Operating System siemens siplus_net_scalance_xc206-2sfp_firmware - Yes
Hardware siemens siplus_net_scalance_xc206-2sfp - No
Operating System siemens siplus_net_scalance_xc208_firmware - Yes
Hardware siemens siplus_net_scalance_xc208 - No
Operating System siemens siplus_net_scalance_xc216-4c_firmware - Yes
Hardware siemens siplus_net_scalance_xc216-4c - No
References

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For siemens's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.