SSA-139628 V1.0: Vulnerabilities in Web Server for Scalance X Products


2021-01-12 00:00:00 UTC


Several SCALANCE X switches contain vulnerabilities in the web server of the affected devices.

An unauthenticated attacker could reboot, cause denial-of-service conditions and potentially impact the system by other means through heap and buffer overflow vulnerabilities.

Siemens has released updates for several affected products and recommends to update to the latest version(s). Siemens recommends countermeasures where fixes are not currently available.