SSA-139628 V1.0: Vulnerabilities in Web Server for Scalance X Products

Published

2021-01-12 00:00:00 UTC

Summary

Several SCALANCE X switches contain vulnerabilities in the web server of the affected devices.

An unauthenticated attacker could reboot, cause denial-of-service conditions and potentially impact the system by other means through heap and buffer overflow vulnerabilities.

Siemens has released updates for several affected products and recommends to update to the latest version(s). Siemens recommends countermeasures where fixes are not currently available.