SSA-447396 (Last Update: 2020-02-10): Denial-of-Service in SCALANCE X-300, SCALANCE X408 and SCALANCE X414

Published

2020-02-10 00:00:00 UTC

Summary

A vulnerability has been identified in the integrated web server of SCALANCE X300, SCALANCE X408, and SCALANCE X414. The vulnerability could allow an attacker with network access to the device to cause a Denial-of-Service condition.

The vulnerability can be triggered with publicly available tools, including vulnerability scanners.

Siemens provides updates for SCALANCE X300, and SCALANCE X408, and provides mitigations for the SCALANCE X414.