cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score CVE-2023-29054,https://securityvulnerability.io/vulnerability/CVE-2023-29054,Weak SSH Cipher Configuration in SCALANCE X200 and X201 Series by Siemens,"A vulnerability exists in multiple models of the SCALANCE series by Siemens, where the SSH server is improperly configured to use weak cryptographic ciphers by default. This misconfiguration poses a significant risk as it potentially allows unauthorized attackers to intercept and modify data between legitimate clients and the affected devices, facilitating man-in-the-middle attacks. Users are advised to upgrade to version V5.5.2 or later to mitigate these risks. For detailed information, please refer to the official Siemens advisory.",Siemens,"SCALANCE X200-4P IRT,SCALANCE X201-3P IRT,SCALANCE X201-3P IRT PRO,SCALANCE X202-2IRT,SCALANCE X202-2P IRT,SCALANCE X202-2P IRT PRO,SCALANCE X204IRT,SCALANCE X204IRT PRO,SCALANCE XF201-3P IRT,SCALANCE XF202-2P IRT,SCALANCE XF204-2BA IRT,SCALANCE XF204IRT,SIPLUS NET SCALANCE X202-2P IRT",7.4,HIGH,0.0007999999797903001,false,,false,false,false,,false,false,2023-04-11T10:15:00.000Z,0 CVE-2022-40631,https://securityvulnerability.io/vulnerability/CVE-2022-40631,Cross-Site Scripting Vulnerability in Siemens SCALANCE Series Devices,"A cross-site scripting (XSS) vulnerability exists in various Siemens SCALANCE devices, impacting versions prior to V5.5.0 or V5.2.5. If exploited, this vulnerability could allow an attacker to perform session hijacking, compromising user sessions and potentially gaining unauthorized access to sensitive information. It is critical for users of these devices to upgrade to the latest versions to mitigate this risk actively.",Siemens,"Scalance X200-4p Irt,Scalance X201-3p Irt,Scalance X201-3p Irt Pro,Scalance X202-2irt,Scalance X202-2p Irt,Scalance X202-2p Irt Pro,Scalance X204-2,Scalance X204-2fm,Scalance X204-2ld,Scalance X204-2ld Ts,Scalance X204-2ts,Scalance X204irt,Scalance X204irt Pro,Scalance X206-1,Scalance X206-1ld,Scalance X208,Scalance X208pro,Scalance X212-2,Scalance X212-2ld,Scalance X216,Scalance X224,Scalance Xf201-3p Irt,Scalance Xf202-2p Irt,Scalance Xf204,Scalance Xf204-2,Scalance Xf204-2ba Irt,Scalance Xf204irt,Scalance Xf206-1,Scalance Xf208,Siplus Net Scalance X202-2p Irt",6.1,MEDIUM,0.0007200000109151006,false,,false,false,false,,false,false,2022-10-11T00:00:00.000Z,0 CVE-2022-26649,https://securityvulnerability.io/vulnerability/CVE-2022-26649,Unvalidated URI Vulnerability in SCALANCE X200 and X201 Series by Siemens,"A vulnerability in Siemens SCALANCE devices allows incoming HTTP GET requests to bypass proper URI validation. This flaw can be exploited by unauthenticated remote attackers, potentially leading to the crashing of affected devices. The vulnerability affects several models across the SCALANCE X200, X201, and XF series, particularly those running versions prior to V5.5.2 and V5.2.6. It is recommended that users update to the latest software versions to mitigate this risk.",Siemens,"Scalance X200-4p Irt,Scalance X201-3p Irt,Scalance X201-3p Irt Pro,Scalance X202-2irt,Scalance X202-2p Irt,Scalance X202-2p Irt Pro,Scalance X204-2,Scalance X204-2fm,Scalance X204-2ld,Scalance X204-2ld Ts,Scalance X204-2ts,Scalance X204irt,Scalance X204irt Pro,Scalance X206-1,Scalance X206-1ld,Scalance X208,Scalance X208pro,Scalance X212-2,Scalance X212-2ld,Scalance X216,Scalance X224,Scalance Xf201-3p Irt,Scalance Xf202-2p Irt,Scalance Xf204,Scalance Xf204-2,Scalance Xf204-2ba Irt,Scalance Xf204irt,Scalance Xf206-1,Scalance Xf208",9.6,CRITICAL,0.0005099999834783375,false,,false,false,false,,false,false,2022-07-12T10:06:35.000Z,0 CVE-2022-26648,https://securityvulnerability.io/vulnerability/CVE-2022-26648,Remote Code Execution Vulnerability in Siemens SCALANCE Devices,"A vulnerability exists in various Siemens SCALANCE devices where affected versions fail to validate the GET parameter 'XNo' from incoming HTTP requests. This oversight can permit an unauthenticated remote attacker to exploit the device's functionality, potentially resulting in a device crash and service interruption. Organizations using these devices should urgently apply the necessary updates to lessen risk.",Siemens,"Scalance X200-4p Irt,Scalance X201-3p Irt,Scalance X201-3p Irt Pro,Scalance X202-2irt,Scalance X202-2p Irt,Scalance X202-2p Irt Pro,Scalance X204-2,Scalance X204-2fm,Scalance X204-2ld,Scalance X204-2ld Ts,Scalance X204-2ts,Scalance X204irt,Scalance X204irt Pro,Scalance X206-1,Scalance X206-1ld,Scalance X208,Scalance X208pro,Scalance X212-2,Scalance X212-2ld,Scalance X216,Scalance X224,Scalance Xf201-3p Irt,Scalance Xf202-2p Irt,Scalance Xf204,Scalance Xf204-2,Scalance Xf204-2ba Irt,Scalance Xf204irt,Scalance Xf206-1,Scalance Xf208",8.2,HIGH,0.0005099999834783375,false,,false,false,false,,false,false,2022-07-12T10:06:34.000Z,0 CVE-2022-26647,https://securityvulnerability.io/vulnerability/CVE-2022-26647,Insecure Session ID Generation in Siemens SCALANCE Products,"A vulnerability exists in various Siemens SCALANCE devices, where the web server generates session IDs and nonces using insecure methods. This flaw allows unauthenticated remote attackers to potentially brute-force session IDs, leading to session hijacking. Users of affected products should promptly apply available patches to mitigate risks associated with this vulnerability. For detailed information, refer to the advisory from Siemens.",Siemens,"Scalance X200-4p Irt,Scalance X201-3p Irt,Scalance X201-3p Irt Pro,Scalance X202-2irt,Scalance X202-2p Irt,Scalance X202-2p Irt Pro,Scalance X204-2,Scalance X204-2fm,Scalance X204-2ld,Scalance X204-2ld Ts,Scalance X204-2ts,Scalance X204irt,Scalance X204irt Pro,Scalance X206-1,Scalance X206-1ld,Scalance X208,Scalance X208pro,Scalance X212-2,Scalance X212-2ld,Scalance X216,Scalance X224,Scalance Xf201-3p Irt,Scalance Xf202-2p Irt,Scalance Xf204,Scalance Xf204-2,Scalance Xf204-2ba Irt,Scalance Xf204irt,Scalance Xf206-1,Scalance Xf208",8.8,HIGH,0.0005099999834783375,false,,false,false,false,,false,false,2022-07-12T10:06:32.000Z,0 CVE-2020-28400,https://securityvulnerability.io/vulnerability/CVE-2020-28400,,Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a denial of service condition. The vulnerability can be triggered if a large amount of DCP reset packets are sent to the device.,Siemens,"Development/evaluation Kits For Profinet Io: Dk Standard Ethernet Controller,Development/evaluation Kits For Profinet Io: Ek-ertec 200,Development/evaluation Kits For Profinet Io: Ek-ertec 200p,Ruggedcom Rm1224 Lte(4g) Eu,Ruggedcom Rm1224 Lte(4g) Nam,Scalance M804pb,Scalance M812-1 Adsl-router,Scalance M816-1 Adsl-router,Scalance M826-2 Shdsl-router,Scalance M874-2,Scalance M874-3,Scalance M874-3 3g-router (cn),Scalance M876-3,Scalance M876-3 (rok),Scalance M876-4,Scalance M876-4 (eu),Scalance M876-4 (nam),Scalance Mum853-1 (a1),Scalance Mum853-1 (b1),Scalance Mum853-1 (eu),Scalance Mum856-1 (a1),Scalance Mum856-1 (b1),Scalance Mum856-1 (cn),Scalance Mum856-1 (eu),Scalance Mum856-1 (row),Scalance S615 Eec Lan-router,Scalance S615 Lan-router,Scalance W1748-1 M12,Scalance W1788-1 M12,Scalance W1788-2 Eec M12,Scalance W1788-2 M12,Scalance W1788-2ia M12,Scalance W721-1 Rj45,Scalance W722-1 Rj45,Scalance W734-1 Rj45,Scalance W734-1 Rj45 (usa),Scalance W738-1 M12,Scalance W748-1 M12,Scalance W748-1 Rj45,Scalance W761-1 Rj45,Scalance W774-1 M12 Eec,Scalance W774-1 Rj45,Scalance W774-1 Rj45 (usa),Scalance W778-1 M12,Scalance W778-1 M12 Eec,Scalance W778-1 M12 Eec (usa),Scalance W786-1 Rj45,Scalance W786-2 Rj45,Scalance W786-2 Sfp,Scalance W786-2ia Rj45,Scalance W788-1 M12,Scalance W788-1 Rj45,Scalance W788-2 M12,Scalance W788-2 M12 Eec,Scalance W788-2 Rj45,Scalance X200-4p Irt,Scalance X201-3p Irt,Scalance X201-3p Irt Pro,Scalance X202-2irt,Scalance X202-2p Irt,Scalance X202-2p Irt Pro,Scalance X204-2,Scalance X204-2fm,Scalance X204-2ld,Scalance X204-2ld Ts,Scalance X204-2ts,Scalance X204irt,Scalance X204irt Pro,Scalance X206-1,Scalance X206-1ld,Scalance X208,Scalance X208pro,Scalance X212-2,Scalance X212-2ld,Scalance X216,Scalance X224,Scalance X302-7 Eec (230v, Coated),Scalance X302-7 Eec (230v),Scalance X302-7 Eec (24v, Coated),Scalance X302-7 Eec (24v),Scalance X302-7 Eec (2x 230v, Coated),Scalance X302-7 Eec (2x 230v),Scalance X302-7 Eec (2x 24v, Coated),Scalance X302-7 Eec (2x 24v),Scalance X304-2fe,Scalance X306-1ld Fe,Scalance X307-2 Eec (230v, Coated),Scalance X307-2 Eec (230v),Scalance X307-2 Eec (24v, Coated),Scalance X307-2 Eec (24v),Scalance X307-2 Eec (2x 230v, Coated),Scalance X307-2 Eec (2x 230v),Scalance X307-2 Eec (2x 24v, Coated),Scalance X307-2 Eec (2x 24v),Scalance X307-3,Scalance X307-3ld,Scalance X308-2,Scalance X308-2ld,Scalance X308-2lh,Scalance X308-2lh+,Scalance X308-2m,Scalance X308-2m Poe,Scalance X308-2m Ts,Scalance X310,Scalance X310fe,Scalance X320-1 Fe,Scalance X320-1-2ld Fe,Scalance X408-2,Scalance Xb205-3 (sc, Pn),Scalance Xb205-3 (st, E/ip),Scalance Xb205-3 (st, Pn),Scalance Xb205-3ld (sc, E/ip),Scalance Xb205-3ld (sc, Pn),Scalance Xb208 (e/ip),Scalance Xb208 (pn),Scalance Xb213-3 (sc, E/ip),Scalance Xb213-3 (sc, Pn),Scalance Xb213-3 (st, E/ip),Scalance Xb213-3 (st, Pn),Scalance Xb213-3ld (sc, E/ip),Scalance Xb213-3ld (sc, Pn),Scalance Xb216 (e/ip),Scalance Xb216 (pn),Scalance Xc206-2 (sc),Scalance Xc206-2 (st/bfoc),Scalance Xc206-2g Poe,Scalance Xc206-2g Poe (54 V Dc),Scalance Xc206-2g Poe Eec (54 V Dc),Scalance Xc206-2sfp,Scalance Xc206-2sfp Eec,Scalance Xc206-2sfp G,Scalance Xc206-2sfp G (eip Def.),Scalance Xc206-2sfp G Eec,Scalance Xc208,Scalance Xc208eec,Scalance Xc208g,Scalance Xc208g (eip Def.),Scalance Xc208g Eec,Scalance Xc208g Poe,Scalance Xc208g Poe (54 V Dc),Scalance Xc216,Scalance Xc216-3g Poe,Scalance Xc216-3g Poe (54 V Dc),Scalance Xc216-4c,Scalance Xc216-4c G,Scalance Xc216-4c G (eip Def.),Scalance Xc216-4c G Eec,Scalance Xc216eec,Scalance Xc224,Scalance Xc224-4c G,Scalance Xc224-4c G (eip Def.),Scalance Xc224-4c G Eec,Scalance Xf201-3p Irt,Scalance Xf202-2p Irt,Scalance Xf204,Scalance Xf204 Dna,Scalance Xf204-2,Scalance Xf204-2ba,Scalance Xf204-2ba Dna,Scalance Xf204-2ba Irt,Scalance Xf204irt,Scalance Xf206-1,Scalance Xf208,Scalance Xm408-4c,Scalance Xm408-4c (l3 Int.),Scalance Xm408-8c,Scalance Xm408-8c (l3 Int.),Scalance Xm416-4c,Scalance Xm416-4c (l3 Int.),Scalance Xp208,Scalance Xp208 (ethernet/ip),Scalance Xp208eec,Scalance Xp208poe Eec,Scalance Xp216,Scalance Xp216 (ethernet/ip),Scalance Xp216eec,Scalance Xp216poe Eec,Scalance Xr324-12m (230v, Ports On Front),Scalance Xr324-12m (230v, Ports On Rear),Scalance Xr324-12m (24v, Ports On Front),Scalance Xr324-12m (24v, Ports On Rear),Scalance Xr324-12m Ts (24v),Scalance Xr324-4m Eec (100-240vac/60-250vdc, Ports On Front),Scalance Xr324-4m Eec (100-240vac/60-250vdc, Ports On Rear),Scalance Xr324-4m Eec (24v, Ports On Front),Scalance Xr324-4m Eec (24v, Ports On Rear),Scalance Xr324-4m Eec (2x 100-240vac/60-250vdc, Ports On Front),Scalance Xr324-4m Eec (2x 100-240vac/60-250vdc, Ports On Rear),Scalance Xr324-4m Eec (2x 24v, Ports On Front),Scalance Xr324-4m Eec (2x 24v, Ports On Rear),Scalance Xr324-4m Poe (230v, Ports On Front),Scalance Xr324-4m Poe (230v, Ports On Rear),Scalance Xr324-4m Poe (24v, Ports On Front),Scalance Xr324-4m Poe (24v, Ports On Rear),Scalance Xr324-4m Poe Ts (24v, Ports On Front),Scalance Xr324wg (24 X Fe, Ac 230v),Scalance Xr324wg (24 X Fe, Dc 24v),Scalance Xr326-2c Poe Wg,Scalance Xr326-2c Poe Wg (without Ul),Scalance Xr328-4c Wg (24xfe, 4xge, 24v),Scalance Xr328-4c Wg (24xfe, 4xge,dc24v),Scalance Xr328-4c Wg (24xfe,4xge,ac230v),Scalance Xr328-4c Wg (28xge, Ac 230v),Scalance Xr328-4c Wg (28xge, Dc 24v),Scalance Xr524-8c, 1x230v,Scalance Xr524-8c, 1x230v (l3 Int.),Scalance Xr524-8c, 24v,Scalance Xr524-8c, 24v (l3 Int.),Scalance Xr524-8c, 2x230v,Scalance Xr524-8c, 2x230v (l3 Int.),Scalance Xr526-8c, 1x230v,Scalance Xr526-8c, 1x230v (l3 Int.),Scalance Xr526-8c, 24v,Scalance Xr526-8c, 24v (l3 Int.),Scalance Xr526-8c, 2x230v,Scalance Xr526-8c, 2x230v (l3 Int.),Scalance Xr528-6m,Scalance Xr528-6m (2hr2, L3 Int.),Scalance Xr528-6m (2hr2),Scalance Xr528-6m (l3 Int.),Scalance Xr552-12m,Scalance Xr552-12m (2hr2, L3 Int.),Scalance Xr552-12m (2hr2),Simatic Cfu Diq,Simatic Cfu Pa,Simatic Cm 1542-1,Simatic Cp 1604,Simatic Cp 1616,Simatic Cp 1626,Simatic Ie/pb-link,Simatic Mv540 H,Simatic Mv540 S,Simatic Mv550 H,Simatic Mv550 S,Simatic Mv560 U,Simatic Mv560 X,Simatic Net Dk-16xx Pn Io,Simatic Power Line Booster Plb, Base Module,Simatic Profinet Driver,Simatic S7-1200 Cpu Family (incl. Siplus Variants),Simocode Pro V Ethernet/ip (incl. Siplus Variants),Simocode Pro V Profinet (incl. Siplus Variants),Siplus Net Scalance X308-2,Siplus Net Scalance Xc206-2,Siplus Net Scalance Xc206-2sfp,Siplus Net Scalance Xc208,Siplus Net Scalance Xc216-4c,Softnet-ie Pnio",7.5,HIGH,0.002850000048056245,false,,false,false,false,,false,false,2021-07-13T11:02:49.000Z,0 CVE-2021-25669,https://securityvulnerability.io/vulnerability/CVE-2021-25669,,"A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT PRO (All versions < 5.5.1), SCALANCE X202-2 IRT (All versions < 5.5.1), SCALANCE X202-2P IRT (incl. SIPLUS NET variant) (All versions < 5.5.1), SCALANCE X202-2P IRT PRO (All versions < 5.5.1), SCALANCE X204 IRT (All versions < 5.5.1), SCALANCE X204 IRT PRO (All versions < 5.5.1), SCALANCE X204-2 (incl. SIPLUS NET variant) (All versions < V5.2.5), SCALANCE X204-2FM (All versions < V5.2.5), SCALANCE X204-2LD (incl. SIPLUS NET variant) (All versions < V5.2.5), SCALANCE X204-2LD TS (All versions < V5.2.5), SCALANCE X204-2TS (All versions < V5.2.5), SCALANCE X206-1 (All versions < V5.2.5), SCALANCE X206-1LD (All versions < V5.2.5), SCALANCE X208 (incl. SIPLUS NET variant) (All versions < V5.2.5), SCALANCE X208PRO (All versions < V5.2.5), SCALANCE X212-2 (incl. SIPLUS NET variant) (All versions < V5.2.5), SCALANCE X212-2LD (All versions < V5.2.5), SCALANCE X216 (All versions < V5.2.5), SCALANCE X224 (All versions < V5.2.5), SCALANCE XF201-3P IRT (All versions < 5.5.1), SCALANCE XF202-2P IRT (All versions < 5.5.1), SCALANCE XF204 (All versions < V5.2.5), SCALANCE XF204 IRT (All versions < 5.5.1), SCALANCE XF204-2 (incl. SIPLUS NET variant) (All versions < V5.2.5), SCALANCE XF204-2BA IRT (All versions < 5.5.1), SCALANCE XF206-1 (All versions < V5.2.5), SCALANCE XF208 (All versions < V5.2.5). Incorrect processing of POST requests in the web server may write out of bounds in stack. An attacker might leverage this to denial-of-service of the device or remote code execution.",Siemens,"Scalance X200-4p Irt,Scalance X201-3p Irt,Scalance X201-3p Irt Pro,Scalance X202-2 Irt,Scalance X202-2p Irt (incl. Siplus Net Variant),Scalance X202-2p Irt Pro,Scalance X204 Irt,Scalance X204 Irt Pro,Scalance X204-2 (incl. Siplus Net Variant),Scalance X204-2fm,Scalance X204-2ld (incl. Siplus Net Variant),Scalance X204-2ld Ts,Scalance X204-2ts,Scalance X206-1,Scalance X206-1ld,Scalance X208 (incl. Siplus Net Variant),Scalance X208pro,Scalance X212-2 (incl. Siplus Net Variant),Scalance X212-2ld,Scalance X216,Scalance X224,Scalance Xf201-3p Irt,Scalance Xf202-2p Irt,Scalance Xf204,Scalance Xf204 Irt,Scalance Xf204-2 (incl. Siplus Net Variant),Scalance Xf204-2ba Irt,Scalance Xf206-1,Scalance Xf208",9.8,CRITICAL,0.007910000160336494,false,,false,false,false,,false,false,2021-04-22T20:42:20.000Z,0 CVE-2021-25668,https://securityvulnerability.io/vulnerability/CVE-2021-25668,,"A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT PRO (All versions < 5.5.1), SCALANCE X202-2 IRT (All versions < 5.5.1), SCALANCE X202-2P IRT (incl. SIPLUS NET variant) (All versions < 5.5.1), SCALANCE X202-2P IRT PRO (All versions < 5.5.1), SCALANCE X204 IRT (All versions < 5.5.1), SCALANCE X204 IRT PRO (All versions < 5.5.1), SCALANCE X204-2 (incl. SIPLUS NET variant) (All versions < V5.2.5), SCALANCE X204-2FM (All versions < V5.2.5), SCALANCE X204-2LD (incl. SIPLUS NET variant) (All versions < V5.2.5), SCALANCE X204-2LD TS (All versions < V5.2.5), SCALANCE X204-2TS (All versions < V5.2.5), SCALANCE X206-1 (All versions < V5.2.5), SCALANCE X206-1LD (All versions < V5.2.5), SCALANCE X208 (incl. SIPLUS NET variant) (All versions < V5.2.5), SCALANCE X208PRO (All versions < V5.2.5), SCALANCE X212-2 (incl. SIPLUS NET variant) (All versions < V5.2.5), SCALANCE X212-2LD (All versions < V5.2.5), SCALANCE X216 (All versions < V5.2.5), SCALANCE X224 (All versions < V5.2.5), SCALANCE XF201-3P IRT (All versions < 5.5.1), SCALANCE XF202-2P IRT (All versions < 5.5.1), SCALANCE XF204 (All versions < V5.2.5), SCALANCE XF204 IRT (All versions < 5.5.1), SCALANCE XF204-2 (incl. SIPLUS NET variant) (All versions < V5.2.5), SCALANCE XF204-2BA IRT (All versions < 5.5.1), SCALANCE XF206-1 (All versions < V5.2.5), SCALANCE XF208 (All versions < V5.2.5). Incorrect processing of POST requests in the webserver may result in write out of bounds in heap. An attacker might leverage this to cause denial-of-service on the device and potentially remotely execute code.",Siemens,"Scalance X200-4p Irt,Scalance X201-3p Irt,Scalance X201-3p Irt Pro,Scalance X202-2 Irt,Scalance X202-2p Irt (incl. Siplus Net Variant),Scalance X202-2p Irt Pro,Scalance X204 Irt,Scalance X204 Irt Pro,Scalance X204-2 (incl. Siplus Net Variant),Scalance X204-2fm,Scalance X204-2ld (incl. Siplus Net Variant),Scalance X204-2ld Ts,Scalance X204-2ts,Scalance X206-1,Scalance X206-1ld,Scalance X208 (incl. Siplus Net Variant),Scalance X208pro,Scalance X212-2 (incl. Siplus Net Variant),Scalance X212-2ld,Scalance X216,Scalance X224,Scalance Xf201-3p Irt,Scalance Xf202-2p Irt,Scalance Xf204,Scalance Xf204 Irt,Scalance Xf204-2 (incl. Siplus Net Variant),Scalance Xf204-2ba Irt,Scalance Xf206-1,Scalance Xf208",9.8,CRITICAL,0.0023399998899549246,false,,false,false,false,,false,false,2021-04-22T20:42:20.000Z,0 CVE-2019-19301,https://securityvulnerability.io/vulnerability/CVE-2019-19301,,"A vulnerability has been identified in SCALANCE X200-4P IRT, SCALANCE X201-3P IRT, SCALANCE X201-3P IRT PRO, SCALANCE X202-2IRT, SCALANCE X202-2P IRT, SCALANCE X202-2P IRT PRO, SCALANCE X204-2, SCALANCE X204-2FM, SCALANCE X204-2LD, SCALANCE X204-2LD TS, SCALANCE X204-2TS, SCALANCE X204IRT, SCALANCE X204IRT PRO, SCALANCE X206-1, SCALANCE X206-1LD, SCALANCE X208, SCALANCE X208PRO, SCALANCE X212-2, SCALANCE X212-2LD, SCALANCE X216, SCALANCE X224, SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (24V, coated), SCALANCE X302-7 EEC (24V), SCALANCE X302-7 EEC (2x 230V, coated), SCALANCE X302-7 EEC (2x 230V), SCALANCE X302-7 EEC (2x 24V, coated), SCALANCE X302-7 EEC (2x 24V), SCALANCE X304-2FE, SCALANCE X306-1LD FE, SCALANCE X307-2 EEC (230V, coated), SCALANCE X307-2 EEC (230V), SCALANCE X307-2 EEC (24V, coated), SCALANCE X307-2 EEC (24V), SCALANCE X307-2 EEC (2x 230V, coated), SCALANCE X307-2 EEC (2x 230V), SCALANCE X307-2 EEC (2x 24V, coated), SCALANCE X307-2 EEC (2x 24V), SCALANCE X307-3, SCALANCE X307-3, SCALANCE X307-3LD, SCALANCE X307-3LD, SCALANCE X308-2, SCALANCE X308-2, SCALANCE X308-2LD, SCALANCE X308-2LD, SCALANCE X308-2LH, SCALANCE X308-2LH, SCALANCE X308-2LH+, SCALANCE X308-2LH+, SCALANCE X308-2M, SCALANCE X308-2M, SCALANCE X308-2M PoE, SCALANCE X308-2M PoE, SCALANCE X308-2M TS, SCALANCE X308-2M TS, SCALANCE X310, SCALANCE X310, SCALANCE X310FE, SCALANCE X310FE, SCALANCE X320-1 FE, SCALANCE X320-1-2LD FE, SCALANCE X408-2, SCALANCE XF201-3P IRT, SCALANCE XF202-2P IRT, SCALANCE XF204, SCALANCE XF204-2, SCALANCE XF204-2BA IRT, SCALANCE XF204IRT, SCALANCE XF206-1, SCALANCE XF208, SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on front), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (230V, ports on rear), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on front), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M (24V, ports on rear), SCALANCE XR324-12M TS (24V), SCALANCE XR324-12M TS (24V), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on front), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (24V, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on front), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M EEC (2x 24V, ports on rear), SCALANCE XR324-4M PoE (230V, ports on front), SCALANCE XR324-4M PoE (230V, ports on rear), SCALANCE XR324-4M PoE (24V, ports on front), SCALANCE XR324-4M PoE (24V, ports on rear), SCALANCE XR324-4M PoE TS (24V, ports on front), SIMATIC CP 343-1 Advanced, SIMATIC CP 442-1 RNA, SIMATIC CP 443-1, SIMATIC CP 443-1, SIMATIC CP 443-1 Advanced, SIMATIC CP 443-1 RNA, SIMATIC RF180C, SIMATIC RF182C, SIPLUS NET CP 343-1 Advanced, SIPLUS NET CP 443-1, SIPLUS NET CP 443-1 Advanced, SIPLUS NET SCALANCE X308-2. The VxWorks-based Profinet TCP Stack can be forced to make very expensive calls for every incoming packet which can lead to a denial of service.",Siemens,"Scalance X200-4p Irt,Scalance X201-3p Irt,Scalance X201-3p Irt Pro,Scalance X202-2irt,Scalance X202-2p Irt,Scalance X202-2p Irt Pro,Scalance X204-2,Scalance X204-2fm,Scalance X204-2ld,Scalance X204-2ld Ts,Scalance X204-2ts,Scalance X204irt,Scalance X204irt Pro,Scalance X206-1,Scalance X206-1ld,Scalance X208,Scalance X208pro,Scalance X212-2,Scalance X212-2ld,Scalance X216,Scalance X224,Scalance X302-7 Eec (230v, Coated),Scalance X302-7 Eec (230v),Scalance X302-7 Eec (24v, Coated),Scalance X302-7 Eec (24v),Scalance X302-7 Eec (2x 230v, Coated),Scalance X302-7 Eec (2x 230v),Scalance X302-7 Eec (2x 24v, Coated),Scalance X302-7 Eec (2x 24v),Scalance X304-2fe,Scalance X306-1ld Fe,Scalance X307-2 Eec (230v, Coated),Scalance X307-2 Eec (230v),Scalance X307-2 Eec (24v, Coated),Scalance X307-2 Eec (24v),Scalance X307-2 Eec (2x 230v, Coated),Scalance X307-2 Eec (2x 230v),Scalance X307-2 Eec (2x 24v, Coated),Scalance X307-2 Eec (2x 24v),Scalance X307-3,Scalance X307-3ld,Scalance X308-2,Scalance X308-2ld,Scalance X308-2lh,Scalance X308-2lh+,Scalance X308-2m,Scalance X308-2m Poe,Scalance X308-2m Ts,Scalance X310,Scalance X310fe,Scalance X320-1 Fe,Scalance X320-1-2ld Fe,Scalance X408-2,Scalance Xf201-3p Irt,Scalance Xf202-2p Irt,Scalance Xf204,Scalance Xf204-2,Scalance Xf204-2ba Irt,Scalance Xf204irt,Scalance Xf206-1,Scalance Xf208,Scalance Xr324-12m (230v, Ports On Front),Scalance Xr324-12m (230v, Ports On Rear),Scalance Xr324-12m (24v, Ports On Front),Scalance Xr324-12m (24v, Ports On Rear),Scalance Xr324-12m Ts (24v),Scalance Xr324-4m Eec (100-240vac/60-250vdc, Ports On Front),Scalance Xr324-4m Eec (100-240vac/60-250vdc, Ports On Rear),Scalance Xr324-4m Eec (24v, Ports On Front),Scalance Xr324-4m Eec (24v, Ports On Rear),Scalance Xr324-4m Eec (2x 100-240vac/60-250vdc, Ports On Front),Scalance Xr324-4m Eec (2x 100-240vac/60-250vdc, Ports On Rear),Scalance Xr324-4m Eec (2x 24v, Ports On Front),Scalance Xr324-4m Eec (2x 24v, Ports On Rear),Scalance Xr324-4m Poe (230v, Ports On Front),Scalance Xr324-4m Poe (230v, Ports On Rear),Scalance Xr324-4m Poe (24v, Ports On Front),Scalance Xr324-4m Poe (24v, Ports On Rear),Scalance Xr324-4m Poe Ts (24v, Ports On Front),Simatic Cp 343-1 Advanced,Simatic Cp 442-1 Rna,Simatic Cp 443-1,Simatic Cp 443-1 Advanced,Simatic Cp 443-1 Rna,Simatic Rf180c,Simatic Rf182c,Siplus Net Cp 343-1 Advanced,Siplus Net Cp 443-1,Siplus Net Cp 443-1 Advanced,Siplus Net Scalance X308-2",7.5,HIGH,0.0010600000387057662,false,,false,false,false,,false,false,2020-04-14T19:50:54.000Z,0 CVE-2019-13946,https://securityvulnerability.io/vulnerability/CVE-2019-13946,,"Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lead to a denial of service condition due to lack of memory for devices that include a vulnerable version of the stack. The security vulnerability could be exploited by an attacker with network access to an affected device. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise the availability of the device.",Siemens,"Development/evaluation Kits For Profinet Io: Dk Standard Ethernet Controller,Development/evaluation Kits For Profinet Io: Ek-ertec 200,Development/evaluation Kits For Profinet Io: Ek-ertec 200p,Profinet Driver For Controller,Ruggedcom Rm1224 Family,Scalance M804pb,Scalance M812-1 Adsl-router,Scalance M816-1 Adsl-router,Scalance M826-2 Shdsl-router,Scalance M874-2,Scalance M874-3,Scalance M876-3,Scalance M876-3 (rok),Scalance M876-4 (eu),Scalance M876-4 (nam),Scalance S615 Lan-router,Scalance W-700 Ieee 802.11n Family,Scalance X200-4p Irt,Scalance X201-3p Irt,Scalance X201-3p Irt Pro,Scalance X202-2irt,Scalance X202-2p Irt,Scalance X202-2p Irt Pro,Scalance X204-2,Scalance X204-2fm,Scalance X204-2ld,Scalance X204-2ld Ts,Scalance X204-2ts,Scalance X204irt,Scalance X204irt Pro,Scalance X206-1,Scalance X206-1ld,Scalance X208,Scalance X208pro,Scalance X212-2,Scalance X212-2ld,Scalance X216,Scalance X224,Scalance X302-7 Eec (230v, Coated),Scalance X302-7 Eec (230v),Scalance X302-7 Eec (24v, Coated),Scalance X302-7 Eec (24v),Scalance X302-7 Eec (2x 230v, Coated),Scalance X302-7 Eec (2x 230v),Scalance X302-7 Eec (2x 24v, Coated),Scalance X302-7 Eec (2x 24v),Scalance X304-2fe,Scalance X306-1ld Fe,Scalance X307-2 Eec (230v, Coated),Scalance X307-2 Eec (230v),Scalance X307-2 Eec (24v, Coated),Scalance X307-2 Eec (24v),Scalance X307-2 Eec (2x 230v, Coated),Scalance X307-2 Eec (2x 230v),Scalance X307-2 Eec (2x 24v, Coated),Scalance X307-2 Eec (2x 24v),Scalance X307-3,Scalance X307-3ld,Scalance X308-2,Scalance X308-2ld,Scalance X308-2lh,Scalance X308-2lh+,Scalance X308-2m,Scalance X308-2m Poe,Scalance X308-2m Ts,Scalance X310,Scalance X310fe,Scalance X320-1 Fe,Scalance X320-1-2ld Fe,Scalance X408-2,Scalance Xb-200 Family,Scalance Xc-200,Scalance Xf-200ba,Scalance Xf201-3p Irt,Scalance Xf202-2p Irt,Scalance Xf204,Scalance Xf204-2,Scalance Xf204-2ba Irt,Scalance Xf204irt,Scalance Xf206-1,Scalance Xf208,Scalance Xm-400 Family,Scalance Xp-200,Scalance Xr-300wg Family,Scalance Xr-500 Family,Scalance Xr324-12m (230v, Ports On Front),Scalance Xr324-12m (230v, Ports On Rear),Scalance Xr324-12m (24v, Ports On Front),Scalance Xr324-12m (24v, Ports On Rear),Scalance Xr324-12m Ts (24v),Scalance Xr324-4m Eec (100-240vac/60-250vdc, Ports On Front),Scalance Xr324-4m Eec (100-240vac/60-250vdc, Ports On Rear),Scalance Xr324-4m Eec (24v, Ports On Front),Scalance Xr324-4m Eec (24v, Ports On Rear),Scalance Xr324-4m Eec (2x 100-240vac/60-250vdc, Ports On Front),Scalance Xr324-4m Eec (2x 100-240vac/60-250vdc, Ports On Rear),Scalance Xr324-4m Eec (2x 24v, Ports On Front),Scalance Xr324-4m Eec (2x 24v, Ports On Rear),Scalance Xr324-4m Poe (230v, Ports On Front),Scalance Xr324-4m Poe (230v, Ports On Rear),Scalance Xr324-4m Poe (24v, Ports On Front),Scalance Xr324-4m Poe (24v, Ports On Rear),Scalance Xr324-4m Poe Ts (24v, Ports On Front),Simatic Cp 1616 And Cp 1604,Simatic Cp 343-1,Simatic Cp 343-1 Advanced,Simatic Cp 343-1 Erpc,Simatic Cp 343-1 Lean,Simatic Cp 443-1,Simatic Cp 443-1 Advanced,Simatic Cp 443-1 Opc Ua,Simatic Et 200al Im 157-1 Pn,Simatic Et 200m Im 153-4 Pn Io Hf (incl. Siplus Variants),Simatic Et 200m Im 153-4 Pn Io St (incl. Siplus Variants),Simatic Et 200mp Im 155-5 Pn Hf,Simatic Et 200mp Im 155-5 Pn St,Simatic Et 200pro Im 154-3 Pn Hf,Simatic Et 200pro Im 154-4 Pn Hf,Simatic Et 200sp Im 155-6 Pn Ba,Simatic Et 200sp Im 155-6 Pn Hf,Simatic Et 200sp Im 155-6 Pn St,Simatic Et 200sp Im 155-6 Pn St Ba,Simatic Et200ecopn, 16di, Dc24v, 8xm12,Simatic Et200ecopn, 16do Dc24v/1,3a, 8xm12,Simatic Et200ecopn, 4ao U/i 4xm12,Simatic Et200ecopn, 8 Dio, Dc24v/1,3a, 8xm12,Simatic Et200ecopn, 8 Do, Dc24v/2a, 8xm12,Simatic Et200ecopn, 8ai Rtd/tc 8xm12,Simatic Et200ecopn, 8ai; 4 U/i; 4 Rtd/tc 8xm12,Simatic Et200ecopn, 8di, Dc24v, 4xm12,Simatic Et200ecopn, 8di, Dc24v, 8xm12,Simatic Et200ecopn, 8do, Dc24v/0,5a, 4xm12,Simatic Et200ecopn, 8do, Dc24v/1,3a, 4xm12,Simatic Et200ecopn, 8do, Dc24v/1,3a, 8xm12,Simatic Et200ecopn: Io-link Master,Simatic Et200s (incl. Siplus Variants),Simatic Ipc Support, Package For Vxworks,Simatic Mv420 Sr-b,Simatic Mv420 Sr-b Body,Simatic Mv420 Sr-p,Simatic Mv420 Sr-p Body,Simatic Mv440 Hr,Simatic Mv440 Sr,Simatic Mv440 Ur,Simatic Pn/pn Coupler (incl. Siplus Net Variants),Simatic Rf180c,Simatic Rf182c,Simatic Rf600r Family,Simotion C,Simotion D,Simotion P,Sinamics Dcp,Siplus Et 200mp Im 155-5 Pn Hf,Siplus Et 200mp Im 155-5 Pn Hf T1 Rail,Siplus Et 200mp Im 155-5 Pn St,Siplus Et 200mp Im 155-5 Pn St Tx Rail,Siplus Et 200sp Im 155-6 Pn Hf,Siplus Et 200sp Im 155-6 Pn Hf T1 Rail,Siplus Et 200sp Im 155-6 Pn St,Siplus Et 200sp Im 155-6 Pn St Ba,Siplus Et 200sp Im 155-6 Pn St Ba Tx Rail,Siplus Et 200sp Im 155-6 Pn St Tx Rail,Siplus Net Cp 343-1,Siplus Net Cp 343-1 Advanced,Siplus Net Cp 343-1 Lean,Siplus Net Cp 443-1,Siplus Net Cp 443-1 Advanced,Siplus Net Scalance X308-2,Softnet-ie Pnio",7.5,HIGH,0.0012000000569969416,false,,false,false,false,,false,false,2020-02-11T15:36:10.000Z,0