VDB
CISA-2022-46140
CISA-2022-46140
PUBLISHED
CVSS 6.5 MEDIUM
Reported by siemens · Published December 13, 2022
Affected devices use a weak encryption scheme to encrypt the debug zip file. This could allow an authenticated attacker to decrypt the contents of the file and retrieve debug information about the system.
Risk Scores
CVSS 3.1
6.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Siemens | RUGGEDCOM RM1224 LTE(4G) EU | 0 |
| Siemens | RUGGEDCOM RM1224 LTE(4G) NAM | 0 |
| Siemens | SCALANCE M804PB | 0 |
| Siemens | SCALANCE M812-1 ADSL-Router | 0 |
| Siemens | SCALANCE M812-1 ADSL-Router | 0 |
| Siemens | SCALANCE M816-1 ADSL-Router | 0 |
| Siemens | SCALANCE M816-1 ADSL-Router | 0 |
| Siemens | SCALANCE M826-2 SHDSL-Router | 0 |
| Siemens | SCALANCE M874-2 | 0 |
| Siemens | SCALANCE M874-3 | 0 |
| Siemens | SCALANCE M876-3 | 0 |
| Siemens | SCALANCE M876-3 (ROK) | 0 |
| Siemens | SCALANCE M876-4 | 0 |
| Siemens | SCALANCE M876-4 (EU) | 0 |
| Siemens | SCALANCE M876-4 (NAM) | 0 |
| Siemens | SCALANCE MUM853-1 (EU) | 0 |
| Siemens | SCALANCE MUM856-1 (EU) | 0 |
| Siemens | SCALANCE MUM856-1 (RoW) | 0 |
| Siemens | SCALANCE S615 EEC LAN-Router | 0 |
| Siemens | SCALANCE S615 LAN-Router | 0 |
…and 321 more
Timeline
- Dec 13, 2022 CVE Published
- Apr 21, 2025 CVE Updated