VDB
CVE-2020-15799
CVE-2020-15799
PUBLISHED
CVSS 7.099999904632568 HIGH
A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.5), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.5.0). The vulnerability could allow an unauthenticated attacker to reboot the device over the network by using special urls from integrated web server of the affected products.
EPSS 0.49% · 65.8th percentile
Risk Scores
CVSS 2.0
7.099999904632568
EPSS Score
0.49%
65.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| siemens | scalance_x308-2m_ts_firmware | |
| siemens | scalance_xc224__firmware | 0 |
| siemens | scalance_xc206-2sfp_g_eec_firmware | 0 |
| siemens | scalance_xp216eec_firmware | 0 |
| siemens | scalance_xp208_firmware | 0 |
| siemens | scalance_xp216poe_eec_firmware | 0 |
| siemens | scalance_x320-1fe_firmware | |
| siemens | scalance_xc208eec_firmware | 0 |
| siemens | scalance_xc206-2sfp_g_firmware | 0 |
| siemens | scalance_xc224-4c_g__firmware | 0 |
| siemens | scalance_xc208g_\(e\/ip\)_firmware | 0 |
| siemens | scalance_x320-3ldfe_firmware | |
| siemens | scalance_x201-3pirt_firmware | 0 |
| siemens | scalance_xb216_firmware | 0 |
| siemens | scalance_x308-2ld_firmware | |
| siemens | scalance_x202-2irt_firmware | 0 |
| siemens | scalance_xb213-3ld_firmware | 0 |
| siemens | scalance_x310fe_firmware | |
| siemens | scalance_x310_firmware | |
| siemens | scalance_xc208g_firmware | 0 |
…and 48 more
Exploit Intelligence
Timeline
- Jan 12, 2021 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- Apr 1, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-274900.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-622830.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-139628.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-979834.pdf advisory
- https://nvd.nist.gov/vuln/detail/CVE-2020-15799 advisory