VDB
CVE-2020-25226
CVE-2020-25226
PUBLISHED
CVSS 10 CRITICAL
De multiples vulnérabilités ont été découvertes dans les produits Siemens. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service à distance et une atteinte à l'intégrité des données.
EPSS 0.68% · 72.1th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
0.68%
72.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| siemens | scalance_xp208_firmware | 0 |
| siemens | scalance_xc216-4c_g_\(e\/ip\)_firmware | 0 |
| siemens | scalance_xc206-2g_poe_eec_firmware | 0 |
| siemens | scalance_xf208_firmware | 0 |
| siemens | scalance_xb205-3ld_firmware | 0 |
| siemens | scalance_x202-2irt_firmware | 0 |
| siemens | scalance_xb205-3_firmware | 0 |
| siemens | scalance_xf201-3p_irt_firmware | 0 |
| siemens | scalance_xc208g_eec_firmware | 0 |
| siemens | scalance_xc206-2sfp_g_eec_firmware | 0 |
| siemens | scalance_x201-3pirt_firmware | 0 |
| siemens | scalance_xp208poe_eec_firmware | 0 |
| siemens | scalance_x310_firmware | |
| siemens | scalance_xf204irt_firmware | 0 |
| siemens | scalance_x308-2m_firmware | |
| siemens | scalance_xb213-3_firmware | 0 |
| siemens | scalance_xf204-2ba_irt_firmware | 0 |
| siemens | scalance_xc216eec_firmware | 0 |
| siemens | scalance_xf206-1_firmware | 0 |
| siemens | scalance_xp216_firmware | 0 |
…and 49 more
Exploit Intelligence
Timeline
- Jan 12, 2021 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Aug 24, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Jan 6, 2022 EPSS Score
- Feb 4, 2022 EPSS Score
- Feb 28, 2022 EPSS Score
- May 1, 2022 EPSS Score
- Jul 3, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
References
- https://cert-portal.siemens.com/productcert/pdf/ssa-274900.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-622830.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-139628.pdf advisory
- https://cert-portal.siemens.com/productcert/pdf/ssa-979834.pdf advisory
- https://nvd.nist.gov/vuln/detail/CVE-2020-25226 advisory