CVE-2022-31765

SCALANCE W-700 IEEE 802.11n family before V6.6.0 are affected by multiple vulnerabilities. Siemens has released a new version for SCALANCE W-700 IEEE 802.11n family and recommends to update to the latest version. The following versions of Siemens SCALANCE are affected: SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0) vers:intdot/SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0) vers:intdot/SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0) vers:intdot/SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0) vers:intdot/SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0) vers:intdot/SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0) vers:intdot/SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6) vers:intdot/SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0) vers:intdot/SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6) vers:intdot/SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0) vers:intdot/SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0) vers:intdot/SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0) vers:intdot/SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0) vers:intdot/SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0) vers:intdot/SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0) vers:intdot/SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0) vers:intdot/SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0) vers:intdot/SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0) vers:intdot/SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0) vers:intdot/SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0) vers:intdot/SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6) vers:intdot/SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0) vers:intdot/SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0) vers:intdot/SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6) vers:intdot/SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0) vers:intdot/SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0) vers:intdot/SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0) vers:intdot/SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0) vers:intdot/SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0) vers:intdot/SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0) vers:intdot/SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0) vers:intdot/SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0) vers:intdot/SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0) vers:intdot/SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0) vers:intdot/SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0) vers:intdot/SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0) vers:intdot/SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0) vers:intdot/SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0) vers:intdot/SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0) vers:intdot/SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0) vers:intdot/SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0) vers:intdot/SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0) vers:intdot/SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0) vers:intdot/SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0) vers:intdot/SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0) vers:intdot/SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0) vers:intdot/SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0) vers:intdot/SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0) vers:intdot/SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0) vers:intdot/ CVSS Vendor Equipment Vulnerabilities v3 9.1 Siemens Siemens SCALANCE Missing Authentication for Critical Function, Improper Authentication, Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection'), Improper Validation of Integrity Check Value, Improper Input Validation, Out-of-bounds Read, Loop with Unreachable Exit Condition ('Infinite Loop'), Missing Authorization, Allocation of Resources Without Limits or Throttling, Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) Background Critical Infrastructure Sectors: Communications, Information Technology, Critical Manufacturing Countries/Areas Deployed: Worldwide Company Headquarters Location: Germany

EPSS 0.50% · 66.4th percentile