Vulnetix
Try Vulnetix Request Demo
SSA-145224 PUBLISHED CVSS 5.900000095367432 MEDIUM

SCALANCE XM-400 and XR-500 devices contain a vulnerability in the OSPF protocol implementation that could allow an unauthenticated remote attacker to cause interruptions in the network. Siemens has released updates for the affected products and recommends to update to the latest versions.

Risk Scores

CVSS v3.1
5.900000095367432
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C

Affected Products

VendorProductVersions
SCALANCE XR528-6M
SCALANCE XM408-4C (L3 int.)
SCALANCE XR524-8C, 2x230V (L3 int.)
SCALANCE XR526-8C, 2x230V (L3 int.)
SCALANCE XM416-4C
SCALANCE XM408-4C
SCALANCE XR524-8C, 2x230V
SCALANCE XM408-8C (L3 int.)
SCALANCE XR526-8C, 1x230V
SCALANCE XM408-8C
SCALANCE XR526-8C, 24V
SCALANCE XR524-8C, 24V (L3 int.)
SCALANCE XR528-6M (2HR2)
SCALANCE XM416-4C (L3 int.)
SCALANCE XR526-8C, 1x230V (L3 int.)
SCALANCE XR526-8C, 2x230V
SCALANCE XR524-8C, 24V
SCALANCE XR524-8C, 1x230V
SCALANCE XR524-8C, 1x230V (L3 int.)
SCALANCE XR526-8C, 24V (L3 int.)

Timeline

References

Open in Interactive Console →