SSA-222547 — Vulnetix

SSA-222547 PUBLISHED CVSS 9.800000190734863 CRITICAL

Multiple vulnerabilities in the third-party components CivetWeb, Docker, Linux Kernel and systemd could allow an attacker to impact SCALANCE LPE9403 confidentiality, integrity and availability. Siemens has released an update for the SCALANCE LPE9403 and recommends to update to the latest version.

Risk Scores

CVSS v3.1

9.800000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

Affected Products

Vendor	Product	Versions
	SCALANCE LPE9403

Timeline

CVE Published
Dec 27, 2024 PoC Published
Feb 13, 2025 PoC Published
Mar 28, 2025 PoC Published
May 12, 2025 PoC Published

References

https://cert-portal.siemens.com/productcert/pdf/ssa-222547.pdf advisory
https://cert-portal.siemens.com/productcert/txt/ssa-222547.txt advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-222547.json advisory
https://support.industry.siemens.com/cs/ww/en/view/109811123/ fix

Open in Interactive Console →