SSA-333517 — Vulnetix

SSA-333517 PUBLISHED CVSS 7.5 HIGH

Multiple vulnerabilities affecting various third-party components of the SCALANCE SC-600 family could allow an attacker to cause a denial of service condition, corrupt memory or potentially execute custom code. Siemens has released updates for the affected products and recommends to update to the latest versions.

Risk Scores

CVSS 3.1

7.5

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C

Affected Products

Vendor	Product	Versions
	SCALANCE SC642-2C (6GK5642-2GS00-2AC2)
	SCALANCE SC646-2C (6GK5646-2GS00-2AC2)
	SCALANCE SC626-2C (6GK5626-2GS00-2AC2)
	SCALANCE SC632-2C (6GK5632-2GS00-2AC2)
	SCALANCE SC622-2C (6GK5622-2GS00-2AC2)
	SCALANCE SC636-2C (6GK5636-2GS00-2AC2)

Exploit Intelligence

https://cert-portal.siemens.com/productcert/pdf/ssa-333517.pdf (circl)
https://cert-portal.siemens.com/productcert/txt/ssa-333517.txt (circl)
https://cert-portal.siemens.com/productcert/csaf/ssa-333517.json (circl)
https://support.industry.siemens.com/cs/ww/en/view/109814276/ (circl)

Timeline

CVE Published

References

https://cert-portal.siemens.com/productcert/pdf/ssa-333517.pdf advisory
https://cert-portal.siemens.com/productcert/txt/ssa-333517.txt advisory
https://cert-portal.siemens.com/productcert/csaf/ssa-333517.json advisory
https://support.industry.siemens.com/cs/ww/en/view/109814276/ fix

Open in Interactive Console →