SSA-412672 — Vulnetix

Try Vulnetix Request Demo

SSA-412672 PUBLISHED CVSS 5.300000190734863 MEDIUM

SCALANCE X-200RNA switch devices before V3.2.7 contain multiple OpenSSL and OpenSSH vulnerabilities. The most severe of these vulnerabilities could allow a denial of service condition or could lead to execution of arbitrary code. Siemens has released updates for the affected products and recommends to update to the latest versions.

Risk Scores

CVSS v3.1

5.300000190734863

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C

Affected Products

Vendor	Product	Versions
	SCALANCE X204RNA EEC (HSR) (6GK5204-0BS00-2NA3)
	SCALANCE X204RNA (HSR) (6GK5204-0BA00-2MB2)
	SCALANCE X204RNA EEC (PRP) (6GK5204-0BS00-3LA3)
	SCALANCE X204RNA (PRP) (6GK5204-0BA00-2KB2)
	SCALANCE X204RNA EEC (PRP/HSR) (6GK5204-0BS00-3PA3)

Timeline

CVE Published
Jul 7, 2016 PoC Published
Apr 30, 2017 PoC Published
Jan 2, 2019 PoC Published
Oct 2, 2020 PoC Published
Nov 6, 2020 PoC Published
Sep 6, 2021 PoC Published
Oct 9, 2024 PoC Published
Dec 12, 2024 PoC Published
Mar 28, 2025 PoC Published
Apr 11, 2025 PoC Published
Sep 26, 2025 PoC Published

References

Open in Interactive Console →