VDB
SSA-412672
SSA-412672
PUBLISHED
CVSS 5.300000190734863 MEDIUM
SCALANCE X-200RNA switch devices before V3.2.7 contain multiple OpenSSL and OpenSSH vulnerabilities. The most severe of these vulnerabilities could allow a denial of service condition or could lead to execution of arbitrary code. Siemens has released updates for the affected products and recommends to update to the latest versions.
Risk Scores
CVSS 3.1
5.300000190734863
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| SCALANCE X204RNA EEC (HSR) (6GK5204-0BS00-2NA3) | ||
| SCALANCE X204RNA (HSR) (6GK5204-0BA00-2MB2) | ||
| SCALANCE X204RNA EEC (PRP) (6GK5204-0BS00-3LA3) | ||
| SCALANCE X204RNA (PRP) (6GK5204-0BA00-2KB2) | ||
| SCALANCE X204RNA EEC (PRP/HSR) (6GK5204-0BS00-3PA3) |
Exploit Intelligence
- 🛡️ SSH User Enumeration (CVE-2018-15473). Python 3, multihilo y calibración anti-falsos positivos. 🧵 (github-poc-repo)
- 🛡️ SSH User Enumeration (CVE-2018-15473). Python 3, multihilo y calibración anti-falsos positivos. 🧵 (github-poc-repo)
- 🛡️ SSH User Enumeration (CVE-2018-15473). Python 3, multihilo y calibración anti-falsos positivos. 🧵 (github-poc)
- 🛡️ SSH User Enumeration (CVE-2018-15473). Python 3, multihilo y calibración anti-falsos positivos. 🧵 (github-poc)
- ✨ HAProxy ve Keepalived konusunu load balancer ve cluster'a ek olarak güvenlik(zayıf SSL/Kripto Kullanımı (LOGJAM) (CVE-2015-4000) zafiyeti önlemi) ve yüksek yüklere karşı ele alır. (github-poc-repo)
- ✨ HAProxy ve Keepalived konusunu load balancer ve cluster'a ek olarak güvenlik(zayıf SSL/Kripto Kullanımı (LOGJAM) (CVE-2015-4000) zafiyeti önlemi) ve yüksek yüklere karşı ele alır. (github-poc-repo)
- Docker container implementing tests for CVE-2016-2107 - LuckyNegative20 (github-poc-repo)
- Docker container implementing tests for CVE-2016-2107 - LuckyNegative20 (github-poc-repo)
- Simple test for the May 2016 OpenSSL padding oracle (CVE-2016-2107) (github-poc-repo)
- Simple test for the May 2016 OpenSSL padding oracle (CVE-2016-2107) (github-poc-repo)
…and 320 more exploits
Timeline
- CVE Published
- Jul 7, 2016 PoC Published
- Apr 30, 2017 PoC Published
- Jan 2, 2019 PoC Published
- Oct 2, 2020 PoC Published
- Nov 6, 2020 PoC Published
- Sep 6, 2021 PoC Published
- Oct 9, 2024 PoC Published
- Dec 12, 2024 PoC Published
- Mar 28, 2025 PoC Published
- Apr 11, 2025 PoC Published
- Sep 26, 2025 PoC Published