Vulnetix
Try Vulnetix Request Demo
SSA-413565 PUBLISHED CVSS 7.599999904632568 HIGH

By injecting code to specific configuration options for OpenVPN, an attacker could execute arbitrary code with elevated privileges.

Risk Scores

CVSS v3.1
7.599999904632568
CVSS:3.1/AV:A/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H

Affected Products

VendorProductVersions
SiemensSCALANCE XB205-3LD (SC, E/IP) (6GK5205-3BF00-2TB2)
SiemensSCALANCE XR328-4C WG (24xFE, 4xGE,DC24V) (6GK5328-4FS00-2RR3)
SiemensSCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
SiemensRUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
SiemensSCALANCE XB208 (PN) (6GK5208-0BA00-2AB2)
SiemensSCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
SiemensSCALANCE WAM766-1 EEC (ME) (6GK5766-1GE00-7TC0)
SiemensSCALANCE WAM763-1 (ME) (6GK5763-1AL00-7DC0)
SiemensSCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
SiemensSCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
SiemensSCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
SiemensSCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
SiemensSCALANCE XR526-8C, 24V (6GK5526-8GS00-2AR2)
SiemensSCALANCE XC208G EEC (6GK5208-0GA00-2FC2)
SiemensSCALANCE XR528-6M (6GK5528-0AA00-2AR2)
SiemensSCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
SiemensSCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
SiemensSCALANCE XF204-2BA (6GK5204-2AA00-2GF2)
SiemensSCALANCE XP208 (Ethernet/IP) (6GK5208-0HA00-2TS6)
SiemensSIPLUS NET SCALANCE XC206-2 (6AG1206-2BB00-7AC2)

…and 177 more

Timeline

References

Open in Interactive Console →