SSA-552702 — Vulnetix

SSA-552702 PUBLISHED CVSS 8.800000190734863 HIGH

Affected devices do not properly authorize the change password function of the web interface. This could allow low privileged users to escalate their privileges.

Risk Scores

CVSS 3.1

8.800000190734863

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C

Affected Products

Vendor	Product	Versions
Siemens	SCALANCE XB208 (PN) (6GK5208-0BA00-2AB2)
Siemens	SCALANCE XC208G (6GK5208-0GA00-2AC2)
Siemens	SCALANCE XB213-3 (SC, E/IP) (6GK5213-3BD00-2TB2)
Siemens	SCALANCE XB205-3 (ST, E/IP) (6GK5205-3BB00-2TB2)
Siemens	SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens	SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2)
Siemens	SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens	SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens	SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens	SIPLUS NET SCALANCE XC216-4C (6AG1216-4BS00-7AC2)
Siemens	SCALANCE WUM763-1 (6GK5763-1AL00-3AA0)
Siemens	SCALANCE XC206-2G PoE (6GK5206-2RS00-2AC2)
Siemens	SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens	SCALANCE M876-4 (6GK5876-4AA10-2BA2)
Siemens	SCALANCE XM408-8C (6GK5408-8GS00-2AM2)
Siemens	SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens	SCALANCE XC208G PoE (6GK5208-0RA00-2AC2)
Siemens	SCALANCE XP208EEC (6GK5208-0HA00-2ES6)
Siemens	SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens	SCALANCE XB213-3LD (SC, E/IP) (6GK5213-3BF00-2TB2)

…and 166 more

Timeline

Oct 11, 2022 CVE Published
Apr 14, 2026 CVE Updated

References

Open in Interactive Console →