Latest siemens scalance s615 firmware Vulnerabilities

CVE-2022-46142
Affected devices store the CLI user passwords encrypted in flash memory. Attackers with physical access to the device could retrieve the file and decrypt the CLI user passwords.
Siemens Ruggedcom Rm1224 Lte\(4g\) Eu Firmware
Siemens Ruggedcom Rm1224 Lte\(4g\) Eu
Siemens Ruggedcom Rm1224 Lte\(4g\) Nam Firmware
Siemens Ruggedcom Rm1224 Lte\(4g\) Nam
Siemens Scalance M804pb Firmware
Siemens Scalance M804pb
and 196 more
CVE-2022-46140
Affected devices use a weak encryption scheme to encrypt the debug zip file. This could allow an authenticated attacker to decrypt the contents of the file and retrieve debug information about the sys...
Siemens Ruggedcom Rm1224 Lte\(4g\) Eu Firmware
Siemens Ruggedcom Rm1224 Lte\(4g\) Eu
Siemens Ruggedcom Rm1224 Lte\(4g\) Nam Firmware
Siemens Ruggedcom Rm1224 Lte\(4g\) Nam
Siemens Scalance M804pb Firmware
Siemens Scalance M804pb
and 196 more
CVE-2022-46143
Affected devices do not check the TFTP blocksize correctly. This could allow an authenticated attacker to read from an uninitialized buffer that potentially contains previously allocated data.
Siemens Ruggedcom Rm1224 Lte\(4g\) Eu Firmware
Siemens Ruggedcom Rm1224 Lte\(4g\) Eu
Siemens Ruggedcom Rm1224 Lte\(4g\) Nam Firmware
Siemens Ruggedcom Rm1224 Lte\(4g\) Nam
Siemens Scalance M804pb Firmware
Siemens Scalance M804pb
and 398 more
CVE-2022-31766
A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (All versions < V7.1.2), RUGGEDCOM RM1224 LTE(4G) NAM (All versions < V7.1.2), SCALANCE M804PB (All versions < V7.1.2), SCALANCE M812...
Siemens Ruggedcom Rm1224 Firmware<7.1.2
Siemens Ruggedcom Rm1224
Siemens Scalance M804pb Firmware<7.1.2
Siemens Scalance M804pb
Siemens Scalance M812-1 Firmware<7.1.2
Siemens Scalance M812-1
and 28 more
CVE-2022-36325
Affected devices do not properly sanitize data introduced by an user when rendering the web interface. This could allow an authenticated remote attacker with administrative privileges to inject code a...
Siemens Scalance M-800 Firmware
Siemens SCALANCE M-800
Siemens Scalance S615 Firmware
Siemens Scalance S615
Siemens Scalance Sc-600 Firmware<2.3.1
Siemens Scalance Sc-600
and 174 more
CVE-2022-36324
Affected devices do not properly handle the renegotiation of SSL/TLS parameters. This could allow an unauthenticated remote attacker to bypass the TCP brute force prevention and lead to a denial of se...
Siemens Scalance M-800 Firmware
Siemens SCALANCE M-800
Siemens Scalance S615 Firmware
Siemens Scalance S615
Siemens Scalance W700 Ieee 802.11ax Firmware
Siemens Scalance W700 Ieee 802.11ax
and 162 more
CVE-2022-36323
Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker with administrative privileges to inject code or spawn a system root shell.
Siemens Scalance M-800 Firmware
Siemens SCALANCE M-800
Siemens Scalance S615 Firmware
Siemens Scalance S615
Siemens Scalance Sc-600 Firmware<2.3.1
Siemens Scalance Sc-600
and 174 more
CVE-2020-28400
Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a denial-of-service condition. The vulnerability can be triggered if a large amount of DCP reset packets are...
Siemens Dk Standard Ethernet Controller Evaluation Kit Firmware
Siemens Dk Standard Ethernet Controller Evaluation Kit
Siemens Ek-ertec 200 Evaulation Kit Firmware
Siemens Ek-ertec 200 Evaulation Kit
Siemens Ek-ertec 200p Evaluation Kit Firmware<4.7
Siemens Ek-ertec 200p Evaluation Kit
and 151 more
CVE-2021-22924
libcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse, if one of them matches the setup.Due to errors in the logic, the config matching function did not take ...
redhat/rh-dotnet31-curl<0:7.61.1-22.el7_9
redhat/curl<0:7.61.1-18.el8_4.1
debian/curl<=7.64.0-4+deb10u2
redhat/curl<7.78.0
Haxx Libcurl>=7.10.4<7.77.0
Fedoraproject Fedora=33
and 98 more
CVE-2021-3449
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it...
rust/openssl-src<111.15.0
debian/openssl
IBM Cognos Analytics<=12.0.0-12.0.1
IBM Cognos Analytics<=11.2.0-11.2.4 FP2
IBM Cognos Analytics<=11.1.1-11.1.7 FP7
OpenSSL OpenSSL>=1.1.1<1.1.1k
and 202 more
CVE-2021-25676
A vulnerability has been identified in RUGGEDCOM RM1224 (V6.3), SCALANCE M-800 (V6.3), SCALANCE S615 (V6.3), SCALANCE SC-600 (All Versions >= V2.1 and < V2.1.3). Multiple failed SSH authentication att...
Siemens Ruggedcom Rm1224 Firmware=6.3
Siemens Ruggedcom Rm1224
Siemens Scalance M-800 Firmware=6.3
Siemens SCALANCE M-800
Siemens Scalance S615 Firmware=6.3
Siemens Scalance S615
and 2 more
CVE-2021-25667
A vulnerability has been identified in RUGGEDCOM RM1224 (All versions >= V4.3 and < V6.4), SCALANCE M-800 (All versions >= V4.3 and < V6.4), SCALANCE S615 (All versions >= V4.3 and < V6.4), SCALANCE S...
Siemens Ruggedcom Rm1224 Firmware>=4.3<6.4
Siemens Ruggedcom Rm1224
Siemens Scalance M-800 Firmware>=4.3<6.4
Siemens SCALANCE M-800
Siemens Scalance S615 Firmware>=4.3<6.4
Siemens Scalance S615
and 29 more
CVE-2019-13946
Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lea...
Siemens Dk Standard Ethernet Controller
Siemens Profinet Driver<2.1
Siemens Simatic Ipc Support
Siemens Ek-ertec 200 Firmware<4.5
Siemens Ek-ertec 200
Siemens Ek-ertec 200p Firmware<4.6
and 98 more
CVE-2018-5391
A flaw named FragmentSmack was found in the way the Linux kernel handled reassembly of fragmented IPv4 and IPv6 packets. A remote attacker could use this flaw to trigger time and calculation expensive...
ubuntu/linux<4.15.0-32.35
ubuntu/linux<3.13.0-155.205
ubuntu/linux<4.19~
ubuntu/linux<4.4.0-133.159
ubuntu/linux-aws<4.15.0-1019.19
ubuntu/linux-aws<4.4.0-1027.30
and 236 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203