CVE-2013-3634: Input Validation
First published: Fri May 24 2013(Updated: )
A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (Versions < V5.0.0 for CVE-2013-3633 and versions < V4.5.0 for CVE-2013-3634), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.1.0). The implementation of SNMPv3 does not check the user credentials sufficiently. Therefore, an attacker is able to execute SNMP commands without correct credentials.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens Scalance X200irt Firmware | <=5.0.0 | |
| Siemens Scalance X200-4p Irt | ||
| Siemens SCALANCE X201-3P IRT | ||
| Siemens SCALANCE X201-3P IRT | ||
| Siemens Scalance X202-2irt | ||
| Siemens Scalance X202-2p Irt | ||
| Siemens Scalance X202-2p Irt | ||
| Siemens Scalance X204irt | ||
| Siemens Scalance X204irt | ||
| Siemens Scalance Xf204irt |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
- agent/type
- agent/first-publish-date
- agent/last-modified-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/softwarecombine
- agent/description
- agent/tags
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/siemens
- canonical/siemens scalance x200irt firmware
- version/siemens scalance x200irt firmware/5.0.0
- canonical/siemens scalance x200-4p irt
- canonical/siemens scalance x201-3p irt
- canonical/siemens scalance x202-2irt
- canonical/siemens scalance x202-2p irt
- canonical/siemens scalance x204irt
- canonical/siemens scalance xf204irt