CVE-2019-13925
First published: Tue Feb 11 2020(Updated: )
A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627-2M (All versions >= V3.0 and < V4.1). Specially crafted packets sent to port 443/tcp of affected devices could cause a Denial-of-Service condition of the web server.
Credit: productcert@siemens.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Siemens Scalance S602 Firmware | >=3.0<4.1 | |
| Siemens SCALANCE S602 | ||
| Siemens Scalance S612 Firmware | >=3.0<4.1 | |
| Siemens SCALANCE S612 | ||
| Siemens Scalance S623 Firmware | >=3.0<4.1 | |
| Siemens SCALANCE S623 | ||
| Siemens Scalance S627-2m Firmware | >=3.0<4.1 | |
| Siemens SCALANCE S627-2M |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2019-13925.
What is the severity level of CVE-2019-13925?
The severity level of CVE-2019-13925 is high with a score of 7.5.
Which software versions are affected by CVE-2019-13925?
SCALANCE S602 (versions >= V3.0 and < V4.1), SCALANCE S612 (versions >= V3.0 and < V4.1), SCALANCE S623 (versions >= V3.0 and < V4.1), and SCALANCE S627-2M (versions >= V3.0 and < V4.1) are affected by CVE-2019-13925.
How can I fix CVE-2019-13925?
To fix CVE-2019-13925, Siemens has released firmware updates for affected devices. Refer to the Siemens Security Advisory for more information and update instructions.
Where can I find more information about CVE-2019-13925?
You can find more information about CVE-2019-13925 in the Siemens Security Advisory and the US-CERT advisory.
- agent/references
- agent/type
- agent/author
- agent/weakness
- agent/severity
- agent/description
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- agent/event
- agent/source
- vendor/siemens
- canonical/siemens scalance s602 firmware
- version/siemens scalance s602 firmware/3.0
- canonical/siemens scalance s602
- canonical/siemens scalance s612 firmware
- version/siemens scalance s612 firmware/3.0
- canonical/siemens scalance s612
- canonical/siemens scalance s623 firmware
- version/siemens scalance s623 firmware/3.0
- canonical/siemens scalance s623
- canonical/siemens scalance s627-2m firmware
- version/siemens scalance s627-2m firmware/3.0
- canonical/siemens scalance s627-2m