First published: Tue Dec 13 2022(Updated: )
A vulnerability has been identified in SCALANCE X204RNA (HSR) (All versions < V3.2.7), SCALANCE X204RNA (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (HSR) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP/HSR) (All versions < V3.2.7). The integrated web server could allow Cross-Site Scripting (XSS) attacks if unsuspecting users are tricked into accessing a malicious link. This can be used by an attacker to trigger a malicious request on the affected device.
Credit: productcert@siemens.com productcert@siemens.com
Affected Software | Affected Version | How to fix |
---|---|---|
Siemens 6gk5204-0ba00-2mb2 Firmware | <3.2.7 | |
Siemens 6gk5204-0ba00-2mb2 | ||
Siemens 6gk5204-0ba00-2kb2 Firmware | <3.2.7 | |
Siemens 6gk5204-0ba00-2kb2 | ||
Siemens 6gk5204-0bs00-2na3 Firmware | <3.2.7 | |
Siemens 6gk5204-0bs00-2na3 | ||
Siemens 6gk5204-0bs00-3la3 Firmware | <3.2.7 | |
Siemens 6gk5204-0bs00-3la3 | ||
Siemens 6gk5204-0bs00-3pa3 Firmware | <3.2.7 | |
Siemens 6gk5204-0bs00-3pa3 | ||
All of | ||
Siemens 6gk5204-0ba00-2mb2 Firmware | <3.2.7 | |
Siemens 6gk5204-0ba00-2mb2 | ||
All of | ||
Siemens 6gk5204-0ba00-2kb2 Firmware | <3.2.7 | |
Siemens 6gk5204-0ba00-2kb2 | ||
All of | ||
Siemens 6gk5204-0bs00-2na3 Firmware | <3.2.7 | |
Siemens 6gk5204-0bs00-2na3 | ||
All of | ||
Siemens 6gk5204-0bs00-3la3 Firmware | <3.2.7 | |
Siemens 6gk5204-0bs00-3la3 | ||
All of | ||
Siemens 6gk5204-0bs00-3pa3 Firmware | <3.2.7 | |
Siemens 6gk5204-0bs00-3pa3 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.