Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-3712 (GCVE-0-2021-3712)
Vulnerability from cvelistv5 – Published: 2021-08-24 14:50 – Updated: 2026-04-16 14:11
VLAI
EPSS
Title
Read buffer overruns processing ASN.1 strings
Summary
ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL's own "d2i" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the "data" and "length" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the "data" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).
Severity
7.4 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- Buffer overflow
- CWE-125 - Out-of-bounds Read
Assigner
References
25 references
Impacted products
210 products
| Vendor | Product | Version | |
|---|---|---|---|
| OpenSSL | OpenSSL |
Affected:
Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k)
Affected: Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y) |
|
| Siemens | BFCClient |
Affected:
0 , < V2.17
(custom)
|
|
| Siemens | Industrial Edge - Machine Insight App |
Affected:
0 , < *
(custom)
|
|
| Siemens | Industrial Edge - PROFINET IO Connector |
Affected:
All versions < V1.1.1
|
|
| Siemens | RUGGEDCOM RM1224 LTE(4G) EU |
Affected:
All versions < V7.1
|
|
| Siemens | RUGGEDCOM RM1224 LTE(4G) NAM |
Affected:
All versions < V7.1
|
|
| Siemens | RUGGEDCOM ROX MX5000 |
Affected:
0 , < V2.15.0
(custom)
|
|
| Siemens | RUGGEDCOM ROX MX5000RE |
Affected:
0 , < V2.15.0
(custom)
|
|
| Siemens | RUGGEDCOM ROX RX1400 |
Affected:
0 , < V2.15.0
(custom)
|
|
| Siemens | RUGGEDCOM ROX RX1500 |
Affected:
0 , < V2.15.0
(custom)
|
|
| Siemens | RUGGEDCOM ROX RX1501 |
Affected:
0 , < V2.15.0
(custom)
|
|
| Siemens | RUGGEDCOM ROX RX1510 |
Affected:
0 , < V2.15.0
(custom)
|
|
| Siemens | RUGGEDCOM ROX RX1511 |
Affected:
0 , < V2.15.0
(custom)
|
|
| Siemens | RUGGEDCOM ROX RX1512 |
Affected:
0 , < V2.15.0
(custom)
|
|
| Siemens | RUGGEDCOM ROX RX1524 |
Affected:
0 , < V2.15.0
(custom)
|
|
| Siemens | RUGGEDCOM ROX RX1536 |
Affected:
0 , < V2.15.0
(custom)
|
|
| Siemens | RUGGEDCOM ROX RX5000 |
Affected:
0 , < V2.15.0
(custom)
|
|
| Siemens | SCALANCE M804PB |
Affected:
All versions < V7.1
|
|
| Siemens | SCALANCE M812-1 ADSL-Router |
Affected:
All versions < V7.1
|
|
| Siemens | SCALANCE M816-1 ADSL-Router |
Affected:
All versions < V7.1
|
|
| Siemens | SCALANCE M826-2 SHDSL-Router |
Affected:
All versions < V7.1
|
|
| Siemens | SCALANCE M874-2 |
Affected:
All versions < V7.1
|
|
| Siemens | SCALANCE M874-3 |
Affected:
All versions < V7.1
|
|
| Siemens | SCALANCE M876-3 |
Affected:
All versions < V7.1
|
|
| Siemens | SCALANCE M876-3 (ROK) |
Affected:
All versions < V7.1
|
|
| Siemens | SCALANCE M876-4 (EU) |
Affected:
All versions < V7.1
|
|
| Siemens | SCALANCE M876-4 (NAM) |
Affected:
All versions < V7.1
|
|
| Siemens | SCALANCE MUM853-1 (EU) |
Affected:
0 , < V7.1
(custom)
|
|
| Siemens | SCALANCE MUM856-1 (EU) |
Affected:
0 , < V7.1
(custom)
|
|
| Siemens | SCALANCE MUM856-1 (RoW) |
Affected:
0 , < V7.1
(custom)
|
|
| Siemens | SCALANCE S615 LAN-Router |
Affected:
All versions < V7.1
|
|
| Siemens | SCALANCE SC622-2C |
Affected:
All versions < V2.3
|
|
| Siemens | SCALANCE SC632-2C |
Affected:
All versions < V2.3
|
|
| Siemens | SCALANCE SC636-2C |
Affected:
All versions < V2.3
|
|
| Siemens | SCALANCE SC642-2C |
Affected:
All versions < V2.3
|
|
| Siemens | SCALANCE SC646-2C |
Affected:
All versions < V2.3
|
|
| Siemens | SCALANCE W1748-1 M12 |
Affected:
0 , < V3.0.0
(custom)
|
|
| Siemens | SCALANCE W1788-1 M12 |
Affected:
0 , < V3.0.0
(custom)
|
|
| Siemens | SCALANCE W1788-2 EEC M12 |
Affected:
0 , < V3.0.0
(custom)
|
|
| Siemens | SCALANCE W1788-2 M12 |
Affected:
0 , < V3.0.0
(custom)
|
|
| Siemens | SCALANCE W1788-2IA M12 |
Affected:
0 , < V3.0.0
(custom)
|
|
| Siemens | SCALANCE W721-1 RJ45 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W722-1 RJ45 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W734-1 RJ45 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W734-1 RJ45 (USA) |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W738-1 M12 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W748-1 M12 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W748-1 RJ45 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W761-1 RJ45 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W774-1 M12 EEC |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W774-1 RJ45 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W774-1 RJ45 (USA) |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W778-1 M12 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W778-1 M12 EEC |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W778-1 M12 EEC (USA) |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W786-1 RJ45 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W786-2 RJ45 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W786-2 SFP |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W786-2IA RJ45 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W788-1 M12 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W788-1 RJ45 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W788-2 M12 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W788-2 M12 EEC |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE W788-2 RJ45 |
Affected:
0 , < V6.6.0
(custom)
|
|
| Siemens | SCALANCE WAM766-1 |
Affected:
0 , < V1.2.0
(custom)
|
|
| Siemens | SCALANCE WAM766-1 (US) |
Affected:
0 , < V1.2.0
(custom)
|
|
| Siemens | SCALANCE WAM766-1 EEC |
Affected:
0 , < V1.2.0
(custom)
|
|
| Siemens | SCALANCE WAM766-1 EEC (US) |
Affected:
0 , < V1.2.0
(custom)
|
|
| Siemens | SCALANCE WUM766-1 |
Affected:
0 , < V1.2.0
(custom)
|
|
| Siemens | SCALANCE WUM766-1 (USA) |
Affected:
0 , < V1.2.0
(custom)
|
|
| Siemens | SCALANCE X200-4P IRT |
Affected:
0 , < V5.5.2
(custom)
|
|
| Siemens | SCALANCE X201-3P IRT |
Affected:
0 , < V5.5.2
(custom)
|
|
| Siemens | SCALANCE X201-3P IRT PRO |
Affected:
0 , < V5.5.2
(custom)
|
|
| Siemens | SCALANCE X202-2IRT |
Affected:
0 , < V5.5.2
(custom)
|
|
| Siemens | SCALANCE X202-2P IRT |
Affected:
0 , < V5.5.2
(custom)
|
|
| Siemens | SCALANCE X202-2P IRT PRO |
Affected:
0 , < V5.5.2
(custom)
|
|
| Siemens | SCALANCE X204-2 |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE X204-2FM |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE X204-2LD |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE X204-2LD TS |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE X204-2TS |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE X204IRT |
Affected:
0 , < V5.5.2
(custom)
|
|
| Siemens | SCALANCE X204IRT PRO |
Affected:
0 , < V5.5.2
(custom)
|
|
| Siemens | SCALANCE X206-1 |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE X206-1LD |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE X208 |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE X208PRO |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE X212-2 |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE X212-2LD |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE X216 |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE X224 |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE X302-7 EEC (230V, coated) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X302-7 EEC (230V) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X302-7 EEC (24V, coated) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X302-7 EEC (24V) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X302-7 EEC (2x 230V, coated) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X302-7 EEC (2x 230V) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X302-7 EEC (2x 24V, coated) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X302-7 EEC (2x 24V) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X304-2FE |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X306-1LD FE |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X307-2 EEC (230V, coated) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X307-2 EEC (230V) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X307-2 EEC (24V, coated) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X307-2 EEC (24V) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X307-2 EEC (2x 230V, coated) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X307-2 EEC (2x 230V) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X307-2 EEC (2x 24V, coated) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X307-2 EEC (2x 24V) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X307-3 |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X307-3LD |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X308-2 |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X308-2LD |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X308-2LH |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X308-2LH+ |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X308-2M |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X308-2M PoE |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X308-2M TS |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X310 |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X310FE |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X320-1 FE |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X320-1-2LD FE |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE X408-2 |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XF201-3P IRT |
Affected:
0 , < V5.5.2
(custom)
|
|
| Siemens | SCALANCE XF202-2P IRT |
Affected:
0 , < V5.5.2
(custom)
|
|
| Siemens | SCALANCE XF204 |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE XF204-2 |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE XF204-2BA IRT |
Affected:
0 , < V5.5.2
(custom)
|
|
| Siemens | SCALANCE XF204IRT |
Affected:
0 , < V5.5.2
(custom)
|
|
| Siemens | SCALANCE XF206-1 |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE XF208 |
Affected:
All versions < V5.2.6
|
|
| Siemens | SCALANCE XR324-12M (230V, ports on front) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-12M (230V, ports on rear) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-12M (24V, ports on front) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-12M (24V, ports on rear) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-12M TS (24V) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-4M EEC (24V, ports on front) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-4M EEC (24V, ports on rear) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-4M EEC (2x 24V, ports on front) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-4M EEC (2x 24V, ports on rear) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-4M PoE (230V, ports on front) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-4M PoE (230V, ports on rear) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-4M PoE (24V, ports on front) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-4M PoE (24V, ports on rear) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SCALANCE XR324-4M PoE TS (24V, ports on front) |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SIMATIC CP 1242-7 V2 |
Affected:
All versions < V3.3.46
|
|
| Siemens | SIMATIC CP 1243-1 |
Affected:
All versions < V3.3.46
|
|
| Siemens | SIMATIC CP 1243-7 LTE EU |
Affected:
All versions < V3.3.46
|
|
| Siemens | SIMATIC CP 1243-7 LTE US |
Affected:
All versions < V3.3.46
|
|
| Siemens | SIMATIC CP 1243-8 IRC |
Affected:
All versions < V3.3.46
|
|
| Siemens | SIMATIC CP 1542SP-1 |
Affected:
0 , < V2.2.28
(custom)
|
|
| Siemens | SIMATIC CP 1543-1 |
Affected:
All versions < V3.0.22
|
|
| Siemens | SIMATIC CP 1543SP-1 |
Affected:
0 , < V2.2.28
(custom)
|
|
| Siemens | SIMATIC CP 1545-1 |
Affected:
All versions < V1.1
|
|
| Siemens | SIMATIC PCS neo (Administration Console) |
Affected:
0 , < V3.1.1
(custom)
|
|
| Siemens | SIMATIC Process Historian OPC UA Server |
Affected:
0 , < V2020 SP1
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1211C AC/DC/Rly |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1211C DC/DC/DC |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1211C DC/DC/Rly |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1212C AC/DC/Rly |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1212C DC/DC/DC |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1212C DC/DC/Rly |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1212FC DC/DC/DC |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1212FC DC/DC/Rly |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1214C AC/DC/Rly |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1214C DC/DC/DC |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1214C DC/DC/Rly |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1214FC DC/DC/DC |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1214FC DC/DC/Rly |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1215C AC/DC/Rly |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1215C DC/DC/DC |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1215C DC/DC/Rly |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1215FC DC/DC/DC |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1215FC DC/DC/Rly |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIMATIC S7-1200 CPU 1217C DC/DC/DC |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SINEC NMS |
Affected:
0 , < V1.0 SP3
(custom)
|
|
| Siemens | SINEMA Remote Connect Server |
Affected:
0 , < V3.1
(custom)
|
|
| Siemens | SINEMA Server V14 |
Affected:
0 , < *
(custom)
|
|
| Siemens | SINUMERIK Operate |
Affected:
All versions < V4.95 SP1
|
|
| Siemens | SIPLUS ET 200SP CP 1543SP-1 ISEC |
Affected:
0 , < V2.2.28
(custom)
|
|
| Siemens | SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL |
Affected:
0 , < V2.2.28
(custom)
|
|
| Siemens | SIPLUS NET CP 1242-7 V2 |
Affected:
All versions < V3.3.46
|
|
| Siemens | SIPLUS NET CP 1543-1 |
Affected:
All versions < V3.0.22
|
|
| Siemens | SIPLUS NET SCALANCE X308-2 |
Affected:
0 , < V4.1.4
(custom)
|
|
| Siemens | SIPLUS S7-1200 CP 1243-1 |
Affected:
All versions < V3.3.46
|
|
| Siemens | SIPLUS S7-1200 CP 1243-1 RAIL |
Affected:
All versions < V3.3.46
|
|
| Siemens | SIPLUS S7-1200 CPU 1212 AC/DC/RLY |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1212 DC/DC/RLY |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1212C AC/DC/RLY |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1212C DC/DC/DC |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1214 AC/DC/RLY |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1214 DC/DC/RLY |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1214C AC/DC/RLY |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1214C DC/DC/DC |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1214C DC/DC/RLY |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1214FC DC/DC/DC |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1214FC DC/DC/RLY |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1215 AC/DC/RLY |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1215 DC/DC/DC |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1215 DC/DC/RLY |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1215C AC/DC/RLY |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1215C DC/DC/DC |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | SIPLUS S7-1200 CPU 1215FC DC/DC/DC |
Affected:
0 , < V4.5.2
(custom)
|
|
| Siemens | TIA Administrator |
Affected:
0 , < V1.0.7
(custom)
|
Date Public
2021-08-24 00:00
Credits
Ingo Schwarze
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T17:01:08.180Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.openssl.org/news/secadv/20210824.txt"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=94d23fcff9b2a7a8368dfe52214d5c2569882c11"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=ccb0a11145ee72b042d10593a64eaf9e8a55ec12"
},
{
"name": "DSA-4963",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.debian.org/security/2021/dsa-4963"
},
{
"name": "[tomcat-dev] 20210825 OpenSSL security announcement - do we need a Tomcat Native release?",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691e7c59c9e%40%3Cdev.tomcat.apache.org%3E"
},
{
"name": "[oss-security] 20210825 OpenSSL SM2 Decryption Buffer Overflow (CVE-2021-3711), Read buffer overruns processing ASN.1 strings (CVE-2021-3712)",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2021/08/26/2"
},
{
"name": "[tomcat-dev] 20210826 Re: OpenSSL security announcement - do we need a Tomcat Native release?",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e5805a713d1%40%3Cdev.tomcat.apache.org%3E"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20210827-0010/"
},
{
"name": "[debian-lts-announce] 20210926 [SECURITY] [DLA 2766-1] openssl security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00014.html"
},
{
"name": "[debian-lts-announce] 20210930 [SECURITY] [DLA 2774-1] openssl1.0 security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00021.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.tenable.com/security/tns-2021-16"
},
{
"tags": [
"x_transferred"
],
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10366"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpujan2022.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.tenable.com/security/tns-2022-02"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf"
},
{
"tags": [
"x_transferred"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf"
},
{
"name": "GLSA-202209-02",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202209-02"
},
{
"name": "GLSA-202210-02",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202210-02"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20240621-0006/"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"defaultStatus": "unknown",
"product": "BFCClient",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.17",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "Industrial Edge - Machine Insight App",
"vendor": "Siemens",
"versions": [
{
"lessThan": "*",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "Industrial Edge - PROFINET IO Connector",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V1.1.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM RM1224 LTE(4G) EU",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM RM1224 LTE(4G) NAM",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM ROX MX5000",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.15.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM ROX MX5000RE",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.15.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM ROX RX1400",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.15.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM ROX RX1500",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.15.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM ROX RX1501",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.15.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM ROX RX1510",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.15.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM ROX RX1511",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.15.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM ROX RX1512",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.15.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM ROX RX1524",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.15.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM ROX RX1536",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.15.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM ROX RX5000",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.15.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE M804PB",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE M812-1 ADSL-Router",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE M812-1 ADSL-Router",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE M816-1 ADSL-Router",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE M816-1 ADSL-Router",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE M826-2 SHDSL-Router",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE M874-2",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE M874-3",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE M876-3",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE M876-3 (ROK)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE M876-4 (EU)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE M876-4 (NAM)",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE MUM853-1 (EU)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V7.1",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE MUM856-1 (EU)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V7.1",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE MUM856-1 (RoW)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V7.1",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE S615 LAN-Router",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V7.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE SC622-2C",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V2.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE SC632-2C",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V2.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE SC636-2C",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V2.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE SC642-2C",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V2.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE SC646-2C",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V2.3"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W1748-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V3.0.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W1748-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V3.0.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W1788-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V3.0.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W1788-2 EEC M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V3.0.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W1788-2 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V3.0.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W1788-2IA M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V3.0.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W721-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W721-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W721-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W721-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W722-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W722-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W722-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W722-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W722-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W722-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W734-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W734-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W734-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W734-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W734-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W734-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W734-1 RJ45 (USA)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W734-1 RJ45 (USA)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W738-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W738-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W738-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W738-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W748-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W748-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W748-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W748-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W748-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W748-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W748-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W748-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W761-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W761-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W761-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W761-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W774-1 M12 EEC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W774-1 M12 EEC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W774-1 M12 EEC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W774-1 M12 EEC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W774-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W774-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W774-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W774-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W774-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W774-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W774-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W774-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W774-1 RJ45 (USA)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W774-1 RJ45 (USA)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W778-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W778-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W778-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W778-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W778-1 M12 EEC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W778-1 M12 EEC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W778-1 M12 EEC (USA)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W778-1 M12 EEC (USA)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-2 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-2 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-2 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-2 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-2 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-2 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-2 SFP",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-2 SFP",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-2 SFP",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-2 SFP",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-2IA RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-2IA RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-2IA RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W786-2IA RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-1 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-1 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 M12",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 M12 EEC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 M12 EEC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 M12 EEC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 M12 EEC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 M12 EEC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 M12 EEC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE W788-2 RJ45",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V6.6.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE WAM766-1",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V1.2.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE WAM766-1 (US)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V1.2.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE WAM766-1 EEC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V1.2.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE WAM766-1 EEC (US)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V1.2.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE WUM766-1",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V1.2.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE WUM766-1 (USA)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V1.2.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X200-4P IRT",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V5.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X201-3P IRT",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V5.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X201-3P IRT PRO",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V5.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X202-2IRT",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V5.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X202-2P IRT",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V5.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X202-2P IRT PRO",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V5.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X204-2",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X204-2FM",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X204-2LD",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X204-2LD TS",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X204-2TS",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X204IRT",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V5.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X204IRT PRO",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V5.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X206-1",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X206-1LD",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X208",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X208PRO",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X212-2",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X212-2LD",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X216",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X224",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X302-7 EEC (230V, coated)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X302-7 EEC (230V)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X302-7 EEC (24V, coated)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X302-7 EEC (24V)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X302-7 EEC (2x 230V, coated)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X302-7 EEC (2x 230V)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X302-7 EEC (2x 24V, coated)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X302-7 EEC (2x 24V)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X304-2FE",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X306-1LD FE",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X307-2 EEC (230V, coated)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X307-2 EEC (230V)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X307-2 EEC (24V, coated)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X307-2 EEC (24V)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X307-2 EEC (2x 230V, coated)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X307-2 EEC (2x 230V)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X307-2 EEC (2x 24V, coated)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X307-2 EEC (2x 24V)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X307-3",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X307-3",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X307-3LD",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X307-3LD",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X308-2",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X308-2",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X308-2LD",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X308-2LD",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X308-2LH",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X308-2LH",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X308-2LH+",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X308-2LH+",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X308-2M",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X308-2M",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X308-2M PoE",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X308-2M PoE",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X308-2M TS",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X308-2M TS",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X310",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X310",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X310FE",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X310FE",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X320-1 FE",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X320-1-2LD FE",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE X408-2",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XF201-3P IRT",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V5.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XF202-2P IRT",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V5.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XF204",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XF204-2",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XF204-2BA IRT",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V5.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XF204IRT",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V5.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XF206-1",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XF208",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V5.2.6"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-12M (230V, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-12M (230V, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-12M (230V, ports on rear)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-12M (230V, ports on rear)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-12M (24V, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-12M (24V, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-12M (24V, ports on rear)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-12M (24V, ports on rear)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-12M TS (24V)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-12M TS (24V)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (24V, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (24V, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (24V, ports on rear)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (24V, ports on rear)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (2x 24V, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (2x 24V, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (2x 24V, ports on rear)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M EEC (2x 24V, ports on rear)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M PoE (230V, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M PoE (230V, ports on rear)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M PoE (24V, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M PoE (24V, ports on rear)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SCALANCE XR324-4M PoE TS (24V, ports on front)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC CP 1242-7 V2",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3.46"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC CP 1243-1",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3.46"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC CP 1243-7 LTE EU",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3.46"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC CP 1243-7 LTE US",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3.46"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC CP 1243-8 IRC",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3.46"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC CP 1542SP-1",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.2.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC CP 1543-1",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.0.22"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC CP 1543SP-1",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.2.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC CP 1545-1",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V1.1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC PCS neo (Administration Console)",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V3.1.1",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC Process Historian OPC UA Server",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2020 SP1",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1211C AC/DC/Rly",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1211C DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1211C DC/DC/Rly",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1212C AC/DC/Rly",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1212C DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1212C DC/DC/Rly",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1212FC DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1212FC DC/DC/Rly",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1214C AC/DC/Rly",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1214C DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1214C DC/DC/Rly",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1214FC DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1214FC DC/DC/Rly",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1215C AC/DC/Rly",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1215C DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1215C DC/DC/Rly",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1215FC DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1215FC DC/DC/Rly",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1200 CPU 1217C DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SINEC NMS",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V1.0 SP3",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SINEMA Remote Connect Server",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V3.1",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SINEMA Server V14",
"vendor": "Siemens",
"versions": [
{
"lessThan": "*",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SINUMERIK Operate",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V4.95 SP1"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS ET 200SP CP 1543SP-1 ISEC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.2.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V2.2.28",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS NET CP 1242-7 V2",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3.46"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS NET CP 1543-1",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.0.22"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS NET SCALANCE X308-2",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.1.4",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CP 1243-1",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3.46"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CP 1243-1 RAIL",
"vendor": "Siemens",
"versions": [
{
"status": "affected",
"version": "All versions \u003c V3.3.46"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1212 AC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1212 DC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1212 DC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1212C AC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1212C DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1212C DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1214 AC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1214 DC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1214C AC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1214C AC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1214C DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1214C DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1214C DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1214C DC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1214C DC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1214FC DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1214FC DC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1215 AC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1215 AC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1215 DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1215 DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1215 DC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1215 DC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1215 DC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1215C AC/DC/RLY",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1215C DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1200 CPU 1215FC DC/DC/DC",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V4.5.2",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "TIA Administrator",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V1.0.7",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-04-14T08:57:51.339Z",
"orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
"shortName": "siemens-SADP"
},
"references": [
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-244969.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-389290.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-028723.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-019200.html"
}
],
"x_adpType": "supplier"
},
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2021-3712",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-04-16T14:11:09.557845Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-125",
"description": "CWE-125 Out-of-bounds Read",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-04-16T14:11:16.454Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "OpenSSL",
"vendor": "OpenSSL",
"versions": [
{
"status": "affected",
"version": "Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k)"
},
{
"status": "affected",
"version": "Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y)"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Ingo Schwarze"
}
],
"datePublic": "2021-08-24T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \"d2i\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \"data\" and \"length\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \"data\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y)."
}
],
"metrics": [
{
"other": {
"content": {
"lang": "eng",
"url": "https://www.openssl.org/policies/secpolicy.html#Moderate",
"value": "Moderate"
},
"type": "unknown"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Buffer overflow",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-06-21T19:07:21.902Z",
"orgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
"shortName": "openssl"
},
"references": [
{
"url": "https://www.openssl.org/news/secadv/20210824.txt"
},
{
"url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=94d23fcff9b2a7a8368dfe52214d5c2569882c11"
},
{
"url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=ccb0a11145ee72b042d10593a64eaf9e8a55ec12"
},
{
"name": "DSA-4963",
"tags": [
"vendor-advisory"
],
"url": "https://www.debian.org/security/2021/dsa-4963"
},
{
"name": "[tomcat-dev] 20210825 OpenSSL security announcement - do we need a Tomcat Native release?",
"tags": [
"mailing-list"
],
"url": "https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691e7c59c9e%40%3Cdev.tomcat.apache.org%3E"
},
{
"name": "[oss-security] 20210825 OpenSSL SM2 Decryption Buffer Overflow (CVE-2021-3711), Read buffer overruns processing ASN.1 strings (CVE-2021-3712)",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2021/08/26/2"
},
{
"name": "[tomcat-dev] 20210826 Re: OpenSSL security announcement - do we need a Tomcat Native release?",
"tags": [
"mailing-list"
],
"url": "https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e5805a713d1%40%3Cdev.tomcat.apache.org%3E"
},
{
"url": "https://security.netapp.com/advisory/ntap-20210827-0010/"
},
{
"name": "[debian-lts-announce] 20210926 [SECURITY] [DLA 2766-1] openssl security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00014.html"
},
{
"name": "[debian-lts-announce] 20210930 [SECURITY] [DLA 2774-1] openssl1.0 security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00021.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"url": "https://www.tenable.com/security/tns-2021-16"
},
{
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10366"
},
{
"url": "https://www.oracle.com/security-alerts/cpujan2022.html"
},
{
"url": "https://www.tenable.com/security/tns-2022-02"
},
{
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf"
},
{
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf"
},
{
"name": "GLSA-202209-02",
"tags": [
"vendor-advisory"
],
"url": "https://security.gentoo.org/glsa/202209-02"
},
{
"name": "GLSA-202210-02",
"tags": [
"vendor-advisory"
],
"url": "https://security.gentoo.org/glsa/202210-02"
},
{
"url": "https://security.netapp.com/advisory/ntap-20240621-0006/"
}
],
"title": "Read buffer overruns processing ASN.1 strings"
}
},
"cveMetadata": {
"assignerOrgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
"assignerShortName": "openssl",
"cveId": "CVE-2021-3712",
"datePublished": "2021-08-24T14:50:14.704Z",
"dateReserved": "2021-08-16T00:00:00.000Z",
"dateUpdated": "2026-04-16T14:11:16.454Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2021-3712",
"date": "2026-06-04",
"epss": "0.0046",
"percentile": "0.64439"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2021-3712\",\"sourceIdentifier\":\"openssl-security@openssl.org\",\"published\":\"2021-08-24T15:15:09.533\",\"lastModified\":\"2026-04-16T15:16:45.500\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \\\"d2i\\\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \\\"data\\\" and \\\"length\\\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \\\"data\\\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).\"},{\"lang\":\"es\",\"value\":\"Las cadenas ASN.1 se representan internamente en OpenSSL como una estructura ASN1_STRING que contiene un b\u00fafer que contiene los datos de la cadena y un campo que contiene la longitud del b\u00fafer. Esto contrasta con las cadenas C normales, que se representan como un b\u00fafer para los datos de la cadena que termina con un byte NUL (0). Aunque no es un requisito estricto, las cadenas ASN.1 que se analizan usando las propias funciones \\\"d2i\\\" de OpenSSL (y otras funciones de an\u00e1lisis similares), as\u00ed como cualquier cadena cuyo valor ha sido ajustado con la funci\u00f3n ASN1_STRING_set(), terminar\u00e1n adicionalmente con NUL la matriz de bytes en la estructura ASN1_STRING. Sin embargo, es posible que las aplicaciones construyan directamente estructuras ASN1_STRING v\u00e1lidas que no terminen en NUL la matriz de bytes, ajustando directamente los campos \\\"data\\\" y \\\"length\\\" en la matriz ASN1_STRING. Esto tambi\u00e9n puede ocurrir usando la funci\u00f3n ASN1_STRING_set0(). Se ha detectado que numerosas funciones de OpenSSL que imprimen datos ASN.1 asumen que la matriz de bytes ASN1_STRING estar\u00e1 terminada en NUL, aunque esto no est\u00e1 garantizado para las cadenas que han sido construidas directamente. Cuando una aplicaci\u00f3n pide que se imprima una estructura ASN.1, y cuando esa estructura ASN.1 contiene ASN1_STRINGs que han sido construidos directamente por la aplicaci\u00f3n sin terminar en NUL el campo \\\"data\\\", entonces puede ocurrir un desbordamiento del buffer de lectura. Lo mismo puede ocurrir durante el procesamiento de las restricciones de nombre de los certificados (por ejemplo, si un certificado ha sido construido directamente por la aplicaci\u00f3n en lugar de cargarlo por medio de las funciones de an\u00e1lisis de OpenSSL, y el certificado contiene estructuras ASN1_STRING sin terminaci\u00f3n NUL). Tambi\u00e9n puede ocurrir en las funciones X509_get1_email(), X509_REQ_get1_email() y X509_get1_ocsp(). Si un actor malicioso puede hacer que una aplicaci\u00f3n construya directamente un ASN1_STRING y luego lo procese a mediante una de las funciones de OpenSSL afectadas, este problema podr\u00eda ser alcanzado. Esto podr\u00eda resultar en un bloqueo (causando un ataque de Denegaci\u00f3n de Servicio). Tambi\u00e9n podr\u00eda resultar en la revelaci\u00f3n de contenidos de memoria privada (como claves privadas, o texto plano confidencial). Corregido en OpenSSL versi\u00f3n 1.1.1l (Afectada 1.1.1-1.1.1k). Corregido en OpenSSL versi\u00f3n 1.0.2za (Afectada 1.0.2-1.0.2y).\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H\",\"baseScore\":7.4,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":5.2},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H\",\"baseScore\":7.4,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":5.2}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:P/I:N/A:P\",\"baseScore\":5.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.0.2\",\"versionEndExcluding\":\"1.0.2za\",\"matchCriteriaId\":\"20353A2F-46B5-4C46-B562-42CD6E2B248B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.1.1\",\"versionEndExcluding\":\"1.1.1l\",\"matchCriteriaId\":\"A9592A08-7FF0-490F-B684-6EA8E49F36C7\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA6FEEC2-9F11-4643-8827-749718254FED\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1FE996B1-6951-4F85-AA58-B99A379D2163\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:clustered_data_ontap_antivirus_connector:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"62347994-1353-497C-9C4A-D5D8D95F67E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.0\",\"versionEndIncluding\":\"11.50.2\",\"matchCriteriaId\":\"433D435D-13D0-4EAA-ACD9-DD88DA712D00\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3C19813-E823-456A-B1CE-EC0684CE1953\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:manageability_software_development_kit:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D39DCAE7-494F-40B2-867F-6C6A077939DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:santricity_smi-s_provider:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"361B791A-D336-4431-8F68-8135BEFFAEA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6E9EF0C-AFA8-4F7B-9FDC-1E0F7C26E737\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:storage_encryption:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D82795C-F1ED-4D2C-B578-75B9EECBB99C\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:epolicy_orchestrator:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.10.0\",\"matchCriteriaId\":\"A30F7908-5AF6-4761-BC6A-4C18EFAE48E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F30D3AF-4FA3-4B7A-BE04-C24E2EA19A95\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_1:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B00DDE7-7002-45BE-8EDE-65D964922CB0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_10:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB88C165-BB24-49FB-AAF6-087A766D5AD1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_2:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF806B52-DAD5-4D12-8BB6-3CBF9DC6B8DF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_3:*:*:*:*:*:*\",\"matchCriteriaId\":\"7DE847E0-431D-497D-9C57-C4E59749F6A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_4:*:*:*:*:*:*\",\"matchCriteriaId\":\"46385384-5561-40AA-9FDE-A2DE4FDFAD3E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_5:*:*:*:*:*:*\",\"matchCriteriaId\":\"B7CA7CA6-7CF2-48F6-81B5-69BA0A37EF4E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_6:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E4E5481-1070-4E1F-8679-1985DE4E785A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_7:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9EEA681-67FF-43B3-8610-0FA17FD279E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_8:*:*:*:*:*:*\",\"matchCriteriaId\":\"C33BA8EA-793D-4E79-BE9C-235ACE717216\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_9:*:*:*:*:*:*\",\"matchCriteriaId\":\"823DBE80-CB8D-4981-AE7C-28F3FDD40451\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tenable:nessus_network_monitor:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.0.0\",\"matchCriteriaId\":\"9E0DE4DE-9454-4E8D-9E00-3CBCDD8C142A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.16.0\",\"versionEndIncluding\":\"5.19.1\",\"matchCriteriaId\":\"8D977244-DC29-4301-8D89-0BD01BC328B8\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:essbase:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"11.1.2.4.047\",\"matchCriteriaId\":\"6A0BD5BD-E2F8-4B4E-B5CF-9787E6F2E4AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:essbase:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"21.0\",\"versionEndExcluding\":\"21.3\",\"matchCriteriaId\":\"3197F464-F0A5-4BD4-9068-65CD448D8F4C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:essbase:21.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"15DD67FD-CE98-4556-A036-B2970935AF4D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql_connectors:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"8.0.27\",\"matchCriteriaId\":\"AE23C7E1-F849-411D-850F-A504D4BA3414\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"8.0.25\",\"matchCriteriaId\":\"88627B99-16DC-4878-A63A-A40F6FC1F477\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.7.0\",\"versionEndIncluding\":\"5.7.35\",\"matchCriteriaId\":\"E667933A-37EA-4BC2-9180-C3B4B7038866\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.0.0\",\"versionEndIncluding\":\"8.0.26\",\"matchCriteriaId\":\"709E83B4-8C66-4255-870B-2F72B37BA8C6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql_workbench:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"8.0.26\",\"matchCriteriaId\":\"EED6C8C2-F986-4CFD-A343-AD2340F850F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E1E416B-920B-49A0-9523-382898C2979D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9DB4A14-2EF5-4B54-95D2-75E6CF9AA0A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8AF00C6-B97F-414D-A8DF-057E6BFD8597\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:secure_backup:18.1.0.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8929B61-16EC-4FE0-98A5-1CC7CC7FD9CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3E503FB-6279-4D4A-91D8-E237ECF9D2B0\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_infrastructure_network_services:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.0.1.1\",\"matchCriteriaId\":\"B0F46497-4AB0-49A7-9453-CC26837BF253\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_cloud_native_core_console:1.9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAAB7154-4DE8-4806-86D0-C1D33B84417B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD4349FE-EEF8-489A-8ABF-5FCD55EC6DE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:1.15.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6EAA723-2A23-4151-930B-86ACF9CC1C0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_session_border_controller:8.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9C416FD3-2E2F-4BBC-BD5F-F896825883F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_session_border_controller:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D886339E-EDB2-4879-BD54-1800E4CA9CAE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_unified_session_manager:8.2.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB468FEE-A0F4-49A0-BBEE-10D0733C87D4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_unified_session_manager:8.4.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC5C177E-0C77-48C9-847A-A9E5AA7DBC1F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_communications_broker:3.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"348EEE70-E114-4720-AAAF-E77DE5C9A2D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_communications_broker:3.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3DCDD73B-57B1-4580-B922-5662E3AC13B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_session_border_controller:8.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7015A8CB-8FA6-423E-8307-BD903244F517\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_session_border_controller:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F9A4E206-56C7-4578-AC9C-088B0C8D9CFE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:health_sciences_inform_publisher:6.2.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D1E6A38-4CBD-42E9-B2D2-11AEF157822F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:health_sciences_inform_publisher:6.3.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D105A5B-0AA8-4782-B804-CB1384F85884\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"9.2.6.3\",\"matchCriteriaId\":\"BE34D4F7-5C18-4578-8D0A-722FDF931333\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jd_edwards_world_security:a9.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B1CAD50-749F-4ADB-A046-BF3585677A58\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2021/08/26/2\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=94d23fcff9b2a7a8368dfe52214d5c2569882c11\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=ccb0a11145ee72b042d10593a64eaf9e8a55ec12\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10366\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691e7c59c9e%40%3Cdev.tomcat.apache.org%3E\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e5805a713d1%40%3Cdev.tomcat.apache.org%3E\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/09/msg00014.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/09/msg00021.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202209-02\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202210-02\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20210827-0010/\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240621-0006/\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"https://www.debian.org/security/2021/dsa-4963\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.openssl.org/news/secadv/20210824.txt\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2022.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2022.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuoct2021.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2021-16\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2022-02\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2021/08/26/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=94d23fcff9b2a7a8368dfe52214d5c2569882c11\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=ccb0a11145ee72b042d10593a64eaf9e8a55ec12\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10366\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691e7c59c9e%40%3Cdev.tomcat.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e5805a713d1%40%3Cdev.tomcat.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/09/msg00014.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/09/msg00021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202209-02\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202210-02\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20210827-0010/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240621-0006/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.debian.org/security/2021/dsa-4963\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.openssl.org/news/secadv/20210824.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujan2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuoct2021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2021-16\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2022-02\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-019200.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\"},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-028723.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\"},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-244969.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\"},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-389290.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.openssl.org/news/secadv/20210824.txt\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=94d23fcff9b2a7a8368dfe52214d5c2569882c11\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=ccb0a11145ee72b042d10593a64eaf9e8a55ec12\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.debian.org/security/2021/dsa-4963\", \"name\": \"DSA-4963\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691e7c59c9e%40%3Cdev.tomcat.apache.org%3E\", \"name\": \"[tomcat-dev] 20210825 OpenSSL security announcement - do we need a Tomcat Native release?\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2021/08/26/2\", \"name\": \"[oss-security] 20210825 OpenSSL SM2 Decryption Buffer Overflow (CVE-2021-3711), Read buffer overruns processing ASN.1 strings (CVE-2021-3712)\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e5805a713d1%40%3Cdev.tomcat.apache.org%3E\", \"name\": \"[tomcat-dev] 20210826 Re: OpenSSL security announcement - do we need a Tomcat Native release?\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20210827-0010/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/09/msg00014.html\", \"name\": \"[debian-lts-announce] 20210926 [SECURITY] [DLA 2766-1] openssl security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/09/msg00021.html\", \"name\": \"[debian-lts-announce] 20210930 [SECURITY] [DLA 2774-1] openssl1.0 security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuoct2021.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.tenable.com/security/tns-2021-16\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10366\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujan2022.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.tenable.com/security/tns-2022-02\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuapr2022.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security.gentoo.org/glsa/202209-02\", \"name\": \"GLSA-202209-02\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://security.gentoo.org/glsa/202210-02\", \"name\": \"GLSA-202210-02\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240621-0006/\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-03T17:01:08.180Z\"}}, {\"affected\": [{\"vendor\": \"Siemens\", \"product\": \"BFCClient\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.17\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"Industrial Edge - Machine Insight App\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"Industrial Edge - PROFINET IO Connector\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V1.1.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM RM1224 LTE(4G) EU\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM RM1224 LTE(4G) NAM\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX MX5000\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.15.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX MX5000RE\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.15.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1400\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.15.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1500\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.15.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1501\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.15.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1510\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.15.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1511\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.15.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1512\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.15.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1524\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.15.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX1536\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.15.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM ROX RX5000\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.15.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE M804PB\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE M812-1 ADSL-Router\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE M812-1 ADSL-Router\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE M816-1 ADSL-Router\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE M816-1 ADSL-Router\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE M826-2 SHDSL-Router\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE M874-2\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE M874-3\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE M876-3\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE M876-3 (ROK)\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE M876-4 (EU)\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE M876-4 (NAM)\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE MUM853-1 (EU)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V7.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE MUM856-1 (EU)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V7.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE MUM856-1 (RoW)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V7.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE S615 LAN-Router\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V7.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE SC622-2C\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V2.3\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE SC632-2C\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V2.3\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE SC636-2C\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V2.3\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE SC642-2C\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V2.3\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE SC646-2C\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V2.3\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W1748-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V3.0.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W1748-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V3.0.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W1788-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V3.0.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W1788-2 EEC M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V3.0.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W1788-2 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V3.0.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W1788-2IA M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V3.0.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W721-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W721-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W721-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W721-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W722-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W722-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W722-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W722-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W722-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W722-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W734-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W734-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W734-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W734-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W734-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W734-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W734-1 RJ45 (USA)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W734-1 RJ45 (USA)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W738-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W738-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W738-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W738-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W748-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W748-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W748-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W748-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W748-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W748-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W748-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W748-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W761-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W761-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W761-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W761-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W774-1 M12 EEC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W774-1 M12 EEC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W774-1 M12 EEC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W774-1 M12 EEC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W774-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W774-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W774-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W774-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W774-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W774-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W774-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W774-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W774-1 RJ45 (USA)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W774-1 RJ45 (USA)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W778-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W778-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W778-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W778-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W778-1 M12 EEC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W778-1 M12 EEC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W778-1 M12 EEC (USA)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W778-1 M12 EEC (USA)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-2 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-2 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-2 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-2 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-2 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-2 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-2 SFP\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-2 SFP\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-2 SFP\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-2 SFP\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-2IA RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-2IA RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-2IA RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W786-2IA RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-1 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-1 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 M12\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 M12 EEC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 M12 EEC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 M12 EEC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 M12 EEC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 M12 EEC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 M12 EEC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE W788-2 RJ45\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V6.6.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE WAM766-1\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V1.2.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE WAM766-1 (US)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V1.2.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE WAM766-1 EEC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V1.2.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE WAM766-1 EEC (US)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V1.2.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE WUM766-1\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V1.2.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE WUM766-1 (USA)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V1.2.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X200-4P IRT\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V5.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X201-3P IRT\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V5.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X201-3P IRT PRO\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V5.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X202-2IRT\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V5.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X202-2P IRT\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V5.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X202-2P IRT PRO\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V5.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X204-2\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X204-2FM\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X204-2LD\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X204-2LD TS\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X204-2TS\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X204IRT\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V5.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X204IRT PRO\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V5.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X206-1\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X206-1LD\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X208\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X208PRO\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X212-2\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X212-2LD\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X216\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X224\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X302-7 EEC (230V, coated)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X302-7 EEC (230V)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X302-7 EEC (24V, coated)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X302-7 EEC (24V)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X302-7 EEC (2x 230V, coated)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X302-7 EEC (2x 230V)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X302-7 EEC (2x 24V, coated)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X302-7 EEC (2x 24V)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X304-2FE\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X306-1LD FE\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X307-2 EEC (230V, coated)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X307-2 EEC (230V)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X307-2 EEC (24V, coated)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X307-2 EEC (24V)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X307-2 EEC (2x 230V, coated)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X307-2 EEC (2x 230V)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X307-2 EEC (2x 24V, coated)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X307-2 EEC (2x 24V)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X307-3\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X307-3\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X307-3LD\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X307-3LD\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X308-2\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X308-2\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X308-2LD\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X308-2LD\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X308-2LH\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X308-2LH\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X308-2LH+\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X308-2LH+\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X308-2M\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X308-2M\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X308-2M PoE\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X308-2M PoE\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X308-2M TS\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X308-2M TS\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X310\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X310\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X310FE\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X310FE\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X320-1 FE\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X320-1-2LD FE\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE X408-2\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XF201-3P IRT\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V5.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XF202-2P IRT\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V5.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XF204\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XF204-2\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XF204-2BA IRT\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V5.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XF204IRT\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V5.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XF206-1\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XF208\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V5.2.6\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-12M (230V, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-12M (230V, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-12M (230V, ports on rear)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-12M (230V, ports on rear)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-12M (24V, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-12M (24V, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-12M (24V, ports on rear)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-12M (24V, ports on rear)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-12M TS (24V)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-12M TS (24V)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (24V, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (24V, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (24V, ports on rear)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (24V, ports on rear)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (2x 24V, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (2x 24V, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (2x 24V, ports on rear)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M EEC (2x 24V, ports on rear)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M PoE (230V, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M PoE (230V, ports on rear)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M PoE (24V, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M PoE (24V, ports on rear)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SCALANCE XR324-4M PoE TS (24V, ports on front)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC CP 1242-7 V2\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V3.3.46\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC CP 1243-1\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V3.3.46\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC CP 1243-7 LTE EU\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V3.3.46\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC CP 1243-7 LTE US\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V3.3.46\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC CP 1243-8 IRC\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V3.3.46\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC CP 1542SP-1\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.2.28\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC CP 1543-1\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V3.0.22\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC CP 1543SP-1\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.2.28\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC CP 1545-1\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V1.1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC PCS neo (Administration Console)\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V3.1.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC Process Historian OPC UA Server\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2020 SP1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1211C AC/DC/Rly\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1211C DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1211C DC/DC/Rly\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1212C AC/DC/Rly\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1212C DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1212C DC/DC/Rly\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1212FC DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1212FC DC/DC/Rly\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1214C AC/DC/Rly\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1214C DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1214C DC/DC/Rly\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1214FC DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1214FC DC/DC/Rly\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1215C AC/DC/Rly\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1215C DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1215C DC/DC/Rly\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1215FC DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1215FC DC/DC/Rly\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1200 CPU 1217C DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SINEC NMS\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V1.0 SP3\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SINEMA Remote Connect Server\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V3.1\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SINEMA Server V14\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SINUMERIK Operate\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V4.95 SP1\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS ET 200SP CP 1543SP-1 ISEC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.2.28\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V2.2.28\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS NET CP 1242-7 V2\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V3.3.46\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS NET CP 1543-1\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V3.0.22\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS NET SCALANCE X308-2\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.1.4\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CP 1243-1\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V3.3.46\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CP 1243-1 RAIL\", \"versions\": [{\"status\": \"affected\", \"version\": \"All versions \u003c V3.3.46\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1212 AC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1212 DC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1212 DC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1212C AC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1212C DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1212C DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1214 AC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1214 DC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1214C AC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1214C AC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1214C DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1214C DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1214C DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1214C DC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1214C DC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1214FC DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1214FC DC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1215 AC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1215 AC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1215 DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1215 DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1215 DC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1215 DC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1215 DC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1215C AC/DC/RLY\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1215C DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1200 CPU 1215FC DC/DC/DC\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V4.5.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"TIA Administrator\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V1.0.7\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"x_adpType\": \"supplier\", \"references\": [{\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-244969.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-389290.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-028723.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-019200.html\"}], \"providerMetadata\": {\"orgId\": \"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\", \"shortName\": \"siemens-SADP\", \"dateUpdated\": \"2026-04-14T08:57:51.339Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.4, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"HIGH\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2021-3712\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-04-16T14:11:09.557845Z\"}}}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-125\", \"description\": \"CWE-125 Out-of-bounds Read\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-04-16T14:10:59.602Z\"}}], \"cna\": {\"title\": \"Read buffer overruns processing ASN.1 strings\", \"credits\": [{\"lang\": \"en\", \"value\": \"Ingo Schwarze\"}], \"metrics\": [{\"other\": {\"type\": \"unknown\", \"content\": {\"url\": \"https://www.openssl.org/policies/secpolicy.html#Moderate\", \"lang\": \"eng\", \"value\": \"Moderate\"}}}], \"affected\": [{\"vendor\": \"OpenSSL\", \"product\": \"OpenSSL\", \"versions\": [{\"status\": \"affected\", \"version\": \"Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k)\"}, {\"status\": \"affected\", \"version\": \"Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y)\"}]}], \"datePublic\": \"2021-08-24T00:00:00.000Z\", \"references\": [{\"url\": \"https://www.openssl.org/news/secadv/20210824.txt\"}, {\"url\": \"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=94d23fcff9b2a7a8368dfe52214d5c2569882c11\"}, {\"url\": \"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=ccb0a11145ee72b042d10593a64eaf9e8a55ec12\"}, {\"url\": \"https://www.debian.org/security/2021/dsa-4963\", \"name\": \"DSA-4963\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691e7c59c9e%40%3Cdev.tomcat.apache.org%3E\", \"name\": \"[tomcat-dev] 20210825 OpenSSL security announcement - do we need a Tomcat Native release?\", \"tags\": [\"mailing-list\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2021/08/26/2\", \"name\": \"[oss-security] 20210825 OpenSSL SM2 Decryption Buffer Overflow (CVE-2021-3711), Read buffer overruns processing ASN.1 strings (CVE-2021-3712)\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e5805a713d1%40%3Cdev.tomcat.apache.org%3E\", \"name\": \"[tomcat-dev] 20210826 Re: OpenSSL security announcement - do we need a Tomcat Native release?\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20210827-0010/\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/09/msg00014.html\", \"name\": \"[debian-lts-announce] 20210926 [SECURITY] [DLA 2766-1] openssl security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/09/msg00021.html\", \"name\": \"[debian-lts-announce] 20210930 [SECURITY] [DLA 2774-1] openssl1.0 security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuoct2021.html\"}, {\"url\": \"https://www.tenable.com/security/tns-2021-16\"}, {\"url\": \"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10366\"}, {\"url\": \"https://www.oracle.com/security-alerts/cpujan2022.html\"}, {\"url\": \"https://www.tenable.com/security/tns-2022-02\"}, {\"url\": \"https://www.oracle.com/security-alerts/cpuapr2022.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf\"}, {\"url\": \"https://security.gentoo.org/glsa/202209-02\", \"name\": \"GLSA-202209-02\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/202210-02\", \"name\": \"GLSA-202210-02\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240621-0006/\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \\\"d2i\\\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \\\"data\\\" and \\\"length\\\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \\\"data\\\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"Buffer overflow\"}]}], \"providerMetadata\": {\"orgId\": \"3a12439a-ef3a-4c79-92e6-6081a721f1e5\", \"shortName\": \"openssl\", \"dateUpdated\": \"2024-06-21T19:07:21.902Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2021-3712\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-04-16T14:11:16.454Z\", \"dateReserved\": \"2021-08-16T00:00:00.000Z\", \"assignerOrgId\": \"3a12439a-ef3a-4c79-92e6-6081a721f1e5\", \"datePublished\": \"2021-08-24T14:50:14.704Z\", \"assignerShortName\": \"openssl\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
GHSA-Q9WJ-F4QW-6VFJ
Vulnerability from github – Published: 2022-05-24 19:12 – Updated: 2026-04-27 14:17
VLAI
Summary
Read buffer overruns processing ASN.1 strings
Details
ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL's own "d2i" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the "data" and "length" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the "data" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).
Severity
7.4 (High)
{
"affected": [
{
"package": {
"ecosystem": "crates.io",
"name": "openssl-src"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "111.16.0"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2021-3712"
],
"database_specific": {
"cwe_ids": [
"CWE-125"
],
"github_reviewed": true,
"github_reviewed_at": "2022-06-17T00:09:35Z",
"nvd_published_at": "2021-08-24T15:15:00Z",
"severity": "HIGH"
},
"details": "ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \"d2i\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \"data\" and \"length\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \"data\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).",
"id": "GHSA-q9wj-f4qw-6vfj",
"modified": "2026-04-27T14:17:36Z",
"published": "2022-05-24T19:12:03Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3712"
},
{
"type": "WEB",
"url": "https://www.tenable.com/security/tns-2022-02"
},
{
"type": "WEB",
"url": "https://www.tenable.com/security/tns-2021-16"
},
{
"type": "WEB",
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"type": "WEB",
"url": "https://www.oracle.com/security-alerts/cpujan2022.html"
},
{
"type": "WEB",
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"type": "WEB",
"url": "https://www.openwall.com/lists/oss-security/2021/08/26/2"
},
{
"type": "WEB",
"url": "https://www.openssl.org/news/secadv/20210824.txt"
},
{
"type": "WEB",
"url": "https://www.debian.org/security/2021/dsa-4963"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20240621-0006"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20210827-0010"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/202210-02"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/202209-02"
},
{
"type": "WEB",
"url": "https://rustsec.org/advisories/RUSTSEC-2021-0098.html"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00021.html"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00014.html"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e5805a713d1@%3Cdev.tomcat.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e5805a713d1%40%3Cdev.tomcat.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691e7c59c9e@%3Cdev.tomcat.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691e7c59c9e%40%3Cdev.tomcat.apache.org%3E"
},
{
"type": "WEB",
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10366"
},
{
"type": "WEB",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ccb0a11145ee72b042d10593a64eaf9e8a55ec12"
},
{
"type": "WEB",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=94d23fcff9b2a7a8368dfe52214d5c2569882c11"
},
{
"type": "WEB",
"url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=ccb0a11145ee72b042d10593a64eaf9e8a55ec12"
},
{
"type": "WEB",
"url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=94d23fcff9b2a7a8368dfe52214d5c2569882c11"
},
{
"type": "WEB",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf"
},
{
"type": "WEB",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf"
},
{
"type": "WEB",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-389290.html"
},
{
"type": "WEB",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-244969.html"
},
{
"type": "WEB",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-028723.html"
},
{
"type": "WEB",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-019200.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"type": "CVSS_V3"
}
],
"summary": "Read buffer overruns processing ASN.1 strings"
}
GSD-2021-3712
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL's own "d2i" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the "data" and "length" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the "data" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2021-3712",
"description": "ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \"d2i\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \"data\" and \"length\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \"data\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).",
"id": "GSD-2021-3712",
"references": [
"https://www.suse.com/security/cve/CVE-2021-3712.html",
"https://www.debian.org/security/2021/dsa-4963",
"https://access.redhat.com/errata/RHSA-2022:0064",
"https://access.redhat.com/errata/RHSA-2021:5226",
"https://access.redhat.com/errata/RHSA-2021:4618",
"https://access.redhat.com/errata/RHSA-2021:4614",
"https://access.redhat.com/errata/RHSA-2021:4613",
"https://ubuntu.com/security/CVE-2021-3712",
"https://advisories.mageia.org/CVE-2021-3712.html",
"https://security.archlinux.org/CVE-2021-3712",
"https://access.redhat.com/errata/RHSA-2021:4861",
"https://access.redhat.com/errata/RHSA-2021:4863",
"https://alas.aws.amazon.com/cve/html/CVE-2021-3712.html",
"https://linux.oracle.com/cve/CVE-2021-3712.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2021-3712"
],
"details": "ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \"d2i\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \"data\" and \"length\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \"data\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).",
"id": "GSD-2021-3712",
"modified": "2023-12-13T01:23:34.893777Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "openssl-security@openssl.org",
"DATE_PUBLIC": "2021-08-24",
"ID": "CVE-2021-3712",
"STATE": "PUBLIC",
"TITLE": "Read buffer overruns processing ASN.1 strings"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "OpenSSL",
"version": {
"version_data": [
{
"version_value": "Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k)"
},
{
"version_value": "Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y)"
}
]
}
}
]
},
"vendor_name": "OpenSSL"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Ingo Schwarze"
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \"d2i\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \"data\" and \"length\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \"data\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y)."
}
]
},
"impact": [
{
"lang": "eng",
"url": "https://www.openssl.org/policies/secpolicy.html#Moderate",
"value": "Moderate"
}
],
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Buffer overflow"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openssl.org/news/secadv/20210824.txt",
"refsource": "CONFIRM",
"url": "https://www.openssl.org/news/secadv/20210824.txt"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=94d23fcff9b2a7a8368dfe52214d5c2569882c11",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=94d23fcff9b2a7a8368dfe52214d5c2569882c11"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ccb0a11145ee72b042d10593a64eaf9e8a55ec12",
"refsource": "CONFIRM",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ccb0a11145ee72b042d10593a64eaf9e8a55ec12"
},
{
"name": "DSA-4963",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2021/dsa-4963"
},
{
"name": "[tomcat-dev] 20210825 OpenSSL security announcement - do we need a Tomcat Native release?",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691e7c59c9e@%3Cdev.tomcat.apache.org%3E"
},
{
"name": "[oss-security] 20210825 OpenSSL SM2 Decryption Buffer Overflow (CVE-2021-3711), Read buffer overruns processing ASN.1 strings (CVE-2021-3712)",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2021/08/26/2"
},
{
"name": "[tomcat-dev] 20210826 Re: OpenSSL security announcement - do we need a Tomcat Native release?",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e5805a713d1@%3Cdev.tomcat.apache.org%3E"
},
{
"name": "https://security.netapp.com/advisory/ntap-20210827-0010/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20210827-0010/"
},
{
"name": "[debian-lts-announce] 20210926 [SECURITY] [DLA 2766-1] openssl security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00014.html"
},
{
"name": "[debian-lts-announce] 20210930 [SECURITY] [DLA 2774-1] openssl1.0 security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00021.html"
},
{
"name": "https://www.oracle.com/security-alerts/cpuoct2021.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"name": "https://www.tenable.com/security/tns-2021-16",
"refsource": "CONFIRM",
"url": "https://www.tenable.com/security/tns-2021-16"
},
{
"name": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10366",
"refsource": "CONFIRM",
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10366"
},
{
"name": "https://www.oracle.com/security-alerts/cpujan2022.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpujan2022.html"
},
{
"name": "https://www.tenable.com/security/tns-2022-02",
"refsource": "CONFIRM",
"url": "https://www.tenable.com/security/tns-2022-02"
},
{
"name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf",
"refsource": "CONFIRM",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf"
},
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf",
"refsource": "CONFIRM",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf"
},
{
"name": "GLSA-202209-02",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202209-02"
},
{
"name": "GLSA-202210-02",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/202210-02"
}
]
}
},
"gitlab.com": {
"advisories": [
{
"affected_range": "\u003e=1.0.2 \u003c1.0.2za||\u003e=1.1.1 \u003c1.1.1l",
"affected_versions": "All versions starting from 1.0.2 before 1.0.2za, all versions starting from 1.1.1 before 1.1.1l",
"cvss_v2": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
"cvss_v3": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"cwe_ids": [
"CWE-1035",
"CWE-125",
"CWE-937"
],
"date": "2022-12-06",
"description": "If a malicious actor can cause an application to directly construct an `ASN1_STRING` and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext)",
"fixed_versions": [
"1.1.0l",
"1.1.1o"
],
"identifier": "CVE-2021-3712",
"identifiers": [
"CVE-2021-3712"
],
"not_impacted": "All versions before 1.0.2, all versions starting from 1.0.2za before 1.1.1, all versions starting from 1.1.1l",
"package_slug": "conan/openssl",
"pubdate": "2021-08-24",
"solution": "Upgrade to versions 1.1.0l, 1.1.1o or above.",
"title": "Out-of-bounds Read",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2021-3712",
"https://www.openssl.org/news/secadv/20210824.txt"
],
"uuid": "36e0008f-587c-4596-b1cf-3eb09fdaa54f"
},
{
"affected_range": "(,8.0.27]",
"affected_versions": "All versions up to 8.0.27",
"cvss_v2": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
"cvss_v3": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"cwe_ids": [
"CWE-1035",
"CWE-125",
"CWE-937"
],
"date": "2022-12-06",
"description": "ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \"d2i\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \"data\" and \"length\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \"data\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).",
"fixed_versions": [],
"identifier": "CVE-2021-3712",
"identifiers": [
"CVE-2021-3712"
],
"not_impacted": "",
"package_slug": "maven/mysql-connector-java",
"pubdate": "2021-08-24",
"solution": "Unfortunately, there is no solution available yet.",
"title": "Out-of-bounds Read",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2021-3712",
"https://www.openssl.org/news/secadv/20210824.txt",
"https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=94d23fcff9b2a7a8368dfe52214d5c2569882c11",
"https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ccb0a11145ee72b042d10593a64eaf9e8a55ec12",
"https://www.debian.org/security/2021/dsa-4963",
"https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691e7c59c9e@%3Cdev.tomcat.apache.org%3E",
"http://www.openwall.com/lists/oss-security/2021/08/26/2",
"https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e5805a713d1@%3Cdev.tomcat.apache.org%3E",
"https://security.netapp.com/advisory/ntap-20210827-0010/",
"https://www.tenable.com/security/tns-2021-16",
"https://lists.debian.org/debian-lts-announce/2021/09/msg00014.html",
"https://lists.debian.org/debian-lts-announce/2021/09/msg00021.html",
"https://www.oracle.com/security-alerts/cpuoct2021.html",
"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10366",
"https://www.tenable.com/security/tns-2022-02",
"https://www.oracle.com/security-alerts/cpujan2022.html",
"https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf",
"https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf"
],
"uuid": "0cc66ded-a05a-4711-a43a-85897c71ae6b"
},
{
"affected_range": "\u003c=8.0.27",
"affected_versions": "All versions up to 8.0.27",
"cvss_v2": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
"cvss_v3": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"cwe_ids": [
"CWE-1035",
"CWE-125",
"CWE-937"
],
"date": "2022-12-06",
"description": "ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \"d2i\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \"data\" and \"length\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \"data\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).",
"fixed_versions": [
"8.0.28"
],
"identifier": "CVE-2021-3712",
"identifiers": [
"CVE-2021-3712"
],
"not_impacted": "All versions after 8.0.27",
"package_slug": "pypi/mysql-connector-python",
"pubdate": "2021-08-24",
"solution": "Upgrade to version 8.0.28 or above.",
"title": "Out-of-bounds Read",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2021-3712",
"https://www.openssl.org/news/secadv/20210824.txt",
"https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=94d23fcff9b2a7a8368dfe52214d5c2569882c11",
"https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ccb0a11145ee72b042d10593a64eaf9e8a55ec12",
"https://www.debian.org/security/2021/dsa-4963",
"https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691e7c59c9e@%3Cdev.tomcat.apache.org%3E",
"http://www.openwall.com/lists/oss-security/2021/08/26/2",
"https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e5805a713d1@%3Cdev.tomcat.apache.org%3E",
"https://security.netapp.com/advisory/ntap-20210827-0010/",
"https://www.tenable.com/security/tns-2021-16",
"https://lists.debian.org/debian-lts-announce/2021/09/msg00014.html",
"https://lists.debian.org/debian-lts-announce/2021/09/msg00021.html",
"https://www.oracle.com/security-alerts/cpuoct2021.html",
"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10366",
"https://www.tenable.com/security/tns-2022-02",
"https://www.oracle.com/security-alerts/cpujan2022.html",
"https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf",
"https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf"
],
"uuid": "b1f8793b-c77c-467f-97dd-acf0b14ea68d"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "1.1.1l",
"versionStartIncluding": "1.1.1",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "1.0.2za",
"versionStartIncluding": "1.0.2",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:netapp:santricity_smi-s_provider:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:clustered_data_ontap_antivirus_connector:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:solidfire:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:hci_management_node:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:manageability_software_development_kit:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:storage_encryption:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "11.50.2",
"versionStartIncluding": "11.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_1:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_2:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_3:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_4:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_5:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_6:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:-:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mcafee:epolicy_orchestrator:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "5.10.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_7:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_8:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_9:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_10:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "5.19.1",
"versionStartIncluding": "5.16.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:tenable:nessus_network_monitor:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "6.0.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "8.0.26",
"versionStartIncluding": "8.0.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "5.7.35",
"versionStartIncluding": "5.7.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql_workbench:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "8.0.26",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql_enterprise_monitor:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "8.0.25",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:essbase:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "21.3",
"versionStartIncluding": "21.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:secure_backup:18.1.0.1.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:essbase:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "11.1.2.4.047",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:essbase:21.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:mysql_connectors:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "8.0.27",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:siemens:sinec_infrastructure_network_services:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "1.0.1.1",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:oracle:jd_edwards_world_security:a9.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:enterprise_session_border_controller:8.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:enterprise_communications_broker:3.2.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:communications_session_border_controller:8.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:enterprise_session_border_controller:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:communications_session_border_controller:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:communications_cloud_native_core_security_edge_protection_proxy:1.7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:enterprise_communications_broker:3.3.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:communications_unified_session_manager:8.2.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:communications_cloud_native_core_console:1.9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:communications_cloud_native_core_unified_data_repository:1.15.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:health_sciences_inform_publisher:6.3.1.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "9.2.6.3",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:communications_unified_session_manager:8.4.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:oracle:health_sciences_inform_publisher:6.2.1.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "openssl-security@openssl.org",
"ID": "CVE-2021-3712"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \"d2i\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \"data\" and \"length\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \"data\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y)."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-125"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openssl.org/news/secadv/20210824.txt",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://www.openssl.org/news/secadv/20210824.txt"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=94d23fcff9b2a7a8368dfe52214d5c2569882c11",
"refsource": "CONFIRM",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=94d23fcff9b2a7a8368dfe52214d5c2569882c11"
},
{
"name": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ccb0a11145ee72b042d10593a64eaf9e8a55ec12",
"refsource": "CONFIRM",
"tags": [
"Mailing List",
"Patch",
"Vendor Advisory"
],
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=ccb0a11145ee72b042d10593a64eaf9e8a55ec12"
},
{
"name": "DSA-4963",
"refsource": "DEBIAN",
"tags": [
"Third Party Advisory"
],
"url": "https://www.debian.org/security/2021/dsa-4963"
},
{
"name": "[tomcat-dev] 20210825 OpenSSL security announcement - do we need a Tomcat Native release?",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.apache.org/thread.html/r18995de860f0e63635f3008fd2a6aca82394249476d21691e7c59c9e@%3Cdev.tomcat.apache.org%3E"
},
{
"name": "[oss-security] 20210825 OpenSSL SM2 Decryption Buffer Overflow (CVE-2021-3711), Read buffer overruns processing ASN.1 strings (CVE-2021-3712)",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://www.openwall.com/lists/oss-security/2021/08/26/2"
},
{
"name": "[tomcat-dev] 20210826 Re: OpenSSL security announcement - do we need a Tomcat Native release?",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.apache.org/thread.html/rad5d9f83f0d11fb3f8bb148d179b8a9ad7c6a17f18d70e5805a713d1@%3Cdev.tomcat.apache.org%3E"
},
{
"name": "https://security.netapp.com/advisory/ntap-20210827-0010/",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://security.netapp.com/advisory/ntap-20210827-0010/"
},
{
"name": "https://www.tenable.com/security/tns-2021-16",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://www.tenable.com/security/tns-2021-16"
},
{
"name": "[debian-lts-announce] 20210926 [SECURITY] [DLA 2766-1] openssl security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00014.html"
},
{
"name": "[debian-lts-announce] 20210930 [SECURITY] [DLA 2774-1] openssl1.0 security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/09/msg00021.html"
},
{
"name": "https://www.oracle.com/security-alerts/cpuoct2021.html",
"refsource": "MISC",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"name": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10366",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10366"
},
{
"name": "https://www.tenable.com/security/tns-2022-02",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.tenable.com/security/tns-2022-02"
},
{
"name": "https://www.oracle.com/security-alerts/cpujan2022.html",
"refsource": "MISC",
"tags": [
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpujan2022.html"
},
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-244969.pdf"
},
{
"name": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf"
},
{
"name": "https://www.oracle.com/security-alerts/cpuapr2022.html",
"refsource": "MISC",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"name": "GLSA-202209-02",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202209-02"
},
{
"name": "GLSA-202210-02",
"refsource": "GENTOO",
"tags": [
"Third Party Advisory"
],
"url": "https://security.gentoo.org/glsa/202210-02"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "MEDIUM",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 5.8,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.6,
"impactScore": 4.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 2.2,
"impactScore": 5.2
}
},
"lastModifiedDate": "2022-12-06T21:23Z",
"publishedDate": "2021-08-24T15:15Z"
}
}
}
ICSA-22-069-09
Vulnerability from csaf_cisa - Published: 2022-03-08 00:00 - Updated: 2025-05-06 06:00Summary
Siemens SINEC INS
Notes
Summary: 71 vulnerabilities in third-party components as Node.js, cURL, SQLite, CivetWeb and DNS(ISC BIND) could allow an attacker to interfere with the affected product in various ways.
Siemens has released an update for SINEC INS and recommends to update to the latest versions.
General Recommendations: As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources: For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use: Siemens Security Advisories are subject to the terms and conditions contained in Siemens' underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter "License Terms"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens' Global Website (https://www.siemens.com/terms_of_use, hereinafter "Terms of Use"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.
Legal Notice: All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Advisory Conversion Disclaimer: This CISA CSAF advisory was converted from Siemens ProductCERT's CSAF advisory.
Critical infrastructure sectors: Multiple
Countries/areas deployed: Worldwide
Company headquarters location: Germany
Recommended Practices: CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.
Recommended Practices: Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.
Recommended Practices: Locate control system networks and remote devices behind firewalls and isolate them from business networks.
Recommended Practices: When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.
Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices: CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices: CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Recommended Practices: Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
References
153 references
Acknowledgments
Siemens ProductCERT
{
"document": {
"acknowledgments": [
{
"organization": "Siemens ProductCERT",
"summary": "reporting these vulnerabilities to CISA."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"notes": [
{
"category": "summary",
"text": "71 vulnerabilities in third-party components as Node.js, cURL, SQLite, CivetWeb and DNS(ISC BIND) could allow an attacker to interfere with the affected product in various ways.\n\nSiemens has released an update for SINEC INS and recommends to update to the latest versions.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\n\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "Siemens Security Advisories are subject to the terms and conditions contained in Siemens\u0027 underlying license terms or other applicable agreements previously agreed to with Siemens (hereinafter \"License Terms\"). To the extent applicable to information, software or documentation made available in or through a Siemens Security Advisory, the Terms of Use of Siemens\u0027 Global Website (https://www.siemens.com/terms_of_use, hereinafter \"Terms of Use\"), in particular Sections 8-10 of the Terms of Use, shall apply additionally. In case of conflicts, the License Terms shall prevail over the Terms of Use.",
"title": "Terms of Use"
},
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "other",
"text": "This CISA CSAF advisory was converted from Siemens ProductCERT\u0027s CSAF advisory.",
"title": "Advisory Conversion Disclaimer"
},
{
"category": "other",
"text": "Multiple",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "Germany",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "other",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "SSA-389290: Third-Party Component Vulnerabilities in SINEC INS - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-389290.json"
},
{
"category": "self",
"summary": "SSA-389290: Third-Party Component Vulnerabilities in SINEC INS - TXT Version",
"url": "https://cert-portal.siemens.com/productcert/txt/ssa-389290.txt"
},
{
"category": "self",
"summary": "SSA-389290: Third-Party Component Vulnerabilities in SINEC INS - PDF Version",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-22-069-09 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2022/icsa-22-069-09.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-22-069-09 - Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-22-069-09"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
}
],
"title": "Siemens SINEC INS",
"tracking": {
"current_release_date": "2025-05-06T06:00:00.000000Z",
"generator": {
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-22-069-09",
"initial_release_date": "2022-03-08T00:00:00.000000Z",
"revision_history": [
{
"date": "2022-03-08T00:00:00.000000Z",
"legacy_version": "1.0",
"number": "1",
"summary": "Publication Date"
},
{
"date": "2025-05-06T06:00:00.000000Z",
"legacy_version": "Revision",
"number": "2",
"summary": "Revision - Fixing typos"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV1.0.1.1",
"product": {
"name": "SINEC INS",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "SINEC INS"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-19242",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "SQLite 3.30.1 mishandles pExpr-\u003ey.pTab, as demonstrated by the TK_COLUMN case in sqlite3ExprCodeTarget in expr.c.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2019-19242 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2019-19242 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2019-19242.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2019-19242"
},
{
"cve": "CVE-2019-19244",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "Select in select.c in SQLite 3.30.1 allows a crash if a sub-select uses both DISTINCT and window functions, and also has certain ORDER BY usage.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2019-19244 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2019-19244 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2019-19244.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2019-19244"
},
{
"cve": "CVE-2019-19317",
"cwe": {
"id": "CWE-681",
"name": "Incorrect Conversion between Numeric Types"
},
"notes": [
{
"category": "summary",
"text": "lookupName in resolve.c in SQLite 3.30.1 omits bits from the colUsed bitmask in the case of a generated column, which allows attackers to cause a denial of service or possibly have unspecified other impact.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2019-19317 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2019-19317 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2019-19317.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2019-19317"
},
{
"cve": "CVE-2019-19603",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "SQLite 3.30.1 mishandles certain SELECT statements with a nonexistent VIEW, leading to an application crash.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2019-19603 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2019-19603 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2019-19603.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2019-19603"
},
{
"cve": "CVE-2019-19645",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"notes": [
{
"category": "summary",
"text": "alter.c in SQLite through 3.30.1 allows attackers to trigger infinite recursion via certain types of self-referential views in conjunction with ALTER TABLE statements.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2019-19645 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2019-19645 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2019-19645.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2019-19645"
},
{
"cve": "CVE-2019-19646",
"cwe": {
"id": "CWE-754",
"name": "Improper Check for Unusual or Exceptional Conditions"
},
"notes": [
{
"category": "summary",
"text": "pragma.c in SQLite through 3.30.1 mishandles NOT NULL in an integrity_check PRAGMA command in certain cases of generated columns.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2019-19646 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2019-19646 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2019-19646.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2019-19646"
},
{
"cve": "CVE-2019-19880",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "exprListAppendList in window.c in SQLite 3.30.1 allows attackers to trigger an invalid pointer dereference because constant integer values in ORDER BY clauses of window definitions are mishandled.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2019-19880 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2019-19880 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2019-19880.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2019-19880"
},
{
"cve": "CVE-2019-19923",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "flattenSubquery in select.c in SQLite 3.30.1 mishandles certain uses of SELECT DISTINCT involving a LEFT JOIN in which the right-hand side is a view. This can cause a NULL pointer dereference (or incorrect results).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2019-19923 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2019-19923 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2019-19923.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2019-19923"
},
{
"cve": "CVE-2019-19924",
"cwe": {
"id": "CWE-755",
"name": "Improper Handling of Exceptional Conditions"
},
"notes": [
{
"category": "summary",
"text": "SQLite 3.30.1 mishandles certain parser-tree rewriting, related to expr.c, vdbeaux.c, and window.c. This is caused by incorrect sqlite3WindowRewrite() error handling.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2019-19924 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2019-19924 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2019-19924.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2019-19924"
},
{
"cve": "CVE-2019-19925",
"cwe": {
"id": "CWE-434",
"name": "Unrestricted Upload of File with Dangerous Type"
},
"notes": [
{
"category": "summary",
"text": "zipfileUpdate in ext/misc/zipfile.c in SQLite 3.30.1 mishandles a NULL pathname during an update of a ZIP archive.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2019-19925 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2019-19925 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2019-19925.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2019-19925"
},
{
"cve": "CVE-2019-19926",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "multiSelect in select.c in SQLite 3.30.1 mishandles certain errors during parsing, as demonstrated by errors from sqlite3WindowRewrite() calls. NOTE: this vulnerability exists because of an incomplete fix for CVE-2019-19880.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2019-19926 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2019-19926 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2019-19926.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2019-19926"
},
{
"cve": "CVE-2020-1971",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "The X.509 GeneralName type is a generic type for representing different types of names. One of those name types is known as EDIPartyName. OpenSSL provides a function GENERAL_NAME_cmp which compares different instances of a GENERAL_NAME to see if they are equal or not. This function behaves incorrectly when both GENERAL_NAMEs contain an EDIPARTYNAME. A NULL pointer dereference and a crash may occur leading to a possible denial of service attack. OpenSSL itself uses the GENERAL_NAME_cmp function for two purposes: 1) Comparing CRL distribution point names between an available CRL and a CRL distribution point embedded in an X509 certificate 2) When verifying that a timestamp response token signer matches the timestamp authority name (exposed via the API functions TS_RESP_verify_response and TS_RESP_verify_token) If an attacker can control both items being compared then that attacker could trigger a crash. For example if the attacker can trick a client or server into checking a malicious certificate against a malicious CRL then this may occur. Note that some applications automatically download CRLs based on a URL embedded in a certificate. This checking happens prior to the signatures on the certificate and CRL being verified. OpenSSL\u0027s s_server, s_client and verify tools have support for the \"-crl_download\" option which implements automatic CRL downloading and this attack has been demonstrated to work against those tools. Note that an unrelated bug means that affected versions of OpenSSL cannot parse or construct correct encodings of EDIPARTYNAME. However it is possible to construct a malformed EDIPARTYNAME that OpenSSL\u0027s parser will accept and hence trigger this attack. All OpenSSL 1.1.1 and 1.0.2 versions are affected by this issue. Other OpenSSL releases are out of support and have not been checked. Fixed in OpenSSL 1.1.1i (Affected 1.1.1-1.1.1h). Fixed in OpenSSL 1.0.2x (Affected 1.0.2-1.0.2w).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-1971 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-1971 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-1971.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-1971"
},
{
"cve": "CVE-2020-7774",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"notes": [
{
"category": "summary",
"text": "This affects the package y18n before 3.2.2, 4.0.1 and 5.0.5. PoC by po6ix: const y18n = require(\u0027y18n\u0027)(); y18n.setLocale(\u0027PROTO\u0027); y18n.updateLocale({polluted: true}); console.log(polluted); // true",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-7774 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-7774 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-7774.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.3,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-7774"
},
{
"cve": "CVE-2020-8169",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "summary",
"text": "The libcurl library versions 7.62.0 to and including 7.70.0 are vulnerable to an information disclosure vulnerability that can lead to a partial password being leaked over the network and to the DNS server(s).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-8169 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-8169 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-8169.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-8169"
},
{
"cve": "CVE-2020-8177",
"cwe": {
"id": "CWE-74",
"name": "Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "curl 7.20.0 through 7.70.0 is vulnerable to improper restriction of names for files and other resources that can lead too overwriting a local file when the -J flag is used.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-8177 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-8177 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-8177.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-8177"
},
{
"cve": "CVE-2020-8231",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "Due to use of a dangling pointer, libcurl 7.29.0 through 7.71.1 can use the wrong connection when sending data.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-8231 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-8231 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-8231.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-8231"
},
{
"cve": "CVE-2020-8265",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 are vulnerable to a use-after-free bug in its TLS implementation. When writing to a TLS enabled socket, node::StreamBase::Write calls node::TLSWrap::DoWrite with a freshly allocated WriteWrap object as first argument. If the DoWrite method does not return an error, this object is passed back to the caller as part of a StreamWriteResult structure. This may be exploited to corrupt memory leading to a Denial of Service or potentially other exploits.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-8265 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-8265 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-8265.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-8265"
},
{
"cve": "CVE-2020-8284",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "summary",
"text": "A malicious server can use the FTP PASV response to trick curl 7.73.0 and earlier into connecting back to a given IP address and port, and this way potentially make curl extract information about services that are otherwise private and not disclosed, for example doing port scanning and service banner extractions.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-8284 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-8284 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-8284.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-8284"
},
{
"cve": "CVE-2020-8285",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"notes": [
{
"category": "summary",
"text": "curl 7.21.0 to and including 7.73.0 is vulnerable to uncontrolled recursion due to a stack overflow issue in FTP wildcard match parsing.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-8285 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-8285 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-8285.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-8285"
},
{
"cve": "CVE-2020-8286",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "summary",
"text": "The libcurl library versions 7.41.0 to and including 7.73.0 are vulnerable to an improper check for certificate revocation due to insufficient verification of the OCSP response. This vulnerability could allow an attacker to pass a revoked certificate as valid.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-8286 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-8286 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-8286.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-8286"
},
{
"cve": "CVE-2020-8287",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Node.js versions before 10.23.1, 12.20.1, 14.15.4, 15.5.1 allow two copies of a header field in an HTTP request (for example, two Transfer-Encoding header fields). In this case, Node.js identifies the first header field and ignores the second. This can lead to HTTP Request Smuggling.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-8287 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-8287 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-8287.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-8287"
},
{
"cve": "CVE-2020-8625",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"notes": [
{
"category": "summary",
"text": "BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND\u0027s default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting valid values for the tkey-gssapi-keytab or tkey-gssapi-credentialconfiguration options. Although the default configuration is not vulnerable, GSS-TSIG is frequently used in networks where BIND is integrated with Samba, as well as in mixed-server environments that combine BIND servers with Active Directory domain controllers. The most likely outcome of a successful exploitation of the vulnerability is a crash of the named process. However, remote code execution, while unproven, is theoretically possible. Affects: BIND 9.5.0 -\u003e 9.11.27, 9.12.0 -\u003e 9.16.11, and versions BIND 9.11.3-S1 -\u003e 9.11.27-S1 and 9.16.8-S1 -\u003e 9.16.11-S1 of BIND Supported Preview Edition. Also release versions 9.17.0 -\u003e 9.17.1 of the BIND 9.17 development branch",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-8625 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-8625 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-8625.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-8625"
},
{
"cve": "CVE-2020-9327",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "In SQLite 3.31.1, isAuxiliaryVtabOperator allows attackers to trigger a NULL pointer dereference and segmentation fault because of generated column optimizations.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-9327 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-9327 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-9327.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-9327"
},
{
"cve": "CVE-2020-11655",
"cwe": {
"id": "CWE-665",
"name": "Improper Initialization"
},
"notes": [
{
"category": "summary",
"text": "SQLite through 3.31.1 allows attackers to cause a denial of service (segmentation fault) via a malformed window-function query because the AggInfo object\u0027s initialization is mishandled.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-11655 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-11655 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-11655.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-11655"
},
{
"cve": "CVE-2020-11656",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "In SQLite through 3.31.1, the ALTER TABLE implementation has a use-after-free, as demonstrated by an ORDER BY clause that belongs to a compound SELECT statement.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-11656 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-11656 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-11656.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-11656"
},
{
"cve": "CVE-2020-13630",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "ext/fts3/fts3.c in SQLite before 3.32.0 has a use-after-free in fts3EvalNextRow, related to the snippet feature.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-13630 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-13630 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-13630.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-13630"
},
{
"cve": "CVE-2020-13631",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "SQLite before 3.32.0 allows a virtual table to be renamed to the name of one of its shadow tables, related to alter.c and build.c.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-13631 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-13631 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-13631.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-13631"
},
{
"cve": "CVE-2020-13632",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "ext/fts3/fts3_snippet.c in SQLite before 3.32.0 has a NULL pointer dereference via a crafted matchinfo() query.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-13632 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-13632 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-13632.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-13632"
},
{
"cve": "CVE-2020-13871",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "SQLite 3.32.2 has a use-after-free in resetAccumulator in select.c because the parse tree rewrite for window functions is too late.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-13871 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-13871 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-13871.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-13871"
},
{
"cve": "CVE-2020-15358",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "summary",
"text": "In SQLite before 3.32.3, select.c mishandles query-flattener optimization, leading to a multiSelectOrderBy heap overflow because of misuse of transitive properties for constant propagation.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-15358 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-15358 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-15358.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-15358"
},
{
"cve": "CVE-2020-27304",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "summary",
"text": "The CivetWeb web library does not validate uploaded filepaths when running on an OS other than Windows, when using the built-in HTTP form-based file upload mechanism, via the mg_handle_form_request API. Web applications that use the file upload form handler, and use parts of the user-controlled filename in the output path, are susceptible to directory traversal",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2020-27304 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2020-27304 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2020-27304.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2020-27304"
},
{
"cve": "CVE-2021-3449",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "summary",
"text": "An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-3449 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-3449 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-3449.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-3449"
},
{
"cve": "CVE-2021-3450",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "summary",
"text": "The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check. An error in the implementation of this check meant that the result of a previous check to confirm that certificates in the chain are valid CA certificates was overwritten. This effectively bypasses the check that non-CA certificates must not be able to issue other certificates. If a \"purpose\" has been configured then there is a subsequent opportunity for checks that the certificate is a valid CA. All of the named \"purpose\" values implemented in libcrypto perform this check. Therefore, where a purpose is set the certificate chain will still be rejected even when the strict flag has been used. A purpose is set by default in libssl client and server certificate verification routines, but it can be overridden or removed by an application. In order to be affected, an application must explicitly set the X509_V_FLAG_X509_STRICT verification flag and either not set a purpose for the certificate verification or, in the case of TLS client or server applications, override the default purpose. OpenSSL versions 1.1.1h and newer are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1h-1.1.1j).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-3450 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-3450 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-3450.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-3450"
},
{
"cve": "CVE-2021-3672",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "summary",
"text": "A flaw was found in c-ares library, where a missing input validation check of host names returned by DNS (Domain Name Servers) can lead to output of wrong hostnames which might potentially lead to Domain Hijacking. The highest threat from this vulnerability is to confidentiality and integrity as well as system availability.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-3672 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-3672 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-3672.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.6,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-3672"
},
{
"cve": "CVE-2021-3711",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"notes": [
{
"category": "summary",
"text": "In order to decrypt SM2 encrypted data an application is expected to call the API function EVP_PKEY_decrypt(). Typically an application will call this function twice. The first time, on entry, the \"out\" parameter can be NULL and, on exit, the \"outlen\" parameter is populated with the buffer size required to hold the decrypted plaintext. The application can then allocate a sufficiently sized buffer and call EVP_PKEY_decrypt() again, but this time passing a non-NULL value for the \"out\" parameter. A bug in the implementation of the SM2 decryption code means that the calculation of the buffer size required to hold the plaintext returned by the first call to EVP_PKEY_decrypt() can be smaller than the actual size required by the second call. This can lead to a buffer overflow when EVP_PKEY_decrypt() is called by the application a second time with a buffer that is too small. A malicious attacker who is able present SM2 content for decryption to an application could cause attacker chosen data to overflow the buffer by up to a maximum of 62 bytes altering the contents of other data held after the buffer, possibly changing application behaviour or causing the application to crash. The location of the buffer is application dependent but is typically heap allocated. Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-3711 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-3711 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-3711.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-3711"
},
{
"cve": "CVE-2021-3712",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \"d2i\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \"data\" and \"length\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \"data\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-3712 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-3712 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-3712.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-3712"
},
{
"cve": "CVE-2021-22876",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "summary",
"text": "curl 7.1.1 to and including 7.75.0 is vulnerable to an \"Exposure of Private Personal Information to an Unauthorized Actor\" by leaking credentials in the HTTP Referer: header. libcurl does not strip off user credentials from the URL when automatically populating the Referer: HTTP request header field in outgoing HTTP requests, and therefore risks leaking sensitive data to the server that is the target of the second HTTP request.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22876 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22876 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22876.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22876"
},
{
"cve": "CVE-2021-22883",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "summary",
"text": "Node.js before 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to a denial of service attack when too many connection attempts with an \u0027unknownProtocol\u0027 are established. This leads to a leak of file descriptors. If a file descriptor limit is configured on the system, then the server is unable to accept new connections and prevent the process also from opening, e.g. a file. If no file descriptor limit is configured, then this lead to an excessive memory usage and cause the system to run out of memory.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22883 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22883 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22883.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22883"
},
{
"cve": "CVE-2021-22884",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "Node.js before 10.24.0, 12.21.0, 14.16.0, and 15.10.0 is vulnerable to DNS rebinding attacks as the whitelist includes \u201clocalhost6\u201d. When \u201clocalhost6\u201d is not present in /etc/hosts, it is just an ordinary domain that is resolved via DNS, i.e., over network. If the attacker controls the victim\u0027s DNS server or can spoof its responses, the DNS rebinding protection can be bypassed by using the \u201clocalhost6\u201d domain. As long as the attacker uses the \u201clocalhost6\u201d domain, they can still apply the attack described in CVE-2018-7160.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22884 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22884 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22884.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22884"
},
{
"cve": "CVE-2021-22890",
"cwe": {
"id": "CWE-290",
"name": "Authentication Bypass by Spoofing"
},
"notes": [
{
"category": "summary",
"text": "curl 7.63.0 to and including 7.75.0 includes vulnerability that allows a malicious HTTPS proxy to MITM a connection due to bad handling of TLS 1.3 session tickets. When using a HTTPS proxy and TLS 1.3, libcurl can confuse session tickets arriving from the HTTPS proxy but work as if they arrived from the remote server and then wrongly \"short-cut\" the host handshake. When confusing the tickets, a HTTPS proxy can trick libcurl to use the wrong session ticket resume for the host and thereby circumvent the server TLS certificate check and make a MITM attack to be possible to perform unnoticed. Note that such a malicious HTTPS proxy needs to provide a certificate that curl will accept for the MITMed server for an attack to work - unless curl has been told to ignore the server certificate check.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22890 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22890 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22890.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22890"
},
{
"cve": "CVE-2021-22897",
"cwe": {
"id": "CWE-668",
"name": "Exposure of Resource to Wrong Sphere"
},
"notes": [
{
"category": "summary",
"text": "curl 7.61.0 through 7.76.1 suffers from exposure of data element to wrong session due to a mistake in the code for CURLOPT_SSL_CIPHER_LIST when libcurl is built to use the Schannel TLS library. The selected cipher set was stored in a single \"static\" variable in the library, which has the surprising side-effect that if an application sets up multiple concurrent transfers, the last one that sets the ciphers will accidentally control the set used by all transfers. In a worst-case scenario, this weakens transport security significantly.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22897 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22897 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22897.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22897"
},
{
"cve": "CVE-2021-22898",
"cwe": {
"id": "CWE-909",
"name": "Missing Initialization of Resource"
},
"notes": [
{
"category": "summary",
"text": "curl 7.7 through 7.76.1 suffers from an information disclosure when the -t command line option, known as CURLOPT_TELNETOPTIONS in libcurl, is used to send variable=content pairs to TELNET servers. Due to a flaw in the option parser for sending NEW_ENV variables, libcurl could be made to pass on uninitialized data from a stack based buffer to the server, resulting in potentially revealing sensitive internal information to the server using a clear-text network protocol.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22898 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22898 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22898.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22898"
},
{
"cve": "CVE-2021-22901",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "curl 7.75.0 through 7.76.1 suffers from a use-after-free vulnerability resulting in already freed memory being used when a TLS 1.3 session ticket arrives over a connection. A malicious server can use this in rare unfortunate circumstances to potentially reach remote code execution in the client. When libcurl at run-time sets up support for TLS 1.3 session tickets on a connection using OpenSSL, it stores pointers to the transfer in-memory object for later retrieval when a session ticket arrives. If the connection is used by multiple transfers (like with a reused HTTP/1.1 connection or multiplexed HTTP/2 connection) that first transfer object might be freed before the new session is established on that connection and then the function will access a memory buffer that might be freed. When using that memory, libcurl might even call a function pointer in the object, making it possible for a remote code execution if the server could somehow manage to get crafted memory content into the correct place in memory.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22901 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22901 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22901.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22901"
},
{
"cve": "CVE-2021-22918",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "Node.js before 16.4.1, 14.17.2, 12.22.2 is vulnerable to an out-of-bounds read when uv__idna_toascii() is used to convert strings to ASCII. The pointer p is read and increased without checking whether it is beyond pe, with the latter holding a pointer to the end of the buffer. This can lead to information disclosures or crashes. This function can be triggered via uv_getaddrinfo().",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22918 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22918 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22918.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22918"
},
{
"cve": "CVE-2021-22921",
"cwe": {
"id": "CWE-732",
"name": "Incorrect Permission Assignment for Critical Resource"
},
"notes": [
{
"category": "summary",
"text": "Node.js before 16.4.1, 14.17.2, and 12.22.2 is vulnerable to local privilege escalation attacks under certain conditions on Windows platforms. More specifically, improper configuration of permissions in the installation directory allows an attacker to perform two different escalation attacks: PATH and DLL hijacking.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22921 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22921 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22921.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22921"
},
{
"cve": "CVE-2021-22922",
"cwe": {
"id": "CWE-354",
"name": "Improper Validation of Integrity Check Value"
},
"notes": [
{
"category": "summary",
"text": "When curl is instructed to download content using the metalink feature, thecontents is verified against a hash provided in the metalink XML file.The metalink XML file points out to the client how to get the same contentfrom a set of different URLs, potentially hosted by different servers and theclient can then download the file from one or several of them. In a serial orparallel manner.If one of the servers hosting the contents has been breached and the contentsof the specific file on that server is replaced with a modified payload, curlshould detect this when the hash of the file mismatches after a completeddownload. It should remove the contents and instead try getting the contentsfrom another URL. This is not done, and instead such a hash mismatch is onlymentioned in text and the potentially malicious content is kept in the file ondisk.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22922 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22922 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22922.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22922"
},
{
"cve": "CVE-2021-22923",
"cwe": {
"id": "CWE-522",
"name": "Insufficiently Protected Credentials"
},
"notes": [
{
"category": "summary",
"text": "When curl is instructed to get content using the metalink feature, and a user name and password are used to download the metalink XML file, those same credentials are then subsequently passed on to each of the servers from which curl will download or try to download the contents from. Often contrary to the user\u0027s expectations and intentions and without telling the user it happened.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22923 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22923 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22923.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22923"
},
{
"cve": "CVE-2021-22924",
"cwe": {
"id": "CWE-706",
"name": "Use of Incorrectly-Resolved Name or Reference"
},
"notes": [
{
"category": "summary",
"text": "libcurl keeps previously used connections in a connection pool for subsequent transfers to reuse, if one of them matches the setup. Due to errors in the logic, the config matching function did not take \u0027issuercert\u0027 into account and it compared the involved paths _case insensitively_,which could lead to libcurl reusing wrong connections. File paths are, or can be, case sensitive on many systems but not all, and can even vary depending on used file systems. The comparison also didn\u0027t include the \u0027issuer cert\u0027 which a transfer can set to qualify how to verify the server certificate.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22924 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22924 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22924.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22924"
},
{
"cve": "CVE-2021-22925",
"cwe": {
"id": "CWE-908",
"name": "Use of Uninitialized Resource"
},
"notes": [
{
"category": "summary",
"text": "curl supports the -t command line option, known as CURLOPT_TELNETOPTIONSin libcurl. This rarely used option is used to send variable=content pairs toTELNET servers.Due to flaw in the option parser for sending NEW_ENV variables, libcurlcould be made to pass on uninitialized data from a stack based buffer to theserver. Therefore potentially revealing sensitive internal information to theserver using a clear-text network protocol.This could happen because curl did not call and use sscanf() correctly whenparsing the string provided by the application.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22925 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22925 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22925.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22925"
},
{
"cve": "CVE-2021-22926",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "summary",
"text": "libcurl-using applications can ask for a specific client certificate to be used in a transfer. This is done with the CURLOPT_SSLCERT option (--cert with the command line tool).When libcurl is built to use the macOS native TLS library Secure Transport, an application can ask for the client certificate by name or with a file name - using the same option. If the name exists as a file, it will be used instead of by name.If the appliction runs with a current working directory that is writable by other users (like /tmp), a malicious user can create a file name with the same name as the app wants to use by name, and thereby trick the application to use the file based cert instead of the one referred to by name making libcurl send the wrong client certificate in the TLS connection handshake.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22926 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22926 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22926.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22926"
},
{
"cve": "CVE-2021-22930",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to a use after free attack where an attacker might be able to exploit the memory corruption, to change process behavior.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22930 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22930 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22930.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22930"
},
{
"cve": "CVE-2021-22931",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "Node.js before 16.6.0, 14.17.4, and 12.22.4 is vulnerable to Remote Code Execution, XSS, Application crashes due to missing input validation of host names returned by Domain Name Servers in Node.js dns library which can lead to output of wrong hostnames (leading to Domain Hijacking) and injection vulnerabilities in applications using the library.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22931 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22931 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22931.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22931"
},
{
"cve": "CVE-2021-22939",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "summary",
"text": "If the Node.js https API was used incorrectly and \"undefined\" was in passed for the \"rejectUnauthorized\" parameter, no error was returned and connections to servers with an expired certificate would have been accepted.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22939 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22939 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22939.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22939"
},
{
"cve": "CVE-2021-22940",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "summary",
"text": "Node.js before 16.6.1, 14.17.5, and 12.22.5 is vulnerable to a use after free attack where an attacker might be able to exploit the memory corruption, to change process behavior.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22940 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22940 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22940.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22940"
},
{
"cve": "CVE-2021-22945",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"notes": [
{
"category": "summary",
"text": "When sending data to an MQTT server, libcurl \u003c= 7.73.0 and 7.78.0 could in some circumstances erroneously keep a pointer to an already freed memory area and both use that again in a subsequent call to send data and also free it _again_.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22945 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22945 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22945.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22945"
},
{
"cve": "CVE-2021-22946",
"cwe": {
"id": "CWE-319",
"name": "Cleartext Transmission of Sensitive Information"
},
"notes": [
{
"category": "summary",
"text": "A user can tell curl \u003e= 7.20.0 and \u003c= 7.78.0 to require a successful upgrade to TLS when speaking to an IMAP, POP3 or FTP server (--ssl-reqd on the command line orCURLOPT_USE_SSL set to CURLUSESSL_CONTROL or CURLUSESSL_ALL withlibcurl). This requirement could be bypassed if the server would return a properly crafted but perfectly legitimate response.This flaw would then make curl silently continue its operations WITHOUTTLS contrary to the instructions and expectations, exposing possibly sensitive data in clear text over the network.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22946 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22946 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22946.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22946"
},
{
"cve": "CVE-2021-22947",
"cwe": {
"id": "CWE-345",
"name": "Insufficient Verification of Data Authenticity"
},
"notes": [
{
"category": "summary",
"text": "When curl \u003e= 7.20.0 and \u003c= 7.78.0 connects to an IMAP or POP3 server to retrieve data using STARTTLS to upgrade to TLS security, the server can respond and send back multiple responses at once that curl caches. curl would then upgrade to TLS but not flush the in-queue of cached responses but instead continue using and trustingthe responses it got _before_ the TLS handshake as if they were authenticated.Using this flaw, it allows a Man-In-The-Middle attacker to first inject the fake responses, then pass-through the TLS traffic from the legitimate server and trick curl into sending data back to the user thinking the attacker\u0027s injected data comes from the TLS-protected server.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-22947 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-22947 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-22947.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-22947"
},
{
"cve": "CVE-2021-23362",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "The package hosted-git-info before 3.0.8 are vulnerable to Regular Expression Denial of Service (ReDoS) via regular expression shortcutMatch in the fromUrl function in index.js. The affected regular expression exhibits polynomial worst-case time complexity.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-23362 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-23362 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-23362.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-23362"
},
{
"cve": "CVE-2021-23840",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 (indicating success), but the output length value will be negative. This could cause applications to behave incorrectly or crash. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-23840 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-23840 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-23840.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-23840"
},
{
"cve": "CVE-2021-25214",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"notes": [
{
"category": "summary",
"text": "In BIND 9.8.5 -\u003e 9.8.8, 9.9.3 -\u003e 9.11.29, 9.12.0 -\u003e 9.16.13, and versions BIND 9.9.3-S1 -\u003e 9.11.29-S1 and 9.16.8-S1 -\u003e 9.16.13-S1 of BIND 9 Supported Preview Edition, as well as release versions 9.17.0 -\u003e 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a malformed IXFR triggering the flaw described above, the named process will terminate due to a failed assertion the next time the transferred secondary zone is refreshed.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-25214 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-25214 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-25214.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-25214"
},
{
"cve": "CVE-2021-25215",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"notes": [
{
"category": "summary",
"text": "In BIND 9.0.0 -\u003e 9.11.29, 9.12.0 -\u003e 9.16.13, and versions BIND 9.9.3-S1 -\u003e 9.11.29-S1 and 9.16.8-S1 -\u003e 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -\u003e 9.17.11 of the BIND 9.17 development branch, when a vulnerable version of named receives a query for a record triggering the flaw described above, the named process will terminate due to a failed assertion check. The vulnerability affects all currently maintained BIND 9 branches (9.11, 9.11-S, 9.16, 9.16-S, 9.17) as well as all other versions of BIND 9.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-25215 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-25215 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-25215.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-25215"
},
{
"cve": "CVE-2021-25216",
"cwe": {
"id": "CWE-617",
"name": "Reachable Assertion"
},
"notes": [
{
"category": "summary",
"text": "In BIND 9.5.0 -\u003e 9.11.29, 9.12.0 -\u003e 9.16.13, and versions BIND 9.11.3-S1 -\u003e 9.11.29-S1 and 9.16.8-S1 -\u003e 9.16.13-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -\u003e 9.17.1 of the BIND 9.17 development branch, BIND servers are vulnerable if they are running an affected version and are configured to use GSS-TSIG features. In a configuration which uses BIND\u0027s default settings the vulnerable code path is not exposed, but a server can be rendered vulnerable by explicitly setting values for the tkey-gssapi-keytab or tkey-gssapi-credential configuration options. Although the default configuration is not vulnerable, GSS-TSIG is frequently used in networks where BIND is integrated with Samba, as well as in mixed-server environments that combine BIND servers with Active Directory domain controllers. For servers that meet these conditions, the ISC SPNEGO implementation is vulnerable to various attacks, depending on the CPU architecture for which BIND was built: For named binaries compiled for 64-bit platforms, this flaw can be used to trigger a buffer over-read, leading to a server crash. For named binaries compiled for 32-bit platforms, this flaw can be used to trigger a server crash due to a buffer overflow and possibly also to achieve remote code execution. We have determined that standard SPNEGO implementations are available in the MIT and Heimdal Kerberos libraries, which support a broad range of operating systems, rendering the ISC implementation unnecessary and obsolete. Therefore, to reduce the attack surface for BIND users, we will be removing the ISC SPNEGO implementation in the April releases of BIND 9.11 and 9.16 (it had already been dropped from BIND 9.17). We would not normally remove something from a stable ESV (Extended Support Version) of BIND, but since system libraries can replace the ISC SPNEGO implementation, we have made an exception in this case for reasons of stability and security.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-25216 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-25216 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-25216.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-25216"
},
{
"cve": "CVE-2021-25219",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "In BIND 9.3.0 -\u003e 9.11.35, 9.12.0 -\u003e 9.16.21, and versions 9.9.3-S1 -\u003e 9.11.35-S1 and 9.16.8-S1 -\u003e 9.16.21-S1 of BIND Supported Preview Edition, as well as release versions 9.17.0 -\u003e 9.17.18 of the BIND 9.17 development branch, exploitation of broken authoritative servers using a flaw in response processing can cause degradation in BIND resolver performance. The way the lame cache is currently designed makes it possible for its internal data structures to grow almost infinitely, which may cause significant delays in client query processing.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-25219 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-25219 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-25219.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-25219"
},
{
"cve": "CVE-2021-27290",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "ssri 5.2.2-8.0.0, fixed in 8.0.1, processes SRIs using a regular expression which is vulnerable to a denial of service. Malicious SRIs could take an extremely long time to process, leading to denial of service. This issue only affects consumers using the strict option.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-27290 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-27290 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-27290.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-27290"
},
{
"cve": "CVE-2021-32803",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "summary",
"text": "The npm package \"tar\" (aka node-tar) before versions 6.1.2, 5.0.7, 4.4.15, and 3.2.3 has an arbitrary File Creation/Overwrite vulnerability via insufficient symlink protection. node-tar aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieved by ensuring that extracted directories are not symlinks. Additionally, in order to prevent unnecessary stat calls to determine whether a given path is a directory, paths are cached when directories are created. This logic was insufficient when extracting tar files that contained both a directory and a symlink with the same name as the directory. This order of operations resulted in the directory being created and added to the node-tar directory cache. When a directory is present in the directory cache, subsequent calls to mkdir for that directory are skipped. However, this is also where node-tar checks for symlinks occur. By first creating a directory, and then replacing that directory with a symlink, it was thus possible to bypass node-tar symlink checks on directories, essentially allowing an untrusted tar file to symlink into an arbitrary location and subsequently extracting arbitrary files into that location, thus allowing arbitrary file creation and overwrite. This issue was addressed in releases 3.2.3, 4.4.15, 5.0.7 and 6.1.2.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-32803 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-32803 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-32803.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-32803"
},
{
"cve": "CVE-2021-32804",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "summary",
"text": "The npm package \"tar\" (aka node-tar) before versions 6.1.1, 5.0.6, 4.4.14, and 3.3.2 has a arbitrary File Creation/Overwrite vulnerability due to insufficient absolute path sanitization. node-tar aims to prevent extraction of absolute file paths by turning absolute paths into relative paths when the preservePaths flag is not set to true. This is achieved by stripping the absolute path root from any absolute file paths contained in a tar file. For example /home/user/.bashrc would turn into home/user/.bashrc. This logic was insufficient when file paths contained repeated path roots such as ////home/user/.bashrc. node-tar would only strip a single path root from such paths. When given an absolute file path with repeating path roots, the resulting path (e.g. ///home/user/.bashrc) would still resolve to an absolute path, thus allowing arbitrary file creation and overwrite. This issue was addressed in releases 3.2.2, 4.4.14, 5.0.6 and 6.1.1. Users may work around this vulnerability without upgrading by creating a custom onentry method which sanitizes the entry.path or a filter method which removes entries with absolute paths. See referenced GitHub Advisory for details. Be aware of CVE-2021-32803 which fixes a similar bug in later versions of tar.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-32804 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-32804 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-32804.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-32804"
},
{
"cve": "CVE-2021-37701",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"notes": [
{
"category": "summary",
"text": "The npm package \"tar\" (aka node-tar) before versions 4.4.16, 5.0.8, and 6.1.7 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieved by ensuring that extracted directories are not symlinks. Additionally, in order to prevent unnecessary stat calls to determine whether a given path is a directory, paths are cached when directories are created. This logic was insufficient when extracting tar files that contained both a directory and a symlink with the same name as the directory, where the symlink and directory names in the archive entry used backslashes as a path separator on posix systems. The cache checking logic used both \\ and / characters as path separators, however \\ is a valid filename character on posix systems. By first creating a directory, and then replacing that directory with a symlink, it was thus possible to bypass node-tar symlink checks on directories, essentially allowing an untrusted tar file to symlink into an arbitrary location and subsequently extracting arbitrary files into that location, thus allowing arbitrary file creation and overwrite. Additionally, a similar confusion could arise on case-insensitive filesystems. If a tar archive contained a directory at FOO, followed by a symbolic link named foo, then on case-insensitive file systems, the creation of the symbolic link would remove the directory from the filesystem, but _not_ from the internal directory cache, as it would not be treated as a cache hit. A subsequent file entry within the FOO directory would then be placed in the target of the symbolic link, thinking that the directory had already been created. These issues were addressed in releases 4.4.16, 5.0.8 and 6.1.7. The v3 branch of node-tar has been deprecated and did not receive patches for these issues. If you are still using a v3 release we recommend you update to a more recent version of node-tar. If this is not possible, a workaround is available in the referenced GHSA-9r2w-394v-53qc.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-37701 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-37701 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-37701.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-37701"
},
{
"cve": "CVE-2021-37712",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"notes": [
{
"category": "summary",
"text": "The npm package \"tar\" (aka node-tar) before versions 4.4.18, 5.0.10, and 6.1.9 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be modified by a symbolic link is not extracted. This is, in part, achieved by ensuring that extracted directories are not symlinks. Additionally, in order to prevent unnecessary stat calls to determine whether a given path is a directory, paths are cached when directories are created. This logic was insufficient when extracting tar files that contained both a directory and a symlink with names containing unicode values that normalized to the same value. Additionally, on Windows systems, long path portions would resolve to the same file system entities as their 8.3 \"short path\" counterparts. A specially crafted tar archive could thus include a directory with one form of the path, followed by a symbolic link with a different string that resolves to the same file system entity, followed by a file using the first form. By first creating a directory, and then replacing that directory with a symlink that had a different apparent name that resolved to the same entry in the filesystem, it was thus possible to bypass node-tar symlink checks on directories, essentially allowing an untrusted tar file to symlink into an arbitrary location and subsequently extracting arbitrary files into that location, thus allowing arbitrary file creation and overwrite. These issues were addressed in releases 4.4.18, 5.0.10 and 6.1.9. The v3 branch of node-tar has been deprecated and did not receive patches for these issues. If you are still using a v3 release we recommend you update to a more recent version of node-tar. If this is not possible, a workaround is available in the referenced GHSA-qq89-hq3f-393p.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-37712 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-37712 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-37712.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-37712"
},
{
"cve": "CVE-2021-37713",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "summary",
"text": "The npm package \"tar\" (aka node-tar) before versions 4.4.18, 5.0.10, and 6.1.9 has an arbitrary file creation/overwrite and arbitrary code execution vulnerability. node-tar aims to guarantee that any file whose location would be outside of the extraction target directory is not extracted. This is, in part, accomplished by sanitizing absolute paths of entries within the archive, skipping archive entries that contain .. path portions, and resolving the sanitized paths against the extraction target directory. This logic was insufficient on Windows systems when extracting tar files that contained a path that was not an absolute path, but specified a drive letter different from the extraction target, such as C:some\\path. If the drive letter does not match the extraction target, for example D:\\extraction\\dir, then the result of path.resolve(extractionDirectory, entryPath) would resolve against the current working directory on the C: drive, rather than the extraction target directory. Additionally, a .. portion of the path could occur immediately after the drive letter, such as C:../foo, and was not properly sanitized by the logic that checked for .. within the normalized and split portions of the path. This only affects users of node-tar on Windows systems. These issues were addressed in releases 4.4.18, 5.0.10 and 6.1.9. The v3 branch of node-tar has been deprecated and did not receive patches for these issues. If you are still using a v3 release we recommend you update to a more recent version of node-tar. There is no reasonable way to work around this issue without performing the same path normalization procedures that node-tar now does. Users are encouraged to upgrade to the latest patched versions of node-tar, rather than attempt to sanitize paths themselves.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-37713 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-37713 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-37713.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-37713"
},
{
"cve": "CVE-2021-39134",
"cwe": {
"id": "CWE-61",
"name": "UNIX Symbolic Link (Symlink) Following"
},
"notes": [
{
"category": "summary",
"text": "@npmcli/arborist, the library that calculates dependency trees and manages the node_modules folder hierarchy for the npm command line interface, aims to guarantee that package dependency contracts will be met, and the extraction of package contents will always be performed into the expected folder. This is, in part, accomplished by resolving dependency specifiers defined in package.json manifests for dependencies with a specific name, and nesting folders to resolve conflicting dependencies. When multiple dependencies differ only in the case of their name, Arborist\u0027s internal data structure saw them as separate items that could coexist within the same level in the node_modules hierarchy. However, on case-insensitive file systems (such as macOS and Windows), this is not the case. Combined with a symlink dependency such as file:/some/path, this allowed an attacker to create a situation in which arbitrary contents could be written to any location on the filesystem. For example, a package pwn-a could define a dependency in their package.json file such as \"foo\": \"file:/some/path\". Another package, pwn-b could define a dependency such as FOO: \"file:foo.tgz\". On case-insensitive file systems, if pwn-a was installed, and then pwn-b was installed afterwards, the contents of foo.tgz would be written to /some/path, and any existing contents of /some/path would be removed. Anyone using npm v7.20.6 or earlier on a case-insensitive filesystem is potentially affected. This is patched in @npmcli/arborist 2.8.2 which is included in npm v7.20.7 and above.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-39134 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-39134 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-39134.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-39134"
},
{
"cve": "CVE-2021-39135",
"cwe": {
"id": "CWE-61",
"name": "UNIX Symbolic Link (Symlink) Following"
},
"notes": [
{
"category": "summary",
"text": "@npmcli/arborist, the library that calculates dependency trees and manages the node_modules folder hierarchy for the npm command line interface, aims to guarantee that package dependency contracts will be met, and the extraction of package contents will always be performed into the expected folder. This is accomplished by extracting package contents into a project\u0027s node_modules folder. If the node_modules folder of the root project or any of its dependencies is somehow replaced with a symbolic link, it could allow Arborist to write package dependencies to any arbitrary location on the file system. Note that symbolic links contained within package artifact contents are filtered out, so another means of creating a node_modules symbolic link would have to be employed. 1. A preinstall script could replace node_modules with a symlink. (This is prevented by using --ignore-scripts.) 2. An attacker could supply the target with a git repository, instructing them to run npm install --ignore-scripts in the root. This may be successful, because npm install --ignore-scripts is typically not capable of making changes outside of the project directory, so it may be deemed safe. This is patched in @npmcli/arborist 2.8.2 which is included in npm v7.20.7 and above. For more information including workarounds please see the referenced GHSA-gmw6-94gg-2rc2.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"references": [
{
"summary": "CVE-2021-39135 - SINEC INS",
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
},
{
"summary": "CVE-2021-39135 Mitre 5.0 json",
"url": "https://cert-portal.siemens.com/productcert/mitre/CVE-2021-39135.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V1.0.1.1 or later version",
"product_ids": [
"CSAFPID-0001"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109806100/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-39135"
}
]
}
ICSA-22-130-06
Vulnerability from csaf_cisa - Published: 2022-05-10 00:00 - Updated: 2022-05-10 00:00Summary
Mitsubishi Electric MELSOFT GT OPC UA
Notes
CISA Disclaimer: This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov
Legal Notice: All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Risk evaluation: Successful exploitation of these vulnerabilities could allow a remote attacker to send specially crafted messages, resulting in information disclosure or a denial-of-service condition.
Critical infrastructure sectors: Critical Manufacturing
Countries/areas deployed: Worldwide
Company headquarters location: Japan
Recommended Practices: CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Specifically, users should:
Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices: Additional mitigation guidance and recommended practices are publicly available on the ICS webpage on cisa.gov in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Organizations observing any suspected malicious activity should follow their established internal procedures and report their findings to CISA for tracking and correlation against other incidents.
Exploitability: No known public exploits specifically target these vulnerabilities.
7.4 (High)
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
GT SoftGOT2000: Versions 1.215Z to 1.270G
Mitsubishi Electric / GT SoftGOT2000
|
>= 1.215Z | <= 1.270G |
Mitigation
fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
|
|
|
MELSOFT GT OPC UA Client: Versions 1.00A to 1.02C
Mitsubishi Electric / MELSOFT GT OPC UA Client
|
>= 1.00A | <= 1.02C |
Mitigation
fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
|
7.5 (High)
Affected products
Known affected
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
GT SoftGOT2000: Versions 1.215Z to 1.270G
Mitsubishi Electric / GT SoftGOT2000
|
>= 1.215Z | <= 1.270G |
Mitigation
fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
|
|
|
MELSOFT GT OPC UA Client: Versions 1.00A to 1.02C
Mitsubishi Electric / MELSOFT GT OPC UA Client
|
>= 1.00A | <= 1.02C |
Mitigation
fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
|
References
9 references
Acknowledgments
Mitsubishi Electric
{
"document": {
"acknowledgments": [
{
"organization": "Mitsubishi Electric",
"summary": "reporting these vulnerabilities to CISA"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "This CSAF advisory was extracted from unstructured data and may contain inaccuracies. If you notice any errors, please reach out to the designated contact at CISA CSAF: central@cisa.dhs.gov",
"title": "CISA Disclaimer"
},
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "summary",
"text": "Successful exploitation of these vulnerabilities could allow a remote attacker to send specially crafted messages, resulting in information disclosure or a denial-of-service condition.",
"title": "Risk evaluation"
},
{
"category": "other",
"text": "Critical Manufacturing",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "Japan",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the risk of exploitation of this vulnerability. Specifically, users should:",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.\nCISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov Several recommended practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage on cisa.gov in the Technical Information Paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.\nOrganizations observing any suspected malicious activity should follow their established internal procedures and report their findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
},
{
"category": "other",
"text": "No known public exploits specifically target these vulnerabilities.",
"title": "Exploitability"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "Email: CISAservicedesk@cisa.dhs.gov;\n Toll Free: 1-888-282-0870",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSA-22-130-06 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2022/icsa-22-130-06.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-22-130-06 Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-22-130-06"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
}
],
"title": "Mitsubishi Electric MELSOFT GT OPC UA",
"tracking": {
"current_release_date": "2022-05-10T00:00:00.000000Z",
"generator": {
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-22-130-06",
"initial_release_date": "2022-05-10T00:00:00.000000Z",
"revision_history": [
{
"date": "2022-05-10T00:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "ICSA-22-130-06 Mitsubishi Electric MELSOFT GT OPC UA"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003e= 1.215Z | \u003c= 1.270G",
"product": {
"name": "GT SoftGOT2000: Versions 1.215Z to 1.270G",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "GT SoftGOT2000"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003e= 1.00A | \u003c= 1.02C",
"product": {
"name": "MELSOFT GT OPC UA Client: Versions 1.00A to 1.02C",
"product_id": "CSAFPID-0002"
}
}
],
"category": "product_name",
"name": "MELSOFT GT OPC UA Client"
}
],
"category": "vendor",
"name": "Mitsubishi Electric"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-3712",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "The affected product is vulnerable due to an out-of-bounds read, which may allow an attacker to send specially crafted messages to disclose information on memory or cause a denial-of-service condition.CVE-2021-3712 has been assigned to this vulnerability. A CVSS v3 base score of 7.4 has been assigned; the CVSS vector string is (AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3712"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Mitsubishi Electric recommends users update software",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
],
"url": "https://www.mitsubishielectric.com/fa/support/index.html"
},
{
"category": "vendor_fix",
"details": "Update MELSOFT GT OPC UA Client: Update to 1.03D or later",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
{
"category": "mitigation",
"details": "Update GT SoftGOT2000: Update to 1.275M or later",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
{
"category": "mitigation",
"details": "When connecting the products to the Internet, use a virtual private network (VPN, etc.) to prevent spoofing and sniffing.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
{
"category": "mitigation",
"details": "Use the products within the LAN and block access from untrusted networks and hosts.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
{
"category": "mitigation",
"details": "Update the OPC UA server to the latest version.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
{
"category": "mitigation",
"details": "Install antivirus software.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
{
"category": "mitigation",
"details": "Restrict physical access to computers and network equipment that use the affected products.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002"
]
}
]
},
{
"cve": "CVE-2021-23840",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "summary",
"text": "The affected product is vulnerable due to an integer overflow, which may allow an attacker to cause a denial-of-service condition.CVE-2021-23840 has been assigned to this vulnerability. A CVSS v3 base score of 7.5 has been assigned; the CVSS vector string is (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-23840"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Mitsubishi Electric recommends users update software",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
],
"url": "https://www.mitsubishielectric.com/fa/support/index.html"
},
{
"category": "vendor_fix",
"details": "Update MELSOFT GT OPC UA Client: Update to 1.03D or later",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
{
"category": "mitigation",
"details": "Update GT SoftGOT2000: Update to 1.275M or later",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
{
"category": "mitigation",
"details": "When connecting the products to the Internet, use a virtual private network (VPN, etc.) to prevent spoofing and sniffing.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
{
"category": "mitigation",
"details": "Use the products within the LAN and block access from untrusted networks and hosts.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
{
"category": "mitigation",
"details": "Update the OPC UA server to the latest version.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
{
"category": "mitigation",
"details": "Install antivirus software.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
},
{
"category": "mitigation",
"details": "Restrict physical access to computers and network equipment that use the affected products.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002"
]
}
]
}
]
}
ICSA-23-143-02
Vulnerability from csaf_cisa - Published: 2023-05-05 06:00 - Updated: 2023-10-19 06:00Summary
Hitachi Energy's RTU500 Series Product (UPDATE B)
Notes
Legal Notice: All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Risk evaluation: Successful exploitation of these vulnerabilities could allow an attacker to crash the device being accessed or cause a denial-of-service condition.
Critical infrastructure sectors: Energy
Countries/areas deployed: Worldwide
Company headquarters location: Switzerland
Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices: CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov/ics. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices: CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.
Recommended Practices: Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov/ics in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Recommended Practices: Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
Recommended Practices: No known public exploitation specifically targeting these vulnerabilities has been reported to CISA at this time.
7.4 (High)
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RTU500 series CMU Firmware: >=12.0.1|<=12.0.15
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.0.1|<=12.0.15 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.2.1|<=12.2.12
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.2.1|<=12.2.12 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.4.1|<=12.4.12
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.4.1|<=12.4.12 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.6.1|<=12.6.9
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.6.1|<=12.6.9 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.7.1|<=12.7.6
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.7.1|<=12.7.6 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.2.1|<=13.2.6
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.2.1|<=13.2.6 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.3.1|<=13.3.3
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.3.1|<=13.3.3 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.4.1|<=13.4.2
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.4.1|<=13.4.2 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
5.9 (Medium)
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RTU500 series CMU Firmware: >=12.0.1|<=12.0.15
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.0.1|<=12.0.15 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.2.1|<=12.2.12
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.2.1|<=12.2.12 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.4.1|<=12.4.12
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.4.1|<=12.4.12 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.6.1|<=12.6.9
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.6.1|<=12.6.9 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.7.1|<=12.7.6
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.7.1|<=12.7.6 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.2.1|<=13.2.6
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.2.1|<=13.2.6 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.3.1|<=13.3.3
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.3.1|<=13.3.3 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.4.1|<=13.4.2
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.4.1|<=13.4.2 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
7.5 (High)
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RTU500 series CMU Firmware: >=12.0.1|<=12.0.15
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.0.1|<=12.0.15 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.2.1|<=12.2.12
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.2.1|<=12.2.12 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.4.1|<=12.4.12
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.4.1|<=12.4.12 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.6.1|<=12.6.9
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.6.1|<=12.6.9 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.7.1|<=12.7.6
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.7.1|<=12.7.6 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.2.1|<=13.2.6
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.2.1|<=13.2.6 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.3.1|<=13.3.3
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.3.1|<=13.3.3 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.4.1|<=13.4.2
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.4.1|<=13.4.2 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
7.5 (High)
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RTU500 series CMU Firmware: >=12.0.1|<=12.0.15
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.0.1|<=12.0.15 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.2.1|<=12.2.12
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.2.1|<=12.2.12 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.4.1|<=12.4.12
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.4.1|<=12.4.12 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.6.1|<=12.6.9
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.6.1|<=12.6.9 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.7.1|<=12.7.6
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.7.1|<=12.7.6 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.2.1|<=13.2.6
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.2.1|<=13.2.6 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.3.1|<=13.3.3
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.3.1|<=13.3.3 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.4.1|<=13.4.2
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.4.1|<=13.4.2 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
9.8 (Critical)
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RTU500 series CMU Firmware: >=12.0.1|<=12.0.15
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.0.1|<=12.0.15 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.2.1|<=12.2.12
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.2.1|<=12.2.12 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.4.1|<=12.4.12
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.4.1|<=12.4.12 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.6.1|<=12.6.9
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.6.1|<=12.6.9 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.7.1|<=12.7.6
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.7.1|<=12.7.6 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.2.1|<=13.2.6
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.2.1|<=13.2.6 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.3.1|<=13.3.3
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.3.1|<=13.3.3 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.4.1|<=13.4.2
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.4.1|<=13.4.2 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
7.4 (High)
Affected products
Known affected
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
RTU500 series CMU Firmware: >=12.0.1|<=12.0.15
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.0.1|<=12.0.15 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.2.1|<=12.2.12
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.2.1|<=12.2.12 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.4.1|<=12.4.12
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.4.1|<=12.4.12 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.6.1|<=12.6.9
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.6.1|<=12.6.9 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=12.7.1|<=12.7.6
Hitachi Energy / RTU500 series CMU Firmware
|
>=12.7.1|<=12.7.6 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.2.1|<=13.2.6
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.2.1|<=13.2.6 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.3.1|<=13.3.3
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.3.1|<=13.3.3 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
|
|
RTU500 series CMU Firmware: >=13.4.1|<=13.4.2
Hitachi Energy / RTU500 series CMU Firmware
|
>=13.4.1|<=13.4.2 |
Mitigation
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
Mitigation
fix
Mitigation
fix
|
References
18 references
Acknowledgments
Hitachi Energy
{
"document": {
"acknowledgments": [
{
"organization": "Hitachi Energy",
"summary": "reporting these vulnerabilities to CISA"
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "summary",
"text": "Successful exploitation of these vulnerabilities could allow an attacker to crash the device being accessed or cause a denial-of-service condition. ",
"title": "Risk evaluation"
},
{
"category": "other",
"text": "Energy",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "Switzerland",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov/ics. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov/ics in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "No known public exploitation specifically targeting these vulnerabilities has been reported to CISA at this time.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "ICS Advisory ICSA-23-143-02 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2023/icsa-23-143-02.json"
},
{
"category": "self",
"summary": "ICSA Advisory ICSA-23-143-02 - Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-23-143-02"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
}
],
"title": "Hitachi Energy\u0027s RTU500 Series Product (UPDATE B)",
"tracking": {
"current_release_date": "2023-10-19T06:00:00.000000Z",
"generator": {
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-23-143-02",
"initial_release_date": "2023-05-05T06:00:00.000000Z",
"revision_history": [
{
"date": "2023-05-05T06:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "Initial Publication"
},
{
"date": "2023-09-28T06:00:00.000000Z",
"legacy_version": "Update A",
"number": "2",
"summary": "Update A - Update to Mitigations and Affected Products"
},
{
"date": "2023-10-19T06:00:00.000000Z",
"legacy_version": "Update B",
"number": "3",
"summary": "Update B - Update to Mitigations and Affected Products"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003e=12.0.1|\u003c=12.0.15",
"product": {
"name": "RTU500 series CMU Firmware: \u003e=12.0.1|\u003c=12.0.15",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "RTU500 series CMU Firmware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003e=12.2.1|\u003c=12.2.12",
"product": {
"name": "RTU500 series CMU Firmware: \u003e=12.2.1|\u003c=12.2.12",
"product_id": "CSAFPID-0002"
}
}
],
"category": "product_name",
"name": "RTU500 series CMU Firmware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003e=12.4.1|\u003c=12.4.12",
"product": {
"name": "RTU500 series CMU Firmware: \u003e=12.4.1|\u003c=12.4.12",
"product_id": "CSAFPID-0003"
}
}
],
"category": "product_name",
"name": "RTU500 series CMU Firmware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003e=12.6.1|\u003c=12.6.9",
"product": {
"name": "RTU500 series CMU Firmware: \u003e=12.6.1|\u003c=12.6.9",
"product_id": "CSAFPID-0004"
}
}
],
"category": "product_name",
"name": "RTU500 series CMU Firmware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003e=12.7.1|\u003c=12.7.6",
"product": {
"name": "RTU500 series CMU Firmware: \u003e=12.7.1|\u003c=12.7.6",
"product_id": "CSAFPID-0005"
}
}
],
"category": "product_name",
"name": "RTU500 series CMU Firmware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003e=13.2.1|\u003c=13.2.6",
"product": {
"name": "RTU500 series CMU Firmware: \u003e=13.2.1|\u003c=13.2.6",
"product_id": "CSAFPID-0006"
}
}
],
"category": "product_name",
"name": "RTU500 series CMU Firmware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003e=13.3.1|\u003c=13.3.3",
"product": {
"name": "RTU500 series CMU Firmware: \u003e=13.3.1|\u003c=13.3.3",
"product_id": "CSAFPID-0007"
}
}
],
"category": "product_name",
"name": "RTU500 series CMU Firmware"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003e=13.4.1|\u003c=13.4.2",
"product": {
"name": "RTU500 series CMU Firmware: \u003e=13.4.1|\u003c=13.4.2",
"product_id": "CSAFPID-0008"
}
}
],
"category": "product_name",
"name": "RTU500 series CMU Firmware"
}
],
"category": "vendor",
"name": "Hitachi Energy"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-0286",
"cwe": {
"id": "CWE-843",
"name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
},
"notes": [
{
"category": "summary",
"text": "There is a type-confusion vulnerability affecting X.400 address processing within an X.509 GeneralName. This vulnerability could allow an attacker to pass arbitrary pointers to a memcmp call, enabling access to read memory contents or cause a denial-of-service condition.X.400 addresses parsed as an ASN1_STRING while the public structure definition for GENERAL_NAME incorrectly specifies the x400Address field type as ASN1_TYPE.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-0286"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.0.1 - 12.0.14: Update to CMU Firmware version 12.0.15* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.2.1 - 12.2.11: Update to CMU Firmware version 12.2.12* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.4.1 - 12.4.11: Update to CMU Firmware version 12.4.12* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.6.1 - 12.6.8: Update to CMU Firmware version 12.6.9",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.7.1 - 12.7.5: Update to CMU Firmware version 12.7.6",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.2.1 - 13.2.5: Update to CMU Firmware version 13.2.6",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.3.1 - 13.3.3: Update to CMU Firmware version 13.3.4* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.4.1: Update to CMU Firmware version 13.4.2",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "Until the updates are made available, Hitachi Energy recommends the following general mitigation factors/workarounds for the products with RTU500 series CMU Firmware versions 12.0.1 \ufffd 12.0.15, 12.2.1 \ufffd 12.2.12, 12.4.1 \ufffd 12.4.12, 12.6.1 \ufffd 12.6.9, 12.7.1 \ufffd 12.7.6, 13.2.1 \ufffd 13.2.6, 13.3.1 \ufffd 13.3.3, 13.4.2 to address the vulnerabilities CVE-2023-0286 and CVE-2022-4304:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Recommended security practices and firewall configurations can help protect a process control network from attacks originating from outside the network including.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Physically protect process control systems from direct access by unauthorized personnel.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Do not allow process control systems direct connections to the internet.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Separate process control systems from other networks by means of a firewall system that has a minimal number of ports exposed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Process control systems should not be used for internet surfing, instant messaging, or receiving emails.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "For more information, see Hitachi Energy\u0027s Security Advisories:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "8DBD000150",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000150\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch"
},
{
"category": "mitigation",
"details": "8DBD000153",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000153\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
}
]
},
{
"cve": "CVE-2022-4304",
"cwe": {
"id": "CWE-208",
"name": "Observable Timing Discrepancy"
},
"notes": [
{
"category": "summary",
"text": "A timing-based side channel exists in the OpenSSL RSA Decryption implementation. This could allow an attacker sufficient access to recover plaintext across a network to perform a Bleichenbacher style attack. The vulnerability affects all RSA padding modes: PKCS#1 v1.5, RSA-OEAP and RSASVE.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-4304"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.0.1 - 12.0.14: Update to CMU Firmware version 12.0.15* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.2.1 - 12.2.11: Update to CMU Firmware version 12.2.12* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.4.1 - 12.4.11: Update to CMU Firmware version 12.4.12* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.6.1 - 12.6.8: Update to CMU Firmware version 12.6.9",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.7.1 - 12.7.5: Update to CMU Firmware version 12.7.6",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.2.1 - 13.2.5: Update to CMU Firmware version 13.2.6",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.3.1 - 13.3.3: Update to CMU Firmware version 13.3.4* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.4.1: Update to CMU Firmware version 13.4.2",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "Until the updates are made available, Hitachi Energy recommends the following general mitigation factors/workarounds for the products with RTU500 series CMU Firmware versions 12.0.1 - 12.0.15, 12.2.1 - 12.2.12, 12.4.1 - 12.4.12, 12.6.1 - 12.6.9, 12.7.1 - 12.7.6, 13.2.1 - 13.2.6, 13.3.1 - 13.3.3, 13.4.2 to address the vulnerabilities CVE-2023-0286 and CVE-2022-4304:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Recommended security practices and firewall configurations can help protect a process control network from attacks originating from outside the network including.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Physically protect process control systems from direct access by unauthorized personnel.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Do not allow process control systems direct connections to the internet.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Separate process control systems from other networks by means of a firewall system that has a minimal number of ports exposed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Process control systems should not be used for internet surfing, instant messaging, or receiving emails.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "For more information, see Hitachi Energy\u0027s Security Advisories:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "8DBD000150",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000150\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch"
},
{
"category": "mitigation",
"details": "8DBD000153",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000153\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
}
]
},
{
"cve": "CVE-2022-23937",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability exists in the Wind River VxWorks version 6.9 affecting the RTU500 series product versions listed. An attacker could exploit the vulnerability by using a specific crafted packet that could lead to an out-of-bounds read during an IKE initial exchange scenario. ",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-23937"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Hitachi Energy has released the following mitigations/fixes for CVE-2022-23937, CVE-2022-0778, CVE-2021-3711, and CVE-2021-3712:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.0.1 \ufffd 12.0.14: Update to CMU Firmware version 12.0.15* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.2.1 \ufffd 12.2.11: Update to CMU Firmware version 12.2.12* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.4.1 \ufffd 12.4.11: Update to CMU Firmware version 12.4.12* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.6.1 \ufffd 12.6.8: Update to CMU Firmware version 12.6.9",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.7.1 \ufffd 12.7.5: Update to CMU Firmware version 12.7.6",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.2.1 \ufffd 13.2.5: Update to CMU Firmware version 13.2.6",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.3.1 \ufffd 13.3.3: Update to CMU Firmware version 13.3.4* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.4.1: Update to CMU Firmware version 13.4.2",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Recommended security practices and firewall configurations can help protect a process control network from attacks originating from outside the network including.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Physically protect process control systems from direct access by unauthorized personnel.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Do not allow process control systems direct connections to the internet.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Separate process control systems from other networks by means of a firewall system that has a minimal number of ports exposed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Process control systems should not be used for internet surfing, instant messaging, or receiving emails.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "For more information, see Hitachi Energy\u0027s Security Advisories:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "8DBD000150",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000150\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch"
},
{
"category": "mitigation",
"details": "8DBD000153",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000153\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
}
]
},
{
"cve": "CVE-2022-0778",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability exists in the OpenSSL version 1.0.2 that affects the RTU500 Series product versions listed. An attacker can exploit the BN_mod_sqrt() function to compute a modular square root that contains a bug causing a continual loop for non-prime moduli. ",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-0778"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Hitachi Energy has released the following mitigations/fixes for CVE-2022-23937, CVE-2022-0778, CVE-2021-3711, and CVE-2021-3712:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.0.1 \ufffd 12.0.14: Update to CMU Firmware version 12.0.15* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.2.1 \ufffd 12.2.11: Update to CMU Firmware version 12.2.12* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.4.1 \ufffd 12.4.11: Update to CMU Firmware version 12.4.12* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.6.1 \ufffd 12.6.8: Update to CMU Firmware version 12.6.9",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.7.1 \ufffd 12.7.5: Update to CMU Firmware version 12.7.6",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.2.1 \ufffd 13.2.5: Update to CMU Firmware version 13.2.6",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.3.1 \ufffd 13.3.3: Update to CMU Firmware version 13.3.4* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.4.1: Update to CMU Firmware version 13.4.2",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Recommended security practices and firewall configurations can help protect a process control network from attacks originating from outside the network including.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Physically protect process control systems from direct access by unauthorized personnel.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Do not allow process control systems direct connections to the internet.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Separate process control systems from other networks by means of a firewall system that has a minimal number of ports exposed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Process control systems should not be used for internet surfing, instant messaging, or receiving emails.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "For more information, see Hitachi Energy\u0027s Security Advisories:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "8DBD000150",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000150\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch"
},
{
"category": "mitigation",
"details": "8DBD000153",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000153\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
}
]
},
{
"cve": "CVE-2021-3711",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability exists in the OpenSSL Version 1.0.2 affecting the RTU500 Series product versions listed. An attacker with access to applications and the capability to present SM2 content for decryption could cause a buffer overflow up to a maximum of 62 bytes while altering contents of data present after the buffer. This vulnerability could allow an attacker to change application behavior or cause the application to crash.",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3711"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Hitachi Energy has released the following mitigations/fixes for CVE-2022-23937, CVE-2022-0778, CVE-2021-3711, and CVE-2021-3712:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.0.1 - 12.0.14: Update to CMU Firmware version 12.0.15* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.2.1 - 12.2.11: Update to CMU Firmware version 12.2.12* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.4.1 - 12.4.11: Update to CMU Firmware version 12.4.12* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.6.1 - 12.6.8: Update to CMU Firmware version 12.6.9",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.7.1 - 12.7.5: Update to CMU Firmware version 12.7.6",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.2.1 - 13.2.5: Update to CMU Firmware version 13.2.6",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.3.1 - 13.3.3: Update to CMU Firmware version 13.3.4* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.4.1: Update to CMU Firmware version 13.4.2",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Recommended security practices and firewall configurations can help protect a process control network from attacks originating from outside the network including.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Physically protect process control systems from direct access by unauthorized personnel.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Do not allow process control systems direct connections to the internet.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Separate process control systems from other networks by means of a firewall system that has a minimal number of ports exposed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Process control systems should not be used for internet surfing, instant messaging, or receiving emails.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "For more information, see Hitachi Energy\u0027s Security Advisories:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "8DBD000150",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000150\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch"
},
{
"category": "mitigation",
"details": "8DBD000153",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000153\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
}
]
},
{
"cve": "CVE-2021-3712",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "A vulnerability exists in the OpenSSL Version 1.0.2 affecting the RTU500 Series product versions listed. A malicious actor could cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions. Exploiting this vulnerability could create a system crash causing a denial-of-service condition or a disclosure of private memory contents, such as private keys or sensitive plaintext. ",
"title": "Vulnerability Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
"references": [
{
"category": "external",
"summary": "web.nvd.nist.gov",
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2021-3712"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "Hitachi Energy has released the following mitigations/fixes for CVE-2022-23937, CVE-2022-0778, CVE-2021-3711, and CVE-2021-3712:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.0.1 - 12.0.14: Update to CMU Firmware version 12.0.15* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.2.1 - 12.2.11: Update to CMU Firmware version 12.2.12* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.4.1 - 12.4.11: Update to CMU Firmware version 12.4.12* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.6.1 - 12.6.8: Update to CMU Firmware version 12.6.9",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 12.7.1 - 12.7.5: Update to CMU Firmware version 12.7.6",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.2.1 - 13.2.5: Update to CMU Firmware version 13.2.6",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.3.1 - 13.3.3: Update to CMU Firmware version 13.3.4* (Planned Update)",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "vendor_fix",
"details": "RTU500 series CMU Firmware version 13.4.1: Update to CMU Firmware version 13.4.2",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Recommended security practices and firewall configurations can help protect a process control network from attacks originating from outside the network including.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Physically protect process control systems from direct access by unauthorized personnel.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Do not allow process control systems direct connections to the internet.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Separate process control systems from other networks by means of a firewall system that has a minimal number of ports exposed.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Process control systems should not be used for internet surfing, instant messaging, or receiving emails.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "Portable computers and removable storage media should be carefully scanned for viruses before they are connected to a control system.",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "For more information, see Hitachi Energy\u0027s Security Advisories:",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
},
{
"category": "mitigation",
"details": "8DBD000150",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000150\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch"
},
{
"category": "mitigation",
"details": "8DBD000153",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
],
"url": "https://search.abb.com/library/Download.aspx?DocumentID=8DBD000153\u0026LanguageCode=en\u0026DocumentPartId=\u0026Action=Launch"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008"
]
}
]
}
]
}
ICSA-25-226-21
Vulnerability from csaf_cisa - Published: 2025-08-12 00:00 - Updated: 2025-08-12 00:00Summary
Siemens BFCClient
Notes
Summary: Siemens BFCClient contains multiple vulnerabilities in the integrated OpenSSL component that could allow an attacker to read memory contents, to change the application behaviour or to create a denial of service condition.
Siemens has released a new version for BFCClient and recommends to update to the latest version.
General Recommendations: As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download:
https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources: For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use: The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.
Legal Notice: All information products included in https://us-cert.cisa.gov/ics are provided "as is" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.
Advisory Conversion Disclaimer: This ICSA is a verbatim republication of Siemens ProductCERT SSA-028723 from a direct conversion of the vendor's Common Security Advisory Framework (CSAF) advisory. This is republished to CISA's website as a means of increasing visibility and is provided "as-is" for informational purposes only. CISA is not responsible for the editorial or technical accuracy of republished advisories and provides no warranties of any kind regarding any information contained within this advisory. Further, CISA does not endorse any commercial product or service. Please contact Siemens ProductCERT directly for any questions regarding this advisory.
Critical infrastructure sectors: Critical Manufacturing, Transportation Systems, Energy, Healthcare and Public Health, Financial Services, Government Services and Facilities
Countries/areas deployed: Worldwide
Company headquarters location: Germany
Recommended Practices: CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.
Recommended Practices: Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.
Recommended Practices: Locate control system networks and remote devices behind firewalls and isolate them from business networks.
Recommended Practices: When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.
Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices: CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices: CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Recommended Practices: Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
9.8 (Critical)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
BFCClient
Siemens / BFCClient
|
vers:intdot/<2.17 |
Vendor Fix
|
CWE-125
- Out-of-bounds Read
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
BFCClient
Siemens / BFCClient
|
vers:intdot/<2.17 |
Vendor Fix
|
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
BFCClient
Siemens / BFCClient
|
vers:intdot/<2.17 |
Vendor Fix
|
7.4 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
BFCClient
Siemens / BFCClient
|
vers:intdot/<2.17 |
Mitigation
Vendor Fix
|
7.5 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
BFCClient
Siemens / BFCClient
|
vers:intdot/<2.17 |
Vendor Fix
|
References
10 references
Acknowledgments
Siemens ProductCERT
{
"document": {
"acknowledgments": [
{
"organization": "Siemens ProductCERT",
"summary": "reporting these vulnerabilities to CISA."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://us-cert.cisa.gov/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Siemens BFCClient contains multiple vulnerabilities in the integrated OpenSSL component that could allow an attacker to read memory contents, to change the application behaviour or to create a denial of service condition.\n\nSiemens has released a new version for BFCClient and recommends to update to the latest version.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: \nhttps://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.",
"title": "Terms of Use"
},
{
"category": "legal_disclaimer",
"text": "All information products included in https://us-cert.cisa.gov/ics are provided \"as is\" for informational purposes only. The Department of Homeland Security (DHS) does not provide any warranties of any kind regarding any information contained within. DHS does not endorse any commercial product or service, referenced in this product or otherwise. Further dissemination of this product is governed by the Traffic Light Protocol (TLP) marking in the header. For more information about TLP, see https://us-cert.cisa.gov/tlp/.",
"title": "Legal Notice"
},
{
"category": "other",
"text": "This ICSA is a verbatim republication of Siemens ProductCERT SSA-028723 from a direct conversion of the vendor\u0027s Common Security Advisory Framework (CSAF) advisory. This is republished to CISA\u0027s website as a means of increasing visibility and is provided \"as-is\" for informational purposes only. CISA is not responsible for the editorial or technical accuracy of republished advisories and provides no warranties of any kind regarding any information contained within this advisory. Further, CISA does not endorse any commercial product or service. Please contact Siemens ProductCERT directly for any questions regarding this advisory.",
"title": "Advisory Conversion Disclaimer"
},
{
"category": "other",
"text": "Critical Manufacturing, Transportation Systems, Energy, Healthcare and Public Health, Financial Services, Government Services and Facilities",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "Germany",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "other",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "SSA-028723: Multiple OpenSSL Vulnerabilities in BFCClient Before V2.17 - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-028723.json"
},
{
"category": "self",
"summary": "SSA-028723: Multiple OpenSSL Vulnerabilities in BFCClient Before V2.17 - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-028723.html"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-25-226-21 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2025/icsa-25-226-21.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-25-226-21 - Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-226-21"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/alerts/ICS-ALERT-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://us-cert.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/uscert/ics/tips/ICS-TIP-12-146-01B"
}
],
"title": "Siemens BFCClient",
"tracking": {
"current_release_date": "2025-08-12T00:00:00.000000Z",
"generator": {
"date": "2025-08-14T20:56:34.044437Z",
"engine": {
"name": "CISA CSAF Generator",
"version": "1.0.0"
}
},
"id": "ICSA-25-226-21",
"initial_release_date": "2025-08-12T00:00:00.000000Z",
"revision_history": [
{
"date": "2025-08-12T00:00:00.000000Z",
"legacy_version": "1.0",
"number": "1",
"summary": "Publication Date"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.17",
"product": {
"name": "BFCClient",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "BFCClient"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-3711",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"notes": [
{
"category": "summary",
"text": "In order to decrypt SM2 encrypted data an application is expected to call the API function EVP_PKEY_decrypt(). Typically an application will call this function twice. The first time, on entry, the \"out\" parameter can be NULL and, on exit, the \"outlen\" parameter is populated with the buffer size required to hold the decrypted plaintext. The application can then allocate a sufficiently sized buffer and call EVP_PKEY_decrypt() again, but this time passing a non-NULL value for the \"out\" parameter. A bug in the implementation of the SM2 decryption code means that the calculation of the buffer size required to hold the plaintext returned by the first call to EVP_PKEY_decrypt() can be smaller than the actual size required by the second call. This can lead to a buffer overflow when EVP_PKEY_decrypt() is called by the application a second time with a buffer that is too small. A malicious attacker who is able present SM2 content for decryption to an application could cause attacker chosen data to overflow the buffer by up to a maximum of 62 bytes altering the contents of other data held after the buffer, possibly changing application behaviour or causing the application to crash. The location of the buffer is application dependent but is typically heap allocated.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.17 or later version. Contact customer support to obtain the update",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-3711"
},
{
"cve": "CVE-2021-3712",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \"d2i\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \"data\" and \"length\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \"data\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.17 or later version. Contact customer support to obtain the update",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2021-3712"
},
{
"cve": "CVE-2022-0778",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "summary",
"text": "The BN_mod_sqrt() function in openSSL, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.17 or later version. Contact customer support to obtain the update",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2022-0778"
},
{
"cve": "CVE-2023-0286",
"cwe": {
"id": "CWE-843",
"name": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)"
},
"notes": [
{
"category": "summary",
"text": "There is a type confusion vulnerability relating to X.400 address processing inside an X.509 GeneralName. X.400 addresses were parsed as an ASN1_STRING but the public structure definition for GENERAL_NAME incorrectly specified the type of the x400Address field as ASN1_TYPE. This field is subsequently interpreted by the OpenSSL function GENERAL_NAME_cmp as an ASN1_TYPE rather than an ASN1_STRING. When CRL checking is enabled (i.e. the application sets the X509_V_FLAG_CRL_CHECK flag), this vulnerability may allow an attacker to pass arbitrary pointers to a memcmp call, enabling them to read memory contents or enact a denial of service. In most cases, the attack requires the attacker to provide both the certificate chain and CRL, neither of which need to have a valid signature. If the attacker only controls one of these inputs, the other input must already contain an X.400 address as a CRL distribution point, which is uncommon. As such, this vulnerability is most likely to only affect applications which have implemented their own functionality for retrieving CRLs over a network.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"remediations": [
{
"category": "mitigation",
"details": "Disable CRL (certification revocation list) checking, if possible",
"product_ids": [
"CSAFPID-0001"
]
},
{
"category": "vendor_fix",
"details": "Update to V2.17 or later version. Contact customer support to obtain the update",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2023-0286"
},
{
"cve": "CVE-2023-0464",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"notes": [
{
"category": "summary",
"text": "A security vulnerability has been identified in all supported versions of OpenSSL related to the verification of X.509 certificate chains that include policy constraints. Attackers may be able to exploit this vulnerability by creating a malicious certificate chain that triggers exponential use of computational resources, leading to a denial-of-service (DoS) attack on affected systems.\r\n\r\nPolicy processing is disabled by default but can be enabled by passing the `-policy` argument to the command line utilities or by calling the `X509_VERIFY_PARAM_set1_policies()` function.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001"
]
},
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V2.17 or later version. Contact customer support to obtain the update",
"product_ids": [
"CSAFPID-0001"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001"
]
}
],
"title": "CVE-2023-0464"
}
]
}
ICSA-25-259-05
Vulnerability from csaf_cisa - Published: 2022-02-08 00:00 - Updated: 2026-04-16 06:00Summary
Siemens OpenSSL Vulnerability in Industrial Products
Notes
Summary: OpenSSL has published a security advisory [0] about a vulnerability in OpenSSL versions 1.1.1 < 1.1.1l and 1.0.2 < 1.0.2za that allows an attacker to cause a denial of service (DoS) or to disclose private memory content.
Siemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends countermeasures for products where updates are not, or not yet available.
[0] https://www.openssl.org/news/secadv/20210824.txt
General Recommendations: As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources: For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use: The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.
Legal Notice and Terms of Use: This product is provided subject to this Notification (https://www.cisa.gov/notification) and this Privacy & Use policy (https://www.cisa.gov/privacy-policy).
Advisory Conversion Disclaimer: This ICSA is a verbatim republication of Siemens ProductCERT SSA-244969 from a direct conversion of the vendor's Common Security Advisory Framework (CSAF) advisory. This is republished to CISA's website as a means of increasing visibility and is provided "as-is" for informational purposes only. CISA is not responsible for the editorial or technical accuracy of republished advisories and provides no warranties of any kind regarding any information contained within this advisory. Further, CISA does not endorse any commercial product or service. Please contact Siemens ProductCERT directly for any questions regarding this advisory.
Critical infrastructure sectors: Critical Manufacturing
Countries/areas deployed: Worldwide
Company headquarters location: Germany
Recommended Practices: CISA recommends users take defensive measures to minimize the exploitation risk of these vulnerabilities.
Recommended Practices: Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.
Recommended Practices: Locate control system networks and remote devices behind firewalls and isolate them from business networks.
Recommended Practices: When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.
Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices: CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices: CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Recommended Practices: Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
7.4 (High)
Affected products
Known affected
271 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Industrial Edge - Machine Insight App
Siemens / Industrial Edge - Machine Insight App
|
vers:all/* |
No Fix Planned
|
|
|
Industrial Edge - PROFINET IO Connector
Siemens / Industrial Edge - PROFINET IO Connector
|
<V1.1.1 |
Vendor Fix
|
|
|
RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)
|
6GK6108-4AM00-2BA2
|
<V7.1 |
Vendor Fix
fix
|
|
RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
Siemens / RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)
|
6GK6108-4AM00-2DA2
|
<V7.1 |
Vendor Fix
fix
|
|
RUGGEDCOM ROX MX5000
Siemens / RUGGEDCOM ROX MX5000
|
vers:intdot/<2.15.0 |
Vendor Fix
fix
|
|
|
RUGGEDCOM ROX MX5000RE
Siemens / RUGGEDCOM ROX MX5000RE
|
vers:intdot/<2.15.0 |
Vendor Fix
fix
|
|
|
RUGGEDCOM ROX RX1400
Siemens / RUGGEDCOM ROX RX1400
|
vers:intdot/<2.15.0 |
Vendor Fix
fix
|
|
|
RUGGEDCOM ROX RX1500
Siemens / RUGGEDCOM ROX RX1500
|
vers:intdot/<2.15.0 |
Vendor Fix
fix
|
|
|
RUGGEDCOM ROX RX1501
Siemens / RUGGEDCOM ROX RX1501
|
vers:intdot/<2.15.0 |
Vendor Fix
fix
|
|
|
RUGGEDCOM ROX RX1510
Siemens / RUGGEDCOM ROX RX1510
|
vers:intdot/<2.15.0 |
Vendor Fix
fix
|
|
|
RUGGEDCOM ROX RX1511
Siemens / RUGGEDCOM ROX RX1511
|
vers:intdot/<2.15.0 |
Vendor Fix
fix
|
|
|
RUGGEDCOM ROX RX1512
Siemens / RUGGEDCOM ROX RX1512
|
vers:intdot/<2.15.0 |
Vendor Fix
fix
|
|
|
RUGGEDCOM ROX RX1524
Siemens / RUGGEDCOM ROX RX1524
|
vers:intdot/<2.15.0 |
Vendor Fix
fix
|
|
|
RUGGEDCOM ROX RX1536
Siemens / RUGGEDCOM ROX RX1536
|
vers:intdot/<2.15.0 |
Vendor Fix
fix
|
|
|
RUGGEDCOM ROX RX5000
Siemens / RUGGEDCOM ROX RX5000
|
vers:intdot/<2.15.0 |
Vendor Fix
fix
|
|
|
SCALANCE M804PB (6GK5804-0AP00-2AA2)
Siemens / SCALANCE M804PB (6GK5804-0AP00-2AA2)
|
6GK5804-0AP00-2AA2
|
<V7.1 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2)
|
6GK5812-1AA00-2AA2
|
<V7.1 |
Vendor Fix
fix
|
|
SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2)
Siemens / SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2)
|
6GK5812-1BA00-2AA2
|
<V7.1 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2)
|
6GK5816-1AA00-2AA2
|
<V7.1 |
Vendor Fix
fix
|
|
SCALANCE M816-1 ADSL-Router (6GK5816-1BA00-2AA2)
Siemens / SCALANCE M816-1 ADSL-Router (6GK5816-1BA00-2AA2)
|
6GK5816-1BA00-2AA2
|
<V7.1 |
Vendor Fix
fix
|
|
SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
Siemens / SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)
|
6GK5826-2AB00-2AB2
|
<V7.1 |
Vendor Fix
fix
|
|
SCALANCE M874-2 (6GK5874-2AA00-2AA2)
Siemens / SCALANCE M874-2 (6GK5874-2AA00-2AA2)
|
6GK5874-2AA00-2AA2
|
<V7.1 |
Vendor Fix
fix
|
|
SCALANCE M874-3 (6GK5874-3AA00-2AA2)
Siemens / SCALANCE M874-3 (6GK5874-3AA00-2AA2)
|
6GK5874-3AA00-2AA2
|
<V7.1 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (6GK5876-3AA02-2BA2)
Siemens / SCALANCE M876-3 (6GK5876-3AA02-2BA2)
|
6GK5876-3AA02-2BA2
|
<V7.1 |
Vendor Fix
fix
|
|
SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
Siemens / SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)
|
6GK5876-3AA02-2EA2
|
<V7.1 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
Siemens / SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)
|
6GK5876-4AA00-2BA2
|
<V7.1 |
Vendor Fix
fix
|
|
SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
Siemens / SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)
|
6GK5876-4AA00-2DA2
|
<V7.1 |
Vendor Fix
fix
|
|
SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
Siemens / SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)
|
6GK5853-2EA00-2DA1
|
vers:intdot/<7.1 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
Siemens / SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)
|
6GK5856-2EA00-3DA1
|
vers:intdot/<7.1 |
Vendor Fix
fix
|
|
SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
Siemens / SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)
|
6GK5856-2EA00-3AA1
|
vers:intdot/<7.1 |
Vendor Fix
fix
|
|
SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2)
Siemens / SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2)
|
6GK5615-0AA00-2AA2
|
<V7.1 |
Vendor Fix
fix
|
|
SCALANCE SC622-2C (6GK5622-2GS00-2AC2)
Siemens / SCALANCE SC622-2C (6GK5622-2GS00-2AC2)
|
6GK5622-2GS00-2AC2
|
<V2.3 |
Vendor Fix
fix
|
|
SCALANCE SC632-2C (6GK5632-2GS00-2AC2)
Siemens / SCALANCE SC632-2C (6GK5632-2GS00-2AC2)
|
6GK5632-2GS00-2AC2
|
<V2.3 |
Vendor Fix
fix
|
|
SCALANCE SC636-2C (6GK5636-2GS00-2AC2)
Siemens / SCALANCE SC636-2C (6GK5636-2GS00-2AC2)
|
6GK5636-2GS00-2AC2
|
<V2.3 |
Vendor Fix
fix
|
|
SCALANCE SC642-2C (6GK5642-2GS00-2AC2)
Siemens / SCALANCE SC642-2C (6GK5642-2GS00-2AC2)
|
6GK5642-2GS00-2AC2
|
<V2.3 |
Vendor Fix
fix
|
|
SCALANCE SC646-2C (6GK5646-2GS00-2AC2)
Siemens / SCALANCE SC646-2C (6GK5646-2GS00-2AC2)
|
6GK5646-2GS00-2AC2
|
<V2.3 |
Vendor Fix
fix
|
|
SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0)
Siemens / SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0)
|
6GK5748-1GY01-0AA0
|
vers:intdot/<3.0.0 |
Vendor Fix
fix
|
|
SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0)
Siemens / SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0)
|
6GK5748-1GY01-0TA0
|
vers:intdot/<3.0.0 |
Vendor Fix
fix
|
|
SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0)
Siemens / SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0)
|
6GK5788-1GY01-0AA0
|
vers:intdot/<3.0.0 |
Vendor Fix
fix
|
|
SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0)
Siemens / SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0)
|
6GK5788-2GY01-0TA0
|
vers:intdot/<3.0.0 |
Vendor Fix
fix
|
|
SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0)
Siemens / SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0)
|
6GK5788-2GY01-0AA0
|
vers:intdot/<3.0.0 |
Vendor Fix
fix
|
|
SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0)
Siemens / SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0)
|
6GK5788-2HY01-0AA0
|
vers:intdot/<3.0.0 |
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE WAM766-1 (6GK5766-1GE00-7DA0)
Siemens / SCALANCE WAM766-1 (6GK5766-1GE00-7DA0)
|
6GK5766-1GE00-7DA0
|
vers:intdot/<1.2.0 |
Vendor Fix
|
|
SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0)
Siemens / SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0)
|
6GK5766-1GE00-7DB0
|
vers:intdot/<1.2.0 |
Vendor Fix
|
|
SCALANCE WAM766-1 EEC (6GK5766-1GE00-7TA0)
Siemens / SCALANCE WAM766-1 EEC (6GK5766-1GE00-7TA0)
|
6GK5766-1GE00-7TA0
|
vers:intdot/<1.2.0 |
Vendor Fix
|
|
SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0)
Siemens / SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0)
|
6GK5766-1GE00-7TB0
|
vers:intdot/<1.2.0 |
Vendor Fix
|
|
SCALANCE WUM766-1 (6GK5766-1GE00-3DA0)
Siemens / SCALANCE WUM766-1 (6GK5766-1GE00-3DA0)
|
6GK5766-1GE00-3DA0
|
vers:intdot/<1.2.0 |
Vendor Fix
|
|
SCALANCE WUM766-1 (USA) (6GK5766-1GE00-3DB0)
Siemens / SCALANCE WUM766-1 (USA) (6GK5766-1GE00-3DB0)
|
6GK5766-1GE00-3DB0
|
vers:intdot/<1.2.0 |
Vendor Fix
|
|
SCALANCE X200-4P IRT (6GK5200-4AH00-2BA3)
Siemens / SCALANCE X200-4P IRT (6GK5200-4AH00-2BA3)
|
6GK5200-4AH00-2BA3
|
vers:intdot/<5.5.2 |
Vendor Fix
fix
|
|
SCALANCE X201-3P IRT (6GK5201-3BH00-2BA3)
Siemens / SCALANCE X201-3P IRT (6GK5201-3BH00-2BA3)
|
6GK5201-3BH00-2BA3
|
vers:intdot/<5.5.2 |
Vendor Fix
fix
|
|
SCALANCE X201-3P IRT PRO (6GK5201-3JR00-2BA6)
Siemens / SCALANCE X201-3P IRT PRO (6GK5201-3JR00-2BA6)
|
6GK5201-3JR00-2BA6
|
vers:intdot/<5.5.2 |
Vendor Fix
fix
|
|
SCALANCE X202-2IRT (6GK5202-2BB00-2BA3)
Siemens / SCALANCE X202-2IRT (6GK5202-2BB00-2BA3)
|
6GK5202-2BB00-2BA3
|
vers:intdot/<5.5.2 |
Vendor Fix
fix
|
|
SCALANCE X202-2P IRT (6GK5202-2BH00-2BA3)
Siemens / SCALANCE X202-2P IRT (6GK5202-2BH00-2BA3)
|
6GK5202-2BH00-2BA3
|
vers:intdot/<5.5.2 |
Vendor Fix
fix
|
|
SCALANCE X202-2P IRT PRO (6GK5202-2JR00-2BA6)
Siemens / SCALANCE X202-2P IRT PRO (6GK5202-2JR00-2BA6)
|
6GK5202-2JR00-2BA6
|
vers:intdot/<5.5.2 |
Vendor Fix
fix
|
|
SCALANCE X204-2 (6GK5204-2BB10-2AA3)
Siemens / SCALANCE X204-2 (6GK5204-2BB10-2AA3)
|
6GK5204-2BB10-2AA3
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE X204-2FM (6GK5204-2BB11-2AA3)
Siemens / SCALANCE X204-2FM (6GK5204-2BB11-2AA3)
|
6GK5204-2BB11-2AA3
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE X204-2LD (6GK5204-2BC10-2AA3)
Siemens / SCALANCE X204-2LD (6GK5204-2BC10-2AA3)
|
6GK5204-2BC10-2AA3
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE X204-2LD TS (6GK5204-2BC10-2CA2)
Siemens / SCALANCE X204-2LD TS (6GK5204-2BC10-2CA2)
|
6GK5204-2BC10-2CA2
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE X204-2TS (6GK5204-2BB10-2CA2)
Siemens / SCALANCE X204-2TS (6GK5204-2BB10-2CA2)
|
6GK5204-2BB10-2CA2
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE X204IRT (6GK5204-0BA00-2BA3)
Siemens / SCALANCE X204IRT (6GK5204-0BA00-2BA3)
|
6GK5204-0BA00-2BA3
|
vers:intdot/<5.5.2 |
Vendor Fix
fix
|
|
SCALANCE X204IRT PRO (6GK5204-0JA00-2BA6)
Siemens / SCALANCE X204IRT PRO (6GK5204-0JA00-2BA6)
|
6GK5204-0JA00-2BA6
|
vers:intdot/<5.5.2 |
Vendor Fix
fix
|
|
SCALANCE X206-1 (6GK5206-1BB10-2AA3)
Siemens / SCALANCE X206-1 (6GK5206-1BB10-2AA3)
|
6GK5206-1BB10-2AA3
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE X206-1LD (6GK5206-1BC10-2AA3)
Siemens / SCALANCE X206-1LD (6GK5206-1BC10-2AA3)
|
6GK5206-1BC10-2AA3
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE X208 (6GK5208-0BA10-2AA3)
Siemens / SCALANCE X208 (6GK5208-0BA10-2AA3)
|
6GK5208-0BA10-2AA3
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE X208PRO (6GK5208-0HA10-2AA6)
Siemens / SCALANCE X208PRO (6GK5208-0HA10-2AA6)
|
6GK5208-0HA10-2AA6
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE X212-2 (6GK5212-2BB00-2AA3)
Siemens / SCALANCE X212-2 (6GK5212-2BB00-2AA3)
|
6GK5212-2BB00-2AA3
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE X212-2LD (6GK5212-2BC00-2AA3)
Siemens / SCALANCE X212-2LD (6GK5212-2BC00-2AA3)
|
6GK5212-2BC00-2AA3
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE X216 (6GK5216-0BA00-2AA3)
Siemens / SCALANCE X216 (6GK5216-0BA00-2AA3)
|
6GK5216-0BA00-2AA3
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE X224 (6GK5224-0BA00-2AA3)
Siemens / SCALANCE X224 (6GK5224-0BA00-2AA3)
|
6GK5224-0BA00-2AA3
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE X302-7 EEC (230V, coated) (6GK5302-7GD00-3GA3)
Siemens / SCALANCE X302-7 EEC (230V, coated) (6GK5302-7GD00-3GA3)
|
6GK5302-7GD00-3GA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X302-7 EEC (230V) (6GK5302-7GD00-3EA3)
Siemens / SCALANCE X302-7 EEC (230V) (6GK5302-7GD00-3EA3)
|
6GK5302-7GD00-3EA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X302-7 EEC (24V, coated) (6GK5302-7GD00-1GA3)
Siemens / SCALANCE X302-7 EEC (24V, coated) (6GK5302-7GD00-1GA3)
|
6GK5302-7GD00-1GA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X302-7 EEC (24V) (6GK5302-7GD00-1EA3)
Siemens / SCALANCE X302-7 EEC (24V) (6GK5302-7GD00-1EA3)
|
6GK5302-7GD00-1EA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X302-7 EEC (2x 230V, coated) (6GK5302-7GD00-4GA3)
Siemens / SCALANCE X302-7 EEC (2x 230V, coated) (6GK5302-7GD00-4GA3)
|
6GK5302-7GD00-4GA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X302-7 EEC (2x 230V) (6GK5302-7GD00-4EA3)
Siemens / SCALANCE X302-7 EEC (2x 230V) (6GK5302-7GD00-4EA3)
|
6GK5302-7GD00-4EA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X302-7 EEC (2x 24V, coated) (6GK5302-7GD00-2GA3)
Siemens / SCALANCE X302-7 EEC (2x 24V, coated) (6GK5302-7GD00-2GA3)
|
6GK5302-7GD00-2GA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X302-7 EEC (2x 24V) (6GK5302-7GD00-2EA3)
Siemens / SCALANCE X302-7 EEC (2x 24V) (6GK5302-7GD00-2EA3)
|
6GK5302-7GD00-2EA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X304-2FE (6GK5304-2BD00-2AA3)
Siemens / SCALANCE X304-2FE (6GK5304-2BD00-2AA3)
|
6GK5304-2BD00-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X306-1LD FE (6GK5306-1BF00-2AA3)
Siemens / SCALANCE X306-1LD FE (6GK5306-1BF00-2AA3)
|
6GK5306-1BF00-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X307-2 EEC (230V, coated) (6GK5307-2FD00-3GA3)
Siemens / SCALANCE X307-2 EEC (230V, coated) (6GK5307-2FD00-3GA3)
|
6GK5307-2FD00-3GA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X307-2 EEC (230V) (6GK5307-2FD00-3EA3)
Siemens / SCALANCE X307-2 EEC (230V) (6GK5307-2FD00-3EA3)
|
6GK5307-2FD00-3EA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X307-2 EEC (24V, coated) (6GK5307-2FD00-1GA3)
Siemens / SCALANCE X307-2 EEC (24V, coated) (6GK5307-2FD00-1GA3)
|
6GK5307-2FD00-1GA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X307-2 EEC (24V) (6GK5307-2FD00-1EA3)
Siemens / SCALANCE X307-2 EEC (24V) (6GK5307-2FD00-1EA3)
|
6GK5307-2FD00-1EA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X307-2 EEC (2x 230V, coated) (6GK5307-2FD00-4GA3)
Siemens / SCALANCE X307-2 EEC (2x 230V, coated) (6GK5307-2FD00-4GA3)
|
6GK5307-2FD00-4GA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X307-2 EEC (2x 230V) (6GK5307-2FD00-4EA3)
Siemens / SCALANCE X307-2 EEC (2x 230V) (6GK5307-2FD00-4EA3)
|
6GK5307-2FD00-4EA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X307-2 EEC (2x 24V, coated) (6GK5307-2FD00-2GA3)
Siemens / SCALANCE X307-2 EEC (2x 24V, coated) (6GK5307-2FD00-2GA3)
|
6GK5307-2FD00-2GA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X307-2 EEC (2x 24V) (6GK5307-2FD00-2EA3)
Siemens / SCALANCE X307-2 EEC (2x 24V) (6GK5307-2FD00-2EA3)
|
6GK5307-2FD00-2EA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X307-3 (6GK5307-3BL00-2AA3)
Siemens / SCALANCE X307-3 (6GK5307-3BL00-2AA3)
|
6GK5307-3BL00-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X307-3 (6GK5307-3BL10-2AA3)
Siemens / SCALANCE X307-3 (6GK5307-3BL10-2AA3)
|
6GK5307-3BL10-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X307-3LD (6GK5307-3BM00-2AA3)
Siemens / SCALANCE X307-3LD (6GK5307-3BM00-2AA3)
|
6GK5307-3BM00-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X307-3LD (6GK5307-3BM10-2AA3)
Siemens / SCALANCE X307-3LD (6GK5307-3BM10-2AA3)
|
6GK5307-3BM10-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X308-2 (6GK5308-2FL00-2AA3)
Siemens / SCALANCE X308-2 (6GK5308-2FL00-2AA3)
|
6GK5308-2FL00-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X308-2 (6GK5308-2FL10-2AA3)
Siemens / SCALANCE X308-2 (6GK5308-2FL10-2AA3)
|
6GK5308-2FL10-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X308-2LD (6GK5308-2FM00-2AA3)
Siemens / SCALANCE X308-2LD (6GK5308-2FM00-2AA3)
|
6GK5308-2FM00-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X308-2LD (6GK5308-2FM10-2AA3)
Siemens / SCALANCE X308-2LD (6GK5308-2FM10-2AA3)
|
6GK5308-2FM10-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X308-2LH (6GK5308-2FN00-2AA3)
Siemens / SCALANCE X308-2LH (6GK5308-2FN00-2AA3)
|
6GK5308-2FN00-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X308-2LH (6GK5308-2FN10-2AA3)
Siemens / SCALANCE X308-2LH (6GK5308-2FN10-2AA3)
|
6GK5308-2FN10-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X308-2LH+ (6GK5308-2FP00-2AA3)
Siemens / SCALANCE X308-2LH+ (6GK5308-2FP00-2AA3)
|
6GK5308-2FP00-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X308-2LH+ (6GK5308-2FP10-2AA3)
Siemens / SCALANCE X308-2LH+ (6GK5308-2FP10-2AA3)
|
6GK5308-2FP10-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X308-2M (6GK5308-2GG00-2AA2)
Siemens / SCALANCE X308-2M (6GK5308-2GG00-2AA2)
|
6GK5308-2GG00-2AA2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X308-2M (6GK5308-2GG10-2AA2)
Siemens / SCALANCE X308-2M (6GK5308-2GG10-2AA2)
|
6GK5308-2GG10-2AA2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X308-2M PoE (6GK5308-2QG00-2AA2)
Siemens / SCALANCE X308-2M PoE (6GK5308-2QG00-2AA2)
|
6GK5308-2QG00-2AA2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X308-2M PoE (6GK5308-2QG10-2AA2)
Siemens / SCALANCE X308-2M PoE (6GK5308-2QG10-2AA2)
|
6GK5308-2QG10-2AA2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X308-2M TS (6GK5308-2GG00-2CA2)
Siemens / SCALANCE X308-2M TS (6GK5308-2GG00-2CA2)
|
6GK5308-2GG00-2CA2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X308-2M TS (6GK5308-2GG10-2CA2)
Siemens / SCALANCE X308-2M TS (6GK5308-2GG10-2CA2)
|
6GK5308-2GG10-2CA2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X310 (6GK5310-0FA00-2AA3)
Siemens / SCALANCE X310 (6GK5310-0FA00-2AA3)
|
6GK5310-0FA00-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X310 (6GK5310-0FA10-2AA3)
Siemens / SCALANCE X310 (6GK5310-0FA10-2AA3)
|
6GK5310-0FA10-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X310FE (6GK5310-0BA00-2AA3)
Siemens / SCALANCE X310FE (6GK5310-0BA00-2AA3)
|
6GK5310-0BA00-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X310FE (6GK5310-0BA10-2AA3)
Siemens / SCALANCE X310FE (6GK5310-0BA10-2AA3)
|
6GK5310-0BA10-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X320-1 FE (6GK5320-1BD00-2AA3)
Siemens / SCALANCE X320-1 FE (6GK5320-1BD00-2AA3)
|
6GK5320-1BD00-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X320-1-2LD FE (6GK5320-3BF00-2AA3)
Siemens / SCALANCE X320-1-2LD FE (6GK5320-3BF00-2AA3)
|
6GK5320-3BF00-2AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE X408-2 (6GK5408-2FD00-2AA2)
Siemens / SCALANCE X408-2 (6GK5408-2FD00-2AA2)
|
6GK5408-2FD00-2AA2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XF201-3P IRT (6GK5201-3BH00-2BD2)
Siemens / SCALANCE XF201-3P IRT (6GK5201-3BH00-2BD2)
|
6GK5201-3BH00-2BD2
|
vers:intdot/<5.5.2 |
Vendor Fix
fix
|
|
SCALANCE XF202-2P IRT (6GK5202-2BH00-2BD2)
Siemens / SCALANCE XF202-2P IRT (6GK5202-2BH00-2BD2)
|
6GK5202-2BH00-2BD2
|
vers:intdot/<5.5.2 |
Vendor Fix
fix
|
|
SCALANCE XF204 (6GK5204-0BA00-2AF2)
Siemens / SCALANCE XF204 (6GK5204-0BA00-2AF2)
|
6GK5204-0BA00-2AF2
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE XF204-2 (6GK5204-2BC00-2AF2)
Siemens / SCALANCE XF204-2 (6GK5204-2BC00-2AF2)
|
6GK5204-2BC00-2AF2
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE XF204-2BA IRT (6GK5204-2AA00-2BD2)
Siemens / SCALANCE XF204-2BA IRT (6GK5204-2AA00-2BD2)
|
6GK5204-2AA00-2BD2
|
vers:intdot/<5.5.2 |
Vendor Fix
fix
|
|
SCALANCE XF204IRT (6GK5204-0BA00-2BF2)
Siemens / SCALANCE XF204IRT (6GK5204-0BA00-2BF2)
|
6GK5204-0BA00-2BF2
|
vers:intdot/<5.5.2 |
Vendor Fix
fix
|
|
SCALANCE XF206-1 (6GK5206-1BC00-2AF2)
Siemens / SCALANCE XF206-1 (6GK5206-1BC00-2AF2)
|
6GK5206-1BC00-2AF2
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE XF208 (6GK5208-0BA00-2AF2)
Siemens / SCALANCE XF208 (6GK5208-0BA00-2AF2)
|
6GK5208-0BA00-2AF2
|
<V5.2.6 |
Vendor Fix
fix
|
|
SCALANCE XR324-12M (230V, ports on front) (6GK5324-0GG00-3AR2)
Siemens / SCALANCE XR324-12M (230V, ports on front) (6GK5324-0GG00-3AR2)
|
6GK5324-0GG00-3AR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-12M (230V, ports on front) (6GK5324-0GG10-3AR2)
Siemens / SCALANCE XR324-12M (230V, ports on front) (6GK5324-0GG10-3AR2)
|
6GK5324-0GG10-3AR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-12M (230V, ports on rear) (6GK5324-0GG00-3HR2)
Siemens / SCALANCE XR324-12M (230V, ports on rear) (6GK5324-0GG00-3HR2)
|
6GK5324-0GG00-3HR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-12M (230V, ports on rear) (6GK5324-0GG10-3HR2)
Siemens / SCALANCE XR324-12M (230V, ports on rear) (6GK5324-0GG10-3HR2)
|
6GK5324-0GG10-3HR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-12M (24V, ports on front) (6GK5324-0GG00-1AR2)
Siemens / SCALANCE XR324-12M (24V, ports on front) (6GK5324-0GG00-1AR2)
|
6GK5324-0GG00-1AR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-12M (24V, ports on front) (6GK5324-0GG10-1AR2)
Siemens / SCALANCE XR324-12M (24V, ports on front) (6GK5324-0GG10-1AR2)
|
6GK5324-0GG10-1AR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-12M (24V, ports on rear) (6GK5324-0GG00-1HR2)
Siemens / SCALANCE XR324-12M (24V, ports on rear) (6GK5324-0GG00-1HR2)
|
6GK5324-0GG00-1HR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-12M (24V, ports on rear) (6GK5324-0GG10-1HR2)
Siemens / SCALANCE XR324-12M (24V, ports on rear) (6GK5324-0GG10-1HR2)
|
6GK5324-0GG10-1HR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-12M TS (24V) (6GK5324-0GG00-1CR2)
Siemens / SCALANCE XR324-12M TS (24V) (6GK5324-0GG00-1CR2)
|
6GK5324-0GG00-1CR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-12M TS (24V) (6GK5324-0GG10-1CR2)
Siemens / SCALANCE XR324-12M TS (24V) (6GK5324-0GG10-1CR2)
|
6GK5324-0GG10-1CR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front) (6GK5324-4GG00-3ER2)
Siemens / SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front) (6GK5324-4GG00-3ER2)
|
6GK5324-4GG00-3ER2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front) (6GK5324-4GG10-3ER2)
Siemens / SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front) (6GK5324-4GG10-3ER2)
|
6GK5324-4GG10-3ER2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG00-3JR2)
Siemens / SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG00-3JR2)
|
6GK5324-4GG00-3JR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG10-3JR2)
Siemens / SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG10-3JR2)
|
6GK5324-4GG10-3JR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (24V, ports on front) (6GK5324-4GG00-1ER2)
Siemens / SCALANCE XR324-4M EEC (24V, ports on front) (6GK5324-4GG00-1ER2)
|
6GK5324-4GG00-1ER2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (24V, ports on front) (6GK5324-4GG10-1ER2)
Siemens / SCALANCE XR324-4M EEC (24V, ports on front) (6GK5324-4GG10-1ER2)
|
6GK5324-4GG10-1ER2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (24V, ports on rear) (6GK5324-4GG00-1JR2)
Siemens / SCALANCE XR324-4M EEC (24V, ports on rear) (6GK5324-4GG00-1JR2)
|
6GK5324-4GG00-1JR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (24V, ports on rear) (6GK5324-4GG10-1JR2)
Siemens / SCALANCE XR324-4M EEC (24V, ports on rear) (6GK5324-4GG10-1JR2)
|
6GK5324-4GG10-1JR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front) (6GK5324-4GG00-4ER2)
Siemens / SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front) (6GK5324-4GG00-4ER2)
|
6GK5324-4GG00-4ER2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front) (6GK5324-4GG10-4ER2)
Siemens / SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front) (6GK5324-4GG10-4ER2)
|
6GK5324-4GG10-4ER2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG00-4JR2)
Siemens / SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG00-4JR2)
|
6GK5324-4GG00-4JR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG10-4JR2)
Siemens / SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG10-4JR2)
|
6GK5324-4GG10-4JR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (2x 24V, ports on front) (6GK5324-4GG00-2ER2)
Siemens / SCALANCE XR324-4M EEC (2x 24V, ports on front) (6GK5324-4GG00-2ER2)
|
6GK5324-4GG00-2ER2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (2x 24V, ports on front) (6GK5324-4GG10-2ER2)
Siemens / SCALANCE XR324-4M EEC (2x 24V, ports on front) (6GK5324-4GG10-2ER2)
|
6GK5324-4GG10-2ER2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (2x 24V, ports on rear) (6GK5324-4GG00-2JR2)
Siemens / SCALANCE XR324-4M EEC (2x 24V, ports on rear) (6GK5324-4GG00-2JR2)
|
6GK5324-4GG00-2JR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M EEC (2x 24V, ports on rear) (6GK5324-4GG10-2JR2)
Siemens / SCALANCE XR324-4M EEC (2x 24V, ports on rear) (6GK5324-4GG10-2JR2)
|
6GK5324-4GG10-2JR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M PoE (230V, ports on front) (6GK5324-4QG00-3AR2)
Siemens / SCALANCE XR324-4M PoE (230V, ports on front) (6GK5324-4QG00-3AR2)
|
6GK5324-4QG00-3AR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M PoE (230V, ports on rear) (6GK5324-4QG00-3HR2)
Siemens / SCALANCE XR324-4M PoE (230V, ports on rear) (6GK5324-4QG00-3HR2)
|
6GK5324-4QG00-3HR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M PoE (24V, ports on front) (6GK5324-4QG00-1AR2)
Siemens / SCALANCE XR324-4M PoE (24V, ports on front) (6GK5324-4QG00-1AR2)
|
6GK5324-4QG00-1AR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M PoE (24V, ports on rear) (6GK5324-4QG00-1HR2)
Siemens / SCALANCE XR324-4M PoE (24V, ports on rear) (6GK5324-4QG00-1HR2)
|
6GK5324-4QG00-1HR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SCALANCE XR324-4M PoE TS (24V, ports on front) (6GK5324-4QG00-1CR2)
Siemens / SCALANCE XR324-4M PoE TS (24V, ports on front) (6GK5324-4QG00-1CR2)
|
6GK5324-4QG00-1CR2
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SIMATIC CP 1242-7 V2 (6GK7242-7KX31-0XE0)
Siemens / SIMATIC CP 1242-7 V2 (6GK7242-7KX31-0XE0)
|
6GK7242-7KX31-0XE0
|
<V3.3.46 |
Vendor Fix
fix
|
|
SIMATIC CP 1243-1 (6GK7243-1BX30-0XE0)
Siemens / SIMATIC CP 1243-1 (6GK7243-1BX30-0XE0)
|
6GK7243-1BX30-0XE0
|
<V3.3.46 |
Vendor Fix
fix
|
|
SIMATIC CP 1243-7 LTE EU (6GK7243-7KX30-0XE0)
Siemens / SIMATIC CP 1243-7 LTE EU (6GK7243-7KX30-0XE0)
|
6GK7243-7KX30-0XE0
|
<V3.3.46 |
Vendor Fix
fix
|
|
SIMATIC CP 1243-7 LTE US (6GK7243-7SX30-0XE0)
Siemens / SIMATIC CP 1243-7 LTE US (6GK7243-7SX30-0XE0)
|
6GK7243-7SX30-0XE0
|
<V3.3.46 |
Vendor Fix
fix
|
|
SIMATIC CP 1243-8 IRC (6GK7243-8RX30-0XE0)
Siemens / SIMATIC CP 1243-8 IRC (6GK7243-8RX30-0XE0)
|
6GK7243-8RX30-0XE0
|
<V3.3.46 |
Vendor Fix
fix
|
|
SIMATIC CP 1542SP-1 (6GK7542-6UX00-0XE0)
Siemens / SIMATIC CP 1542SP-1 (6GK7542-6UX00-0XE0)
|
6GK7542-6UX00-0XE0
|
vers:intdot/<2.2.28 |
Vendor Fix
fix
|
|
SIMATIC CP 1543-1 (6GK7543-1AX00-0XE0)
Siemens / SIMATIC CP 1543-1 (6GK7543-1AX00-0XE0)
|
6GK7543-1AX00-0XE0
|
<V3.0.22 |
Vendor Fix
fix
|
|
SIMATIC CP 1543SP-1 (6GK7543-6WX00-0XE0)
Siemens / SIMATIC CP 1543SP-1 (6GK7543-6WX00-0XE0)
|
6GK7543-6WX00-0XE0
|
vers:intdot/<2.2.28 |
Vendor Fix
fix
|
|
SIMATIC CP 1545-1 (6GK7545-1GX00-0XE0)
Siemens / SIMATIC CP 1545-1 (6GK7545-1GX00-0XE0)
|
6GK7545-1GX00-0XE0
|
<V1.1 |
Vendor Fix
fix
|
|
SIMATIC PCS neo (Administration Console)
Siemens / SIMATIC PCS neo (Administration Console)
|
vers:intdot/<3.1.1 |
Vendor Fix
fix
|
|
|
SIMATIC Process Historian OPC UA Server
Siemens / SIMATIC Process Historian OPC UA Server
|
<V2020_SP1 |
Vendor Fix
Vendor Fix
Vendor Fix
Vendor Fix
|
|
|
SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0)
|
6ES7211-1BE40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1211C DC/DC/DC (6ES7211-1AE40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1211C DC/DC/DC (6ES7211-1AE40-0XB0)
|
6ES7211-1AE40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1211C DC/DC/Rly (6ES7211-1HE40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1211C DC/DC/Rly (6ES7211-1HE40-0XB0)
|
6ES7211-1HE40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1212C AC/DC/Rly (6ES7212-1BE40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1212C AC/DC/Rly (6ES7212-1BE40-0XB0)
|
6ES7212-1BE40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1212C DC/DC/DC (6ES7212-1AE40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1212C DC/DC/DC (6ES7212-1AE40-0XB0)
|
6ES7212-1AE40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1212C DC/DC/Rly (6ES7212-1HE40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1212C DC/DC/Rly (6ES7212-1HE40-0XB0)
|
6ES7212-1HE40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1212FC DC/DC/DC (6ES7212-1AF40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1212FC DC/DC/DC (6ES7212-1AF40-0XB0)
|
6ES7212-1AF40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1212FC DC/DC/Rly (6ES7212-1HF40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1212FC DC/DC/Rly (6ES7212-1HF40-0XB0)
|
6ES7212-1HF40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1214C AC/DC/Rly (6ES7214-1BG40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1214C AC/DC/Rly (6ES7214-1BG40-0XB0)
|
6ES7214-1BG40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1214C DC/DC/DC (6ES7214-1AG40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1214C DC/DC/DC (6ES7214-1AG40-0XB0)
|
6ES7214-1AG40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1214C DC/DC/Rly (6ES7214-1HG40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1214C DC/DC/Rly (6ES7214-1HG40-0XB0)
|
6ES7214-1HG40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1214FC DC/DC/DC (6ES7214-1AF40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1214FC DC/DC/DC (6ES7214-1AF40-0XB0)
|
6ES7214-1AF40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1214FC DC/DC/Rly (6ES7214-1HF40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1214FC DC/DC/Rly (6ES7214-1HF40-0XB0)
|
6ES7214-1HF40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1215C AC/DC/Rly (6ES7215-1BG40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1215C AC/DC/Rly (6ES7215-1BG40-0XB0)
|
6ES7215-1BG40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1215C DC/DC/DC (6ES7215-1AG40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1215C DC/DC/DC (6ES7215-1AG40-0XB0)
|
6ES7215-1AG40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1215C DC/DC/Rly (6ES7215-1HG40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1215C DC/DC/Rly (6ES7215-1HG40-0XB0)
|
6ES7215-1HG40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1215FC DC/DC/DC (6ES7215-1AF40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1215FC DC/DC/DC (6ES7215-1AF40-0XB0)
|
6ES7215-1AF40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1215FC DC/DC/Rly (6ES7215-1HF40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1215FC DC/DC/Rly (6ES7215-1HF40-0XB0)
|
6ES7215-1HF40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIMATIC S7-1200 CPU 1217C DC/DC/DC (6ES7217-1AG40-0XB0)
Siemens / SIMATIC S7-1200 CPU 1217C DC/DC/DC (6ES7217-1AG40-0XB0)
|
6ES7217-1AG40-0XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SINEC NMS
Siemens / SINEC NMS
|
<V1.0_SP3 |
Vendor Fix
fix
|
|
|
SINEMA Remote Connect Server
Siemens / SINEMA Remote Connect Server
|
vers:intdot/<3.1 |
Vendor Fix
fix
|
|
|
SINEMA Server V14
Siemens / SINEMA Server V14
|
vers:all/* |
No Fix Planned
|
|
|
SINUMERIK Operate
Siemens / SINUMERIK Operate
|
<V4.95_SP1 |
Vendor Fix
|
|
|
SIPLUS ET 200SP CP 1543SP-1 ISEC (6AG1543-6WX00-7XE0)
Siemens / SIPLUS ET 200SP CP 1543SP-1 ISEC (6AG1543-6WX00-7XE0)
|
6AG1543-6WX00-7XE0
|
vers:intdot/<2.2.28 |
Vendor Fix
fix
|
|
SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL (6AG2543-6WX00-4XE0)
Siemens / SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL (6AG2543-6WX00-4XE0)
|
6AG2543-6WX00-4XE0
|
vers:intdot/<2.2.28 |
Vendor Fix
fix
|
|
SIPLUS NET CP 1242-7 V2 (6AG1242-7KX31-7XE0)
Siemens / SIPLUS NET CP 1242-7 V2 (6AG1242-7KX31-7XE0)
|
6AG1242-7KX31-7XE0
|
<V3.3.46 |
Vendor Fix
fix
|
|
SIPLUS NET CP 1543-1 (6AG1543-1AX00-2XE0)
Siemens / SIPLUS NET CP 1543-1 (6AG1543-1AX00-2XE0)
|
6AG1543-1AX00-2XE0
|
<V3.0.22 |
Vendor Fix
fix
|
|
SIPLUS NET SCALANCE X308-2 (6AG1308-2FL10-4AA3)
Siemens / SIPLUS NET SCALANCE X308-2 (6AG1308-2FL10-4AA3)
|
6AG1308-2FL10-4AA3
|
vers:intdot/<4.1.4 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CP 1243-1 (6AG1243-1BX30-2AX0)
Siemens / SIPLUS S7-1200 CP 1243-1 (6AG1243-1BX30-2AX0)
|
6AG1243-1BX30-2AX0
|
<V3.3.46 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CP 1243-1 RAIL (6AG2243-1BX30-1XE0)
Siemens / SIPLUS S7-1200 CP 1243-1 RAIL (6AG2243-1BX30-1XE0)
|
6AG2243-1BX30-1XE0
|
<V3.3.46 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1212 AC/DC/RLY (6AG1212-1BE40-4XB0)
Siemens / SIPLUS S7-1200 CPU 1212 AC/DC/RLY (6AG1212-1BE40-4XB0)
|
6AG1212-1BE40-4XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-2XB0)
Siemens / SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-2XB0)
|
6AG1212-1HE40-2XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-4XB0)
Siemens / SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-4XB0)
|
6AG1212-1HE40-4XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1212C AC/DC/RLY (6AG1212-1BE40-2XB0)
Siemens / SIPLUS S7-1200 CPU 1212C AC/DC/RLY (6AG1212-1BE40-2XB0)
|
6AG1212-1BE40-2XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-2XB0)
Siemens / SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-2XB0)
|
6AG1212-1AE40-2XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-4XB0)
Siemens / SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-4XB0)
|
6AG1212-1AE40-4XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL (6AG2212-1AE40-1XB0)
Siemens / SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL (6AG2212-1AE40-1XB0)
|
6AG2212-1AE40-1XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-5XB0)
Siemens / SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-5XB0)
|
6AG1214-1BG40-5XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-2XB0)
Siemens / SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-2XB0)
|
6AG1214-1HG40-2XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1214C AC/DC/RLY (6AG1214-1BG40-2XB0)
Siemens / SIPLUS S7-1200 CPU 1214C AC/DC/RLY (6AG1214-1BG40-2XB0)
|
6AG1214-1BG40-2XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1214C AC/DC/RLY (6AG1214-1BG40-4XB0)
Siemens / SIPLUS S7-1200 CPU 1214C AC/DC/RLY (6AG1214-1BG40-4XB0)
|
6AG1214-1BG40-4XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1214C DC/DC/DC (6AG1214-1AG40-2XB0)
Siemens / SIPLUS S7-1200 CPU 1214C DC/DC/DC (6AG1214-1AG40-2XB0)
|
6AG1214-1AG40-2XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1214C DC/DC/DC (6AG1214-1AG40-4XB0)
Siemens / SIPLUS S7-1200 CPU 1214C DC/DC/DC (6AG1214-1AG40-4XB0)
|
6AG1214-1AG40-4XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1214C DC/DC/DC (6AG1214-1AG40-5XB0)
Siemens / SIPLUS S7-1200 CPU 1214C DC/DC/DC (6AG1214-1AG40-5XB0)
|
6AG1214-1AG40-5XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL (6AG2214-1AG40-1XB0)
Siemens / SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL (6AG2214-1AG40-1XB0)
|
6AG2214-1AG40-1XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1214C DC/DC/RLY (6AG1214-1HG40-4XB0)
Siemens / SIPLUS S7-1200 CPU 1214C DC/DC/RLY (6AG1214-1HG40-4XB0)
|
6AG1214-1HG40-4XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1214C DC/DC/RLY (6AG1214-1HG40-5XB0)
Siemens / SIPLUS S7-1200 CPU 1214C DC/DC/RLY (6AG1214-1HG40-5XB0)
|
6AG1214-1HG40-5XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1214FC DC/DC/DC (6AG1214-1AF40-5XB0)
Siemens / SIPLUS S7-1200 CPU 1214FC DC/DC/DC (6AG1214-1AF40-5XB0)
|
6AG1214-1AF40-5XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1214FC DC/DC/RLY (6AG1214-1HF40-5XB0)
Siemens / SIPLUS S7-1200 CPU 1214FC DC/DC/RLY (6AG1214-1HF40-5XB0)
|
6AG1214-1HF40-5XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-4XB0)
Siemens / SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-4XB0)
|
6AG1215-1BG40-4XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-5XB0)
Siemens / SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-5XB0)
|
6AG1215-1BG40-5XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-2XB0)
Siemens / SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-2XB0)
|
6AG1215-1AG40-2XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-4XB0)
Siemens / SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-4XB0)
|
6AG1215-1AG40-4XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-2XB0)
Siemens / SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-2XB0)
|
6AG1215-1HG40-2XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-4XB0)
Siemens / SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-4XB0)
|
6AG1215-1HG40-4XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-5XB0)
Siemens / SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-5XB0)
|
6AG1215-1HG40-5XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1215C AC/DC/RLY (6AG1215-1BG40-2XB0)
Siemens / SIPLUS S7-1200 CPU 1215C AC/DC/RLY (6AG1215-1BG40-2XB0)
|
6AG1215-1BG40-2XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1215C DC/DC/DC (6AG1215-1AG40-5XB0)
Siemens / SIPLUS S7-1200 CPU 1215C DC/DC/DC (6AG1215-1AG40-5XB0)
|
6AG1215-1AG40-5XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
SIPLUS S7-1200 CPU 1215FC DC/DC/DC (6AG1215-1AF40-5XB0)
Siemens / SIPLUS S7-1200 CPU 1215FC DC/DC/DC (6AG1215-1AF40-5XB0)
|
6AG1215-1AF40-5XB0
|
vers:intdot/<4.5.2 |
Vendor Fix
fix
|
|
TIA Administrator
Siemens / TIA Administrator
|
vers:intdot/<1.0.7 |
Vendor Fix
fix
|
References
13 references
Acknowledgments
Siemens ProductCERT
{
"document": {
"acknowledgments": [
{
"organization": "Siemens ProductCERT",
"summary": "reported this vulnerability to CISA."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://www.cisa.gov/news-events/news/traffic-light-protocol-tlp-definitions-and-usage"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "OpenSSL has published a security advisory [0] about a vulnerability in OpenSSL versions 1.1.1 \u003c 1.1.1l and 1.0.2 \u003c 1.0.2za that allows an attacker to cause a denial of service (DoS) or to disclose private memory content.\n\nSiemens has released updates for several affected products and recommends to update to the latest versions. Siemens is preparing further updates and recommends countermeasures for products where updates are not, or not yet available.\n\n[0] https://www.openssl.org/news/secadv/20210824.txt",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.",
"title": "Terms of Use"
},
{
"category": "legal_disclaimer",
"text": "This product is provided subject to this Notification (https://www.cisa.gov/notification) and this Privacy \u0026 Use policy (https://www.cisa.gov/privacy-policy).",
"title": "Legal Notice and Terms of Use"
},
{
"category": "other",
"text": "This ICSA is a verbatim republication of Siemens ProductCERT SSA-244969 from a direct conversion of the vendor\u0027s Common Security Advisory Framework (CSAF) advisory. This is republished to CISA\u0027s website as a means of increasing visibility and is provided \"as-is\" for informational purposes only. CISA is not responsible for the editorial or technical accuracy of republished advisories and provides no warranties of any kind regarding any information contained within this advisory. Further, CISA does not endorse any commercial product or service. Please contact Siemens ProductCERT directly for any questions regarding this advisory.",
"title": "Advisory Conversion Disclaimer"
},
{
"category": "other",
"text": "Critical Manufacturing",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "Germany",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the exploitation risk of these vulnerabilities.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "other",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "SSA-244969: OpenSSL Vulnerability in Industrial Products - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-244969.json"
},
{
"category": "self",
"summary": "SSA-244969: OpenSSL Vulnerability in Industrial Products - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-244969.html"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-25-259-05 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2025/icsa-25-259-05.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-25-259-05 - Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-259-05"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/news-events/ics-alerts/ics-alert-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/news-events/news/targeted-cyber-intrusion-detection-and-mitigation-strategies-update-b"
}
],
"title": "Siemens OpenSSL Vulnerability in Industrial Products",
"tracking": {
"current_release_date": "2026-04-16T06:00:00.000000Z",
"generator": {
"date": "2026-04-15T16:33:44.537535Z",
"engine": {
"name": "CISA CSAF Generator",
"version": "1.5.0"
}
},
"id": "ICSA-25-259-05",
"initial_release_date": "2022-02-08T00:00:00.000000Z",
"revision_history": [
{
"date": "2022-02-08T00:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "Publication Date"
},
{
"date": "2022-02-17T00:00:00.000000Z",
"legacy_version": "Additional Release 1",
"number": "2",
"summary": "Added solutions for SIMATIC S7-1200 CPU family and SCALANCE W-700 IEEE 802.11ax family"
},
{
"date": "2022-03-08T00:00:00.000000Z",
"legacy_version": "Additional Release 2",
"number": "3",
"summary": "Added solution for SINUMERIK Operate and RUGGEDCOM ROX II; Added Industrial Edge products"
},
{
"date": "2022-04-12T00:00:00.000000Z",
"legacy_version": "Additional Release 3",
"number": "4",
"summary": "Added solution for RUGGEDCOM RCM1224 familiy, SCALANCE M-800 familiy, SCALANCE MUM-800 familiy, SCALANCE S615, SCALANCE X-300/X408 family, SIMATIC PCS neo, SIMATIC Process Historian OPC UA Server, SCALANCE W-1700 (11AC) family, SIMATIC CP 1543-1, and SIPLUS NET CP 1543-1"
},
{
"date": "2022-05-10T00:00:00.000000Z",
"legacy_version": "Additional Release 4",
"number": "5",
"summary": "Removed Industrial Edge - Inventory App as it is not affected; Added solution for Industrial Edge - PROFINET IO Connector"
},
{
"date": "2022-06-14T00:00:00.000000Z",
"legacy_version": "Additional Release 5",
"number": "6",
"summary": "Added fix for SIMATIC CP 1545-1 and SINEMA Remote Connect Server"
},
{
"date": "2022-07-12T00:00:00.000000Z",
"legacy_version": "Additional Release 6",
"number": "7",
"summary": "Added fix for TIA Administrator and SCALANCE X-200 switch family (incl. SIPLUS NET variants). Updated no fix planned for Industrial Edge - Machine Insight App"
},
{
"date": "2022-08-09T00:00:00.000000Z",
"legacy_version": "Additional Release 7",
"number": "8",
"summary": "Added fix for SIMATIC CP 1242-7 V2, CP 1243-7, CP 1243-1, CP 1243-8"
},
{
"date": "2022-10-11T00:00:00.000000Z",
"legacy_version": "Additional Release 8",
"number": "9",
"summary": "Added fix for SINEC NMS"
},
{
"date": "2023-03-14T00:00:00.000000Z",
"legacy_version": "Additional Release 9",
"number": "10",
"summary": "Added fix for SIMATIC CP 1542SP-1 and SIMATIC CP 1543SP-1"
},
{
"date": "2023-04-11T00:00:00.000000Z",
"legacy_version": "Additional Release 10",
"number": "11",
"summary": "Added fix for SCALANCE X-200IRT switch family"
},
{
"date": "2025-09-16T06:00:00.000000Z",
"legacy_version": "Additional Release 11",
"number": "12",
"summary": "CISA Republication - Initial Publication"
},
{
"date": "2026-04-14T00:00:00.000000Z",
"legacy_version": "Additional Release 12",
"number": "13",
"summary": "Added fix for SCALANCE W-700 IEEE 802.11n family"
},
{
"date": "2026-04-16T06:00:00.000000Z",
"legacy_version": "Latest Updated CISA Republication",
"number": "14",
"summary": "CISA Republication update based on Siemens ProductCERT SSA-244969 advisory"
}
],
"status": "final",
"version": "14"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "Industrial Edge - Machine Insight App",
"product_id": "CSAFPID-0001"
}
}
],
"category": "product_name",
"name": "Industrial Edge - Machine Insight App"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV1.1.1",
"product": {
"name": "Industrial Edge - PROFINET IO Connector",
"product_id": "CSAFPID-0002"
}
}
],
"category": "product_name",
"name": "Industrial Edge - PROFINET IO Connector"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)",
"product_id": "CSAFPID-0003",
"product_identification_helper": {
"model_numbers": [
"6GK6108-4AM00-2BA2"
]
}
}
}
],
"category": "product_name",
"name": "RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)",
"product_id": "CSAFPID-0004",
"product_identification_helper": {
"model_numbers": [
"6GK6108-4AM00-2DA2"
]
}
}
}
],
"category": "product_name",
"name": "RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.15.0",
"product": {
"name": "RUGGEDCOM ROX MX5000",
"product_id": "CSAFPID-0005"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM ROX MX5000"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.15.0",
"product": {
"name": "RUGGEDCOM ROX MX5000RE",
"product_id": "CSAFPID-0006"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM ROX MX5000RE"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.15.0",
"product": {
"name": "RUGGEDCOM ROX RX1400",
"product_id": "CSAFPID-0007"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM ROX RX1400"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.15.0",
"product": {
"name": "RUGGEDCOM ROX RX1500",
"product_id": "CSAFPID-0008"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM ROX RX1500"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.15.0",
"product": {
"name": "RUGGEDCOM ROX RX1501",
"product_id": "CSAFPID-0009"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM ROX RX1501"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.15.0",
"product": {
"name": "RUGGEDCOM ROX RX1510",
"product_id": "CSAFPID-0010"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM ROX RX1510"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.15.0",
"product": {
"name": "RUGGEDCOM ROX RX1511",
"product_id": "CSAFPID-0011"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM ROX RX1511"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.15.0",
"product": {
"name": "RUGGEDCOM ROX RX1512",
"product_id": "CSAFPID-0012"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM ROX RX1512"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.15.0",
"product": {
"name": "RUGGEDCOM ROX RX1524",
"product_id": "CSAFPID-0013"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM ROX RX1524"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.15.0",
"product": {
"name": "RUGGEDCOM ROX RX1536",
"product_id": "CSAFPID-0014"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM ROX RX1536"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.15.0",
"product": {
"name": "RUGGEDCOM ROX RX5000",
"product_id": "CSAFPID-0015"
}
}
],
"category": "product_name",
"name": "RUGGEDCOM ROX RX5000"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "SCALANCE M804PB (6GK5804-0AP00-2AA2)",
"product_id": "CSAFPID-0016",
"product_identification_helper": {
"model_numbers": [
"6GK5804-0AP00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M804PB (6GK5804-0AP00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2)",
"product_id": "CSAFPID-0017",
"product_identification_helper": {
"model_numbers": [
"6GK5812-1AA00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2)",
"product_id": "CSAFPID-0018",
"product_identification_helper": {
"model_numbers": [
"6GK5812-1BA00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M812-1 ADSL-Router (6GK5812-1BA00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2)",
"product_id": "CSAFPID-0019",
"product_identification_helper": {
"model_numbers": [
"6GK5816-1AA00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M816-1 ADSL-Router (6GK5816-1AA00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "SCALANCE M816-1 ADSL-Router (6GK5816-1BA00-2AA2)",
"product_id": "CSAFPID-0020",
"product_identification_helper": {
"model_numbers": [
"6GK5816-1BA00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M816-1 ADSL-Router (6GK5816-1BA00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)",
"product_id": "CSAFPID-0021",
"product_identification_helper": {
"model_numbers": [
"6GK5826-2AB00-2AB2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M826-2 SHDSL-Router (6GK5826-2AB00-2AB2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "SCALANCE M874-2 (6GK5874-2AA00-2AA2)",
"product_id": "CSAFPID-0022",
"product_identification_helper": {
"model_numbers": [
"6GK5874-2AA00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M874-2 (6GK5874-2AA00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "SCALANCE M874-3 (6GK5874-3AA00-2AA2)",
"product_id": "CSAFPID-0023",
"product_identification_helper": {
"model_numbers": [
"6GK5874-3AA00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M874-3 (6GK5874-3AA00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "SCALANCE M876-3 (6GK5876-3AA02-2BA2)",
"product_id": "CSAFPID-0024",
"product_identification_helper": {
"model_numbers": [
"6GK5876-3AA02-2BA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M876-3 (6GK5876-3AA02-2BA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)",
"product_id": "CSAFPID-0025",
"product_identification_helper": {
"model_numbers": [
"6GK5876-3AA02-2EA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M876-3 (ROK) (6GK5876-3AA02-2EA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)",
"product_id": "CSAFPID-0026",
"product_identification_helper": {
"model_numbers": [
"6GK5876-4AA00-2BA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M876-4 (EU) (6GK5876-4AA00-2BA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)",
"product_id": "CSAFPID-0027",
"product_identification_helper": {
"model_numbers": [
"6GK5876-4AA00-2DA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE M876-4 (NAM) (6GK5876-4AA00-2DA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c7.1",
"product": {
"name": "SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)",
"product_id": "CSAFPID-0028",
"product_identification_helper": {
"model_numbers": [
"6GK5853-2EA00-2DA1"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE MUM853-1 (EU) (6GK5853-2EA00-2DA1)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c7.1",
"product": {
"name": "SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)",
"product_id": "CSAFPID-0029",
"product_identification_helper": {
"model_numbers": [
"6GK5856-2EA00-3DA1"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE MUM856-1 (EU) (6GK5856-2EA00-3DA1)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c7.1",
"product": {
"name": "SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)",
"product_id": "CSAFPID-0030",
"product_identification_helper": {
"model_numbers": [
"6GK5856-2EA00-3AA1"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE MUM856-1 (RoW) (6GK5856-2EA00-3AA1)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV7.1",
"product": {
"name": "SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2)",
"product_id": "CSAFPID-0031",
"product_identification_helper": {
"model_numbers": [
"6GK5615-0AA00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE S615 LAN-Router (6GK5615-0AA00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV2.3",
"product": {
"name": "SCALANCE SC622-2C (6GK5622-2GS00-2AC2)",
"product_id": "CSAFPID-0032",
"product_identification_helper": {
"model_numbers": [
"6GK5622-2GS00-2AC2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE SC622-2C (6GK5622-2GS00-2AC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV2.3",
"product": {
"name": "SCALANCE SC632-2C (6GK5632-2GS00-2AC2)",
"product_id": "CSAFPID-0033",
"product_identification_helper": {
"model_numbers": [
"6GK5632-2GS00-2AC2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE SC632-2C (6GK5632-2GS00-2AC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV2.3",
"product": {
"name": "SCALANCE SC636-2C (6GK5636-2GS00-2AC2)",
"product_id": "CSAFPID-0034",
"product_identification_helper": {
"model_numbers": [
"6GK5636-2GS00-2AC2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE SC636-2C (6GK5636-2GS00-2AC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV2.3",
"product": {
"name": "SCALANCE SC642-2C (6GK5642-2GS00-2AC2)",
"product_id": "CSAFPID-0035",
"product_identification_helper": {
"model_numbers": [
"6GK5642-2GS00-2AC2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE SC642-2C (6GK5642-2GS00-2AC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV2.3",
"product": {
"name": "SCALANCE SC646-2C (6GK5646-2GS00-2AC2)",
"product_id": "CSAFPID-0036",
"product_identification_helper": {
"model_numbers": [
"6GK5646-2GS00-2AC2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE SC646-2C (6GK5646-2GS00-2AC2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c3.0.0",
"product": {
"name": "SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0)",
"product_id": "CSAFPID-0037",
"product_identification_helper": {
"model_numbers": [
"6GK5748-1GY01-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W1748-1 M12 (6GK5748-1GY01-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c3.0.0",
"product": {
"name": "SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0)",
"product_id": "CSAFPID-0038",
"product_identification_helper": {
"model_numbers": [
"6GK5748-1GY01-0TA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W1748-1 M12 (6GK5748-1GY01-0TA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c3.0.0",
"product": {
"name": "SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0)",
"product_id": "CSAFPID-0039",
"product_identification_helper": {
"model_numbers": [
"6GK5788-1GY01-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W1788-1 M12 (6GK5788-1GY01-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c3.0.0",
"product": {
"name": "SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0)",
"product_id": "CSAFPID-0040",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2GY01-0TA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W1788-2 EEC M12 (6GK5788-2GY01-0TA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c3.0.0",
"product": {
"name": "SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0)",
"product_id": "CSAFPID-0041",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2GY01-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W1788-2 M12 (6GK5788-2GY01-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c3.0.0",
"product": {
"name": "SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0)",
"product_id": "CSAFPID-0042",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2HY01-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W1788-2IA M12 (6GK5788-2HY01-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)",
"product_id": "CSAFPID-0043",
"product_identification_helper": {
"model_numbers": [
"6GK5721-1FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)",
"product_id": "CSAFPID-0044",
"product_identification_helper": {
"model_numbers": [
"6GK5721-1FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)",
"product_id": "CSAFPID-0045",
"product_identification_helper": {
"model_numbers": [
"6GK5722-1FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)",
"product_id": "CSAFPID-0046",
"product_identification_helper": {
"model_numbers": [
"6GK5722-1FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)",
"product_id": "CSAFPID-0047",
"product_identification_helper": {
"model_numbers": [
"6GK5722-1FC00-0AC0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)",
"product_id": "CSAFPID-0048",
"product_identification_helper": {
"model_numbers": [
"6GK5734-1FX00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)",
"product_id": "CSAFPID-0049",
"product_identification_helper": {
"model_numbers": [
"6GK5734-1FX00-0AA6"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)",
"product_id": "CSAFPID-0050",
"product_identification_helper": {
"model_numbers": [
"6GK5734-1FX00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)",
"product_id": "CSAFPID-0051",
"product_identification_helper": {
"model_numbers": [
"6GK5734-1FX00-0AB6"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)",
"product_id": "CSAFPID-0052",
"product_identification_helper": {
"model_numbers": [
"6GK5738-1GY00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)",
"product_id": "CSAFPID-0053",
"product_identification_helper": {
"model_numbers": [
"6GK5738-1GY00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)",
"product_id": "CSAFPID-0054",
"product_identification_helper": {
"model_numbers": [
"6GK5748-1GD00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)",
"product_id": "CSAFPID-0055",
"product_identification_helper": {
"model_numbers": [
"6GK5748-1GD00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)",
"product_id": "CSAFPID-0056",
"product_identification_helper": {
"model_numbers": [
"6GK5748-1FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)",
"product_id": "CSAFPID-0057",
"product_identification_helper": {
"model_numbers": [
"6GK5748-1FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)",
"product_id": "CSAFPID-0058",
"product_identification_helper": {
"model_numbers": [
"6GK5761-1FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)",
"product_id": "CSAFPID-0059",
"product_identification_helper": {
"model_numbers": [
"6GK5761-1FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)",
"product_id": "CSAFPID-0060",
"product_identification_helper": {
"model_numbers": [
"6GK5774-1FY00-0TA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)",
"product_id": "CSAFPID-0061",
"product_identification_helper": {
"model_numbers": [
"6GK5774-1FY00-0TB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)",
"product_id": "CSAFPID-0062",
"product_identification_helper": {
"model_numbers": [
"6GK5774-1FX00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)",
"product_id": "CSAFPID-0063",
"product_identification_helper": {
"model_numbers": [
"6GK5774-1FX00-0AA6"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)",
"product_id": "CSAFPID-0064",
"product_identification_helper": {
"model_numbers": [
"6GK5774-1FX00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)",
"product_id": "CSAFPID-0065",
"product_identification_helper": {
"model_numbers": [
"6GK5774-1FX00-0AC0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)",
"product_id": "CSAFPID-0066",
"product_identification_helper": {
"model_numbers": [
"6GK5774-1FX00-0AB6"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)",
"product_id": "CSAFPID-0067",
"product_identification_helper": {
"model_numbers": [
"6GK5778-1GY00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)",
"product_id": "CSAFPID-0068",
"product_identification_helper": {
"model_numbers": [
"6GK5778-1GY00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)",
"product_id": "CSAFPID-0069",
"product_identification_helper": {
"model_numbers": [
"6GK5778-1GY00-0TA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)",
"product_id": "CSAFPID-0070",
"product_identification_helper": {
"model_numbers": [
"6GK5778-1GY00-0TB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)",
"product_id": "CSAFPID-0071",
"product_identification_helper": {
"model_numbers": [
"6GK5786-1FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)",
"product_id": "CSAFPID-0072",
"product_identification_helper": {
"model_numbers": [
"6GK5786-1FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)",
"product_id": "CSAFPID-0073",
"product_identification_helper": {
"model_numbers": [
"6GK5786-2FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)",
"product_id": "CSAFPID-0074",
"product_identification_helper": {
"model_numbers": [
"6GK5786-2FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)",
"product_id": "CSAFPID-0075",
"product_identification_helper": {
"model_numbers": [
"6GK5786-2FC00-0AC0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)",
"product_id": "CSAFPID-0076",
"product_identification_helper": {
"model_numbers": [
"6GK5786-2FE00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)",
"product_id": "CSAFPID-0077",
"product_identification_helper": {
"model_numbers": [
"6GK5786-2FE00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)",
"product_id": "CSAFPID-0078",
"product_identification_helper": {
"model_numbers": [
"6GK5786-2HC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)",
"product_id": "CSAFPID-0079",
"product_identification_helper": {
"model_numbers": [
"6GK5786-2HC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)",
"product_id": "CSAFPID-0080",
"product_identification_helper": {
"model_numbers": [
"6GK5788-1GD00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)",
"product_id": "CSAFPID-0081",
"product_identification_helper": {
"model_numbers": [
"6GK5788-1GD00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)",
"product_id": "CSAFPID-0082",
"product_identification_helper": {
"model_numbers": [
"6GK5788-1FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)",
"product_id": "CSAFPID-0083",
"product_identification_helper": {
"model_numbers": [
"6GK5788-1FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)",
"product_id": "CSAFPID-0084",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2GD00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)",
"product_id": "CSAFPID-0085",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2GD00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)",
"product_id": "CSAFPID-0086",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2GD00-0TA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)",
"product_id": "CSAFPID-0087",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2GD00-0TB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)",
"product_id": "CSAFPID-0088",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2GD00-0TC0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)",
"product_id": "CSAFPID-0089",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)",
"product_id": "CSAFPID-0090",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)",
"product_id": "CSAFPID-0091",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2FC00-0AC0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c1.2.0",
"product": {
"name": "SCALANCE WAM766-1 (6GK5766-1GE00-7DA0)",
"product_id": "CSAFPID-0092",
"product_identification_helper": {
"model_numbers": [
"6GK5766-1GE00-7DA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE WAM766-1 (6GK5766-1GE00-7DA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c1.2.0",
"product": {
"name": "SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0)",
"product_id": "CSAFPID-0093",
"product_identification_helper": {
"model_numbers": [
"6GK5766-1GE00-7DB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE WAM766-1 (US) (6GK5766-1GE00-7DB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c1.2.0",
"product": {
"name": "SCALANCE WAM766-1 EEC (6GK5766-1GE00-7TA0)",
"product_id": "CSAFPID-0094",
"product_identification_helper": {
"model_numbers": [
"6GK5766-1GE00-7TA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE WAM766-1 EEC (6GK5766-1GE00-7TA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c1.2.0",
"product": {
"name": "SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0)",
"product_id": "CSAFPID-0095",
"product_identification_helper": {
"model_numbers": [
"6GK5766-1GE00-7TB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE WAM766-1 EEC (US) (6GK5766-1GE00-7TB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c1.2.0",
"product": {
"name": "SCALANCE WUM766-1 (6GK5766-1GE00-3DA0)",
"product_id": "CSAFPID-0096",
"product_identification_helper": {
"model_numbers": [
"6GK5766-1GE00-3DA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE WUM766-1 (6GK5766-1GE00-3DA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c1.2.0",
"product": {
"name": "SCALANCE WUM766-1 (USA) (6GK5766-1GE00-3DB0)",
"product_id": "CSAFPID-0097",
"product_identification_helper": {
"model_numbers": [
"6GK5766-1GE00-3DB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE WUM766-1 (USA) (6GK5766-1GE00-3DB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c5.5.2",
"product": {
"name": "SCALANCE X200-4P IRT (6GK5200-4AH00-2BA3)",
"product_id": "CSAFPID-0098",
"product_identification_helper": {
"model_numbers": [
"6GK5200-4AH00-2BA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X200-4P IRT (6GK5200-4AH00-2BA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c5.5.2",
"product": {
"name": "SCALANCE X201-3P IRT (6GK5201-3BH00-2BA3)",
"product_id": "CSAFPID-0099",
"product_identification_helper": {
"model_numbers": [
"6GK5201-3BH00-2BA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X201-3P IRT (6GK5201-3BH00-2BA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c5.5.2",
"product": {
"name": "SCALANCE X201-3P IRT PRO (6GK5201-3JR00-2BA6)",
"product_id": "CSAFPID-0100",
"product_identification_helper": {
"model_numbers": [
"6GK5201-3JR00-2BA6"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X201-3P IRT PRO (6GK5201-3JR00-2BA6)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c5.5.2",
"product": {
"name": "SCALANCE X202-2IRT (6GK5202-2BB00-2BA3)",
"product_id": "CSAFPID-0101",
"product_identification_helper": {
"model_numbers": [
"6GK5202-2BB00-2BA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X202-2IRT (6GK5202-2BB00-2BA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c5.5.2",
"product": {
"name": "SCALANCE X202-2P IRT (6GK5202-2BH00-2BA3)",
"product_id": "CSAFPID-0102",
"product_identification_helper": {
"model_numbers": [
"6GK5202-2BH00-2BA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X202-2P IRT (6GK5202-2BH00-2BA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c5.5.2",
"product": {
"name": "SCALANCE X202-2P IRT PRO (6GK5202-2JR00-2BA6)",
"product_id": "CSAFPID-0103",
"product_identification_helper": {
"model_numbers": [
"6GK5202-2JR00-2BA6"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X202-2P IRT PRO (6GK5202-2JR00-2BA6)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE X204-2 (6GK5204-2BB10-2AA3)",
"product_id": "CSAFPID-0104",
"product_identification_helper": {
"model_numbers": [
"6GK5204-2BB10-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X204-2 (6GK5204-2BB10-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE X204-2FM (6GK5204-2BB11-2AA3)",
"product_id": "CSAFPID-0105",
"product_identification_helper": {
"model_numbers": [
"6GK5204-2BB11-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X204-2FM (6GK5204-2BB11-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE X204-2LD (6GK5204-2BC10-2AA3)",
"product_id": "CSAFPID-0106",
"product_identification_helper": {
"model_numbers": [
"6GK5204-2BC10-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X204-2LD (6GK5204-2BC10-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE X204-2LD TS (6GK5204-2BC10-2CA2)",
"product_id": "CSAFPID-0107",
"product_identification_helper": {
"model_numbers": [
"6GK5204-2BC10-2CA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X204-2LD TS (6GK5204-2BC10-2CA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE X204-2TS (6GK5204-2BB10-2CA2)",
"product_id": "CSAFPID-0108",
"product_identification_helper": {
"model_numbers": [
"6GK5204-2BB10-2CA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X204-2TS (6GK5204-2BB10-2CA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c5.5.2",
"product": {
"name": "SCALANCE X204IRT (6GK5204-0BA00-2BA3)",
"product_id": "CSAFPID-0109",
"product_identification_helper": {
"model_numbers": [
"6GK5204-0BA00-2BA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X204IRT (6GK5204-0BA00-2BA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c5.5.2",
"product": {
"name": "SCALANCE X204IRT PRO (6GK5204-0JA00-2BA6)",
"product_id": "CSAFPID-0110",
"product_identification_helper": {
"model_numbers": [
"6GK5204-0JA00-2BA6"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X204IRT PRO (6GK5204-0JA00-2BA6)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE X206-1 (6GK5206-1BB10-2AA3)",
"product_id": "CSAFPID-0111",
"product_identification_helper": {
"model_numbers": [
"6GK5206-1BB10-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X206-1 (6GK5206-1BB10-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE X206-1LD (6GK5206-1BC10-2AA3)",
"product_id": "CSAFPID-0112",
"product_identification_helper": {
"model_numbers": [
"6GK5206-1BC10-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X206-1LD (6GK5206-1BC10-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE X208 (6GK5208-0BA10-2AA3)",
"product_id": "CSAFPID-0113",
"product_identification_helper": {
"model_numbers": [
"6GK5208-0BA10-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X208 (6GK5208-0BA10-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE X208PRO (6GK5208-0HA10-2AA6)",
"product_id": "CSAFPID-0114",
"product_identification_helper": {
"model_numbers": [
"6GK5208-0HA10-2AA6"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X208PRO (6GK5208-0HA10-2AA6)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE X212-2 (6GK5212-2BB00-2AA3)",
"product_id": "CSAFPID-0115",
"product_identification_helper": {
"model_numbers": [
"6GK5212-2BB00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X212-2 (6GK5212-2BB00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE X212-2LD (6GK5212-2BC00-2AA3)",
"product_id": "CSAFPID-0116",
"product_identification_helper": {
"model_numbers": [
"6GK5212-2BC00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X212-2LD (6GK5212-2BC00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE X216 (6GK5216-0BA00-2AA3)",
"product_id": "CSAFPID-0117",
"product_identification_helper": {
"model_numbers": [
"6GK5216-0BA00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X216 (6GK5216-0BA00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE X224 (6GK5224-0BA00-2AA3)",
"product_id": "CSAFPID-0118",
"product_identification_helper": {
"model_numbers": [
"6GK5224-0BA00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X224 (6GK5224-0BA00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X302-7 EEC (230V, coated) (6GK5302-7GD00-3GA3)",
"product_id": "CSAFPID-0119",
"product_identification_helper": {
"model_numbers": [
"6GK5302-7GD00-3GA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X302-7 EEC (230V, coated) (6GK5302-7GD00-3GA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X302-7 EEC (230V) (6GK5302-7GD00-3EA3)",
"product_id": "CSAFPID-0120",
"product_identification_helper": {
"model_numbers": [
"6GK5302-7GD00-3EA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X302-7 EEC (230V) (6GK5302-7GD00-3EA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X302-7 EEC (24V, coated) (6GK5302-7GD00-1GA3)",
"product_id": "CSAFPID-0121",
"product_identification_helper": {
"model_numbers": [
"6GK5302-7GD00-1GA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X302-7 EEC (24V, coated) (6GK5302-7GD00-1GA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X302-7 EEC (24V) (6GK5302-7GD00-1EA3)",
"product_id": "CSAFPID-0122",
"product_identification_helper": {
"model_numbers": [
"6GK5302-7GD00-1EA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X302-7 EEC (24V) (6GK5302-7GD00-1EA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X302-7 EEC (2x 230V, coated) (6GK5302-7GD00-4GA3)",
"product_id": "CSAFPID-0123",
"product_identification_helper": {
"model_numbers": [
"6GK5302-7GD00-4GA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X302-7 EEC (2x 230V, coated) (6GK5302-7GD00-4GA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X302-7 EEC (2x 230V) (6GK5302-7GD00-4EA3)",
"product_id": "CSAFPID-0124",
"product_identification_helper": {
"model_numbers": [
"6GK5302-7GD00-4EA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X302-7 EEC (2x 230V) (6GK5302-7GD00-4EA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X302-7 EEC (2x 24V, coated) (6GK5302-7GD00-2GA3)",
"product_id": "CSAFPID-0125",
"product_identification_helper": {
"model_numbers": [
"6GK5302-7GD00-2GA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X302-7 EEC (2x 24V, coated) (6GK5302-7GD00-2GA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X302-7 EEC (2x 24V) (6GK5302-7GD00-2EA3)",
"product_id": "CSAFPID-0126",
"product_identification_helper": {
"model_numbers": [
"6GK5302-7GD00-2EA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X302-7 EEC (2x 24V) (6GK5302-7GD00-2EA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X304-2FE (6GK5304-2BD00-2AA3)",
"product_id": "CSAFPID-0127",
"product_identification_helper": {
"model_numbers": [
"6GK5304-2BD00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X304-2FE (6GK5304-2BD00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X306-1LD FE (6GK5306-1BF00-2AA3)",
"product_id": "CSAFPID-0128",
"product_identification_helper": {
"model_numbers": [
"6GK5306-1BF00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X306-1LD FE (6GK5306-1BF00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X307-2 EEC (230V, coated) (6GK5307-2FD00-3GA3)",
"product_id": "CSAFPID-0129",
"product_identification_helper": {
"model_numbers": [
"6GK5307-2FD00-3GA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X307-2 EEC (230V, coated) (6GK5307-2FD00-3GA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X307-2 EEC (230V) (6GK5307-2FD00-3EA3)",
"product_id": "CSAFPID-0130",
"product_identification_helper": {
"model_numbers": [
"6GK5307-2FD00-3EA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X307-2 EEC (230V) (6GK5307-2FD00-3EA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X307-2 EEC (24V, coated) (6GK5307-2FD00-1GA3)",
"product_id": "CSAFPID-0131",
"product_identification_helper": {
"model_numbers": [
"6GK5307-2FD00-1GA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X307-2 EEC (24V, coated) (6GK5307-2FD00-1GA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X307-2 EEC (24V) (6GK5307-2FD00-1EA3)",
"product_id": "CSAFPID-0132",
"product_identification_helper": {
"model_numbers": [
"6GK5307-2FD00-1EA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X307-2 EEC (24V) (6GK5307-2FD00-1EA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X307-2 EEC (2x 230V, coated) (6GK5307-2FD00-4GA3)",
"product_id": "CSAFPID-0133",
"product_identification_helper": {
"model_numbers": [
"6GK5307-2FD00-4GA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X307-2 EEC (2x 230V, coated) (6GK5307-2FD00-4GA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X307-2 EEC (2x 230V) (6GK5307-2FD00-4EA3)",
"product_id": "CSAFPID-0134",
"product_identification_helper": {
"model_numbers": [
"6GK5307-2FD00-4EA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X307-2 EEC (2x 230V) (6GK5307-2FD00-4EA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X307-2 EEC (2x 24V, coated) (6GK5307-2FD00-2GA3)",
"product_id": "CSAFPID-0135",
"product_identification_helper": {
"model_numbers": [
"6GK5307-2FD00-2GA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X307-2 EEC (2x 24V, coated) (6GK5307-2FD00-2GA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X307-2 EEC (2x 24V) (6GK5307-2FD00-2EA3)",
"product_id": "CSAFPID-0136",
"product_identification_helper": {
"model_numbers": [
"6GK5307-2FD00-2EA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X307-2 EEC (2x 24V) (6GK5307-2FD00-2EA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X307-3 (6GK5307-3BL00-2AA3)",
"product_id": "CSAFPID-0137",
"product_identification_helper": {
"model_numbers": [
"6GK5307-3BL00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X307-3 (6GK5307-3BL00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X307-3 (6GK5307-3BL10-2AA3)",
"product_id": "CSAFPID-0138",
"product_identification_helper": {
"model_numbers": [
"6GK5307-3BL10-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X307-3 (6GK5307-3BL10-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X307-3LD (6GK5307-3BM00-2AA3)",
"product_id": "CSAFPID-0139",
"product_identification_helper": {
"model_numbers": [
"6GK5307-3BM00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X307-3LD (6GK5307-3BM00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X307-3LD (6GK5307-3BM10-2AA3)",
"product_id": "CSAFPID-0140",
"product_identification_helper": {
"model_numbers": [
"6GK5307-3BM10-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X307-3LD (6GK5307-3BM10-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X308-2 (6GK5308-2FL00-2AA3)",
"product_id": "CSAFPID-0141",
"product_identification_helper": {
"model_numbers": [
"6GK5308-2FL00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X308-2 (6GK5308-2FL00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X308-2 (6GK5308-2FL10-2AA3)",
"product_id": "CSAFPID-0142",
"product_identification_helper": {
"model_numbers": [
"6GK5308-2FL10-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X308-2 (6GK5308-2FL10-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X308-2LD (6GK5308-2FM00-2AA3)",
"product_id": "CSAFPID-0143",
"product_identification_helper": {
"model_numbers": [
"6GK5308-2FM00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X308-2LD (6GK5308-2FM00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X308-2LD (6GK5308-2FM10-2AA3)",
"product_id": "CSAFPID-0144",
"product_identification_helper": {
"model_numbers": [
"6GK5308-2FM10-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X308-2LD (6GK5308-2FM10-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X308-2LH (6GK5308-2FN00-2AA3)",
"product_id": "CSAFPID-0145",
"product_identification_helper": {
"model_numbers": [
"6GK5308-2FN00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X308-2LH (6GK5308-2FN00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X308-2LH (6GK5308-2FN10-2AA3)",
"product_id": "CSAFPID-0146",
"product_identification_helper": {
"model_numbers": [
"6GK5308-2FN10-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X308-2LH (6GK5308-2FN10-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X308-2LH+ (6GK5308-2FP00-2AA3)",
"product_id": "CSAFPID-0147",
"product_identification_helper": {
"model_numbers": [
"6GK5308-2FP00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X308-2LH+ (6GK5308-2FP00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X308-2LH+ (6GK5308-2FP10-2AA3)",
"product_id": "CSAFPID-0148",
"product_identification_helper": {
"model_numbers": [
"6GK5308-2FP10-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X308-2LH+ (6GK5308-2FP10-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X308-2M (6GK5308-2GG00-2AA2)",
"product_id": "CSAFPID-0149",
"product_identification_helper": {
"model_numbers": [
"6GK5308-2GG00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X308-2M (6GK5308-2GG00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X308-2M (6GK5308-2GG10-2AA2)",
"product_id": "CSAFPID-0150",
"product_identification_helper": {
"model_numbers": [
"6GK5308-2GG10-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X308-2M (6GK5308-2GG10-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X308-2M PoE (6GK5308-2QG00-2AA2)",
"product_id": "CSAFPID-0151",
"product_identification_helper": {
"model_numbers": [
"6GK5308-2QG00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X308-2M PoE (6GK5308-2QG00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X308-2M PoE (6GK5308-2QG10-2AA2)",
"product_id": "CSAFPID-0152",
"product_identification_helper": {
"model_numbers": [
"6GK5308-2QG10-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X308-2M PoE (6GK5308-2QG10-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X308-2M TS (6GK5308-2GG00-2CA2)",
"product_id": "CSAFPID-0153",
"product_identification_helper": {
"model_numbers": [
"6GK5308-2GG00-2CA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X308-2M TS (6GK5308-2GG00-2CA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X308-2M TS (6GK5308-2GG10-2CA2)",
"product_id": "CSAFPID-0154",
"product_identification_helper": {
"model_numbers": [
"6GK5308-2GG10-2CA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X308-2M TS (6GK5308-2GG10-2CA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X310 (6GK5310-0FA00-2AA3)",
"product_id": "CSAFPID-0155",
"product_identification_helper": {
"model_numbers": [
"6GK5310-0FA00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X310 (6GK5310-0FA00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X310 (6GK5310-0FA10-2AA3)",
"product_id": "CSAFPID-0156",
"product_identification_helper": {
"model_numbers": [
"6GK5310-0FA10-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X310 (6GK5310-0FA10-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X310FE (6GK5310-0BA00-2AA3)",
"product_id": "CSAFPID-0157",
"product_identification_helper": {
"model_numbers": [
"6GK5310-0BA00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X310FE (6GK5310-0BA00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X310FE (6GK5310-0BA10-2AA3)",
"product_id": "CSAFPID-0158",
"product_identification_helper": {
"model_numbers": [
"6GK5310-0BA10-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X310FE (6GK5310-0BA10-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X320-1 FE (6GK5320-1BD00-2AA3)",
"product_id": "CSAFPID-0159",
"product_identification_helper": {
"model_numbers": [
"6GK5320-1BD00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X320-1 FE (6GK5320-1BD00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X320-1-2LD FE (6GK5320-3BF00-2AA3)",
"product_id": "CSAFPID-0160",
"product_identification_helper": {
"model_numbers": [
"6GK5320-3BF00-2AA3"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X320-1-2LD FE (6GK5320-3BF00-2AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE X408-2 (6GK5408-2FD00-2AA2)",
"product_id": "CSAFPID-0161",
"product_identification_helper": {
"model_numbers": [
"6GK5408-2FD00-2AA2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE X408-2 (6GK5408-2FD00-2AA2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c5.5.2",
"product": {
"name": "SCALANCE XF201-3P IRT (6GK5201-3BH00-2BD2)",
"product_id": "CSAFPID-0162",
"product_identification_helper": {
"model_numbers": [
"6GK5201-3BH00-2BD2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XF201-3P IRT (6GK5201-3BH00-2BD2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c5.5.2",
"product": {
"name": "SCALANCE XF202-2P IRT (6GK5202-2BH00-2BD2)",
"product_id": "CSAFPID-0163",
"product_identification_helper": {
"model_numbers": [
"6GK5202-2BH00-2BD2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XF202-2P IRT (6GK5202-2BH00-2BD2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE XF204 (6GK5204-0BA00-2AF2)",
"product_id": "CSAFPID-0164",
"product_identification_helper": {
"model_numbers": [
"6GK5204-0BA00-2AF2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XF204 (6GK5204-0BA00-2AF2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE XF204-2 (6GK5204-2BC00-2AF2)",
"product_id": "CSAFPID-0165",
"product_identification_helper": {
"model_numbers": [
"6GK5204-2BC00-2AF2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XF204-2 (6GK5204-2BC00-2AF2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c5.5.2",
"product": {
"name": "SCALANCE XF204-2BA IRT (6GK5204-2AA00-2BD2)",
"product_id": "CSAFPID-0166",
"product_identification_helper": {
"model_numbers": [
"6GK5204-2AA00-2BD2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XF204-2BA IRT (6GK5204-2AA00-2BD2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c5.5.2",
"product": {
"name": "SCALANCE XF204IRT (6GK5204-0BA00-2BF2)",
"product_id": "CSAFPID-0167",
"product_identification_helper": {
"model_numbers": [
"6GK5204-0BA00-2BF2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XF204IRT (6GK5204-0BA00-2BF2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE XF206-1 (6GK5206-1BC00-2AF2)",
"product_id": "CSAFPID-0168",
"product_identification_helper": {
"model_numbers": [
"6GK5206-1BC00-2AF2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XF206-1 (6GK5206-1BC00-2AF2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV5.2.6",
"product": {
"name": "SCALANCE XF208 (6GK5208-0BA00-2AF2)",
"product_id": "CSAFPID-0169",
"product_identification_helper": {
"model_numbers": [
"6GK5208-0BA00-2AF2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XF208 (6GK5208-0BA00-2AF2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-12M (230V, ports on front) (6GK5324-0GG00-3AR2)",
"product_id": "CSAFPID-0170",
"product_identification_helper": {
"model_numbers": [
"6GK5324-0GG00-3AR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-12M (230V, ports on front) (6GK5324-0GG00-3AR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-12M (230V, ports on front) (6GK5324-0GG10-3AR2)",
"product_id": "CSAFPID-0171",
"product_identification_helper": {
"model_numbers": [
"6GK5324-0GG10-3AR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-12M (230V, ports on front) (6GK5324-0GG10-3AR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-12M (230V, ports on rear) (6GK5324-0GG00-3HR2)",
"product_id": "CSAFPID-0172",
"product_identification_helper": {
"model_numbers": [
"6GK5324-0GG00-3HR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-12M (230V, ports on rear) (6GK5324-0GG00-3HR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-12M (230V, ports on rear) (6GK5324-0GG10-3HR2)",
"product_id": "CSAFPID-0173",
"product_identification_helper": {
"model_numbers": [
"6GK5324-0GG10-3HR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-12M (230V, ports on rear) (6GK5324-0GG10-3HR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-12M (24V, ports on front) (6GK5324-0GG00-1AR2)",
"product_id": "CSAFPID-0174",
"product_identification_helper": {
"model_numbers": [
"6GK5324-0GG00-1AR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-12M (24V, ports on front) (6GK5324-0GG00-1AR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-12M (24V, ports on front) (6GK5324-0GG10-1AR2)",
"product_id": "CSAFPID-0175",
"product_identification_helper": {
"model_numbers": [
"6GK5324-0GG10-1AR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-12M (24V, ports on front) (6GK5324-0GG10-1AR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-12M (24V, ports on rear) (6GK5324-0GG00-1HR2)",
"product_id": "CSAFPID-0176",
"product_identification_helper": {
"model_numbers": [
"6GK5324-0GG00-1HR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-12M (24V, ports on rear) (6GK5324-0GG00-1HR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-12M (24V, ports on rear) (6GK5324-0GG10-1HR2)",
"product_id": "CSAFPID-0177",
"product_identification_helper": {
"model_numbers": [
"6GK5324-0GG10-1HR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-12M (24V, ports on rear) (6GK5324-0GG10-1HR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-12M TS (24V) (6GK5324-0GG00-1CR2)",
"product_id": "CSAFPID-0178",
"product_identification_helper": {
"model_numbers": [
"6GK5324-0GG00-1CR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-12M TS (24V) (6GK5324-0GG00-1CR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-12M TS (24V) (6GK5324-0GG10-1CR2)",
"product_id": "CSAFPID-0179",
"product_identification_helper": {
"model_numbers": [
"6GK5324-0GG10-1CR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-12M TS (24V) (6GK5324-0GG10-1CR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front) (6GK5324-4GG00-3ER2)",
"product_id": "CSAFPID-0180",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG00-3ER2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front) (6GK5324-4GG00-3ER2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front) (6GK5324-4GG10-3ER2)",
"product_id": "CSAFPID-0181",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG10-3ER2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on front) (6GK5324-4GG10-3ER2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG00-3JR2)",
"product_id": "CSAFPID-0182",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG00-3JR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG00-3JR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG10-3JR2)",
"product_id": "CSAFPID-0183",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG10-3JR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG10-3JR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (24V, ports on front) (6GK5324-4GG00-1ER2)",
"product_id": "CSAFPID-0184",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG00-1ER2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (24V, ports on front) (6GK5324-4GG00-1ER2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (24V, ports on front) (6GK5324-4GG10-1ER2)",
"product_id": "CSAFPID-0185",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG10-1ER2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (24V, ports on front) (6GK5324-4GG10-1ER2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (24V, ports on rear) (6GK5324-4GG00-1JR2)",
"product_id": "CSAFPID-0186",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG00-1JR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (24V, ports on rear) (6GK5324-4GG00-1JR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (24V, ports on rear) (6GK5324-4GG10-1JR2)",
"product_id": "CSAFPID-0187",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG10-1JR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (24V, ports on rear) (6GK5324-4GG10-1JR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front) (6GK5324-4GG00-4ER2)",
"product_id": "CSAFPID-0188",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG00-4ER2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front) (6GK5324-4GG00-4ER2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front) (6GK5324-4GG10-4ER2)",
"product_id": "CSAFPID-0189",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG10-4ER2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on front) (6GK5324-4GG10-4ER2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG00-4JR2)",
"product_id": "CSAFPID-0190",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG00-4JR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG00-4JR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG10-4JR2)",
"product_id": "CSAFPID-0191",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG10-4JR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (2x 100-240VAC/60-250VDC, ports on rear) (6GK5324-4GG10-4JR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (2x 24V, ports on front) (6GK5324-4GG00-2ER2)",
"product_id": "CSAFPID-0192",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG00-2ER2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (2x 24V, ports on front) (6GK5324-4GG00-2ER2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (2x 24V, ports on front) (6GK5324-4GG10-2ER2)",
"product_id": "CSAFPID-0193",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG10-2ER2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (2x 24V, ports on front) (6GK5324-4GG10-2ER2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (2x 24V, ports on rear) (6GK5324-4GG00-2JR2)",
"product_id": "CSAFPID-0194",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG00-2JR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (2x 24V, ports on rear) (6GK5324-4GG00-2JR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M EEC (2x 24V, ports on rear) (6GK5324-4GG10-2JR2)",
"product_id": "CSAFPID-0195",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4GG10-2JR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M EEC (2x 24V, ports on rear) (6GK5324-4GG10-2JR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M PoE (230V, ports on front) (6GK5324-4QG00-3AR2)",
"product_id": "CSAFPID-0196",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4QG00-3AR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M PoE (230V, ports on front) (6GK5324-4QG00-3AR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M PoE (230V, ports on rear) (6GK5324-4QG00-3HR2)",
"product_id": "CSAFPID-0197",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4QG00-3HR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M PoE (230V, ports on rear) (6GK5324-4QG00-3HR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M PoE (24V, ports on front) (6GK5324-4QG00-1AR2)",
"product_id": "CSAFPID-0198",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4QG00-1AR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M PoE (24V, ports on front) (6GK5324-4QG00-1AR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M PoE (24V, ports on rear) (6GK5324-4QG00-1HR2)",
"product_id": "CSAFPID-0199",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4QG00-1HR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M PoE (24V, ports on rear) (6GK5324-4QG00-1HR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SCALANCE XR324-4M PoE TS (24V, ports on front) (6GK5324-4QG00-1CR2)",
"product_id": "CSAFPID-0200",
"product_identification_helper": {
"model_numbers": [
"6GK5324-4QG00-1CR2"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE XR324-4M PoE TS (24V, ports on front) (6GK5324-4QG00-1CR2)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV3.3.46",
"product": {
"name": "SIMATIC CP 1242-7 V2 (6GK7242-7KX31-0XE0)",
"product_id": "CSAFPID-0201",
"product_identification_helper": {
"model_numbers": [
"6GK7242-7KX31-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 1242-7 V2 (6GK7242-7KX31-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV3.3.46",
"product": {
"name": "SIMATIC CP 1243-1 (6GK7243-1BX30-0XE0)",
"product_id": "CSAFPID-0202",
"product_identification_helper": {
"model_numbers": [
"6GK7243-1BX30-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 1243-1 (6GK7243-1BX30-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV3.3.46",
"product": {
"name": "SIMATIC CP 1243-7 LTE EU (6GK7243-7KX30-0XE0)",
"product_id": "CSAFPID-0203",
"product_identification_helper": {
"model_numbers": [
"6GK7243-7KX30-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 1243-7 LTE EU (6GK7243-7KX30-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV3.3.46",
"product": {
"name": "SIMATIC CP 1243-7 LTE US (6GK7243-7SX30-0XE0)",
"product_id": "CSAFPID-0204",
"product_identification_helper": {
"model_numbers": [
"6GK7243-7SX30-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 1243-7 LTE US (6GK7243-7SX30-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV3.3.46",
"product": {
"name": "SIMATIC CP 1243-8 IRC (6GK7243-8RX30-0XE0)",
"product_id": "CSAFPID-0205",
"product_identification_helper": {
"model_numbers": [
"6GK7243-8RX30-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 1243-8 IRC (6GK7243-8RX30-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.2.28",
"product": {
"name": "SIMATIC CP 1542SP-1 (6GK7542-6UX00-0XE0)",
"product_id": "CSAFPID-0206",
"product_identification_helper": {
"model_numbers": [
"6GK7542-6UX00-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 1542SP-1 (6GK7542-6UX00-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV3.0.22",
"product": {
"name": "SIMATIC CP 1543-1 (6GK7543-1AX00-0XE0)",
"product_id": "CSAFPID-0207",
"product_identification_helper": {
"model_numbers": [
"6GK7543-1AX00-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 1543-1 (6GK7543-1AX00-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.2.28",
"product": {
"name": "SIMATIC CP 1543SP-1 (6GK7543-6WX00-0XE0)",
"product_id": "CSAFPID-0208",
"product_identification_helper": {
"model_numbers": [
"6GK7543-6WX00-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 1543SP-1 (6GK7543-6WX00-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV1.1",
"product": {
"name": "SIMATIC CP 1545-1 (6GK7545-1GX00-0XE0)",
"product_id": "CSAFPID-0209",
"product_identification_helper": {
"model_numbers": [
"6GK7545-1GX00-0XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC CP 1545-1 (6GK7545-1GX00-0XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c3.1.1",
"product": {
"name": "SIMATIC PCS neo (Administration Console)",
"product_id": "CSAFPID-0210"
}
}
],
"category": "product_name",
"name": "SIMATIC PCS neo (Administration Console)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV2020_SP1",
"product": {
"name": "SIMATIC Process Historian OPC UA Server",
"product_id": "CSAFPID-0211"
}
}
],
"category": "product_name",
"name": "SIMATIC Process Historian OPC UA Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0)",
"product_id": "CSAFPID-0212",
"product_identification_helper": {
"model_numbers": [
"6ES7211-1BE40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1211C AC/DC/Rly (6ES7211-1BE40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1211C DC/DC/DC (6ES7211-1AE40-0XB0)",
"product_id": "CSAFPID-0213",
"product_identification_helper": {
"model_numbers": [
"6ES7211-1AE40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1211C DC/DC/DC (6ES7211-1AE40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1211C DC/DC/Rly (6ES7211-1HE40-0XB0)",
"product_id": "CSAFPID-0214",
"product_identification_helper": {
"model_numbers": [
"6ES7211-1HE40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1211C DC/DC/Rly (6ES7211-1HE40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1212C AC/DC/Rly (6ES7212-1BE40-0XB0)",
"product_id": "CSAFPID-0215",
"product_identification_helper": {
"model_numbers": [
"6ES7212-1BE40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1212C AC/DC/Rly (6ES7212-1BE40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1212C DC/DC/DC (6ES7212-1AE40-0XB0)",
"product_id": "CSAFPID-0216",
"product_identification_helper": {
"model_numbers": [
"6ES7212-1AE40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1212C DC/DC/DC (6ES7212-1AE40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1212C DC/DC/Rly (6ES7212-1HE40-0XB0)",
"product_id": "CSAFPID-0217",
"product_identification_helper": {
"model_numbers": [
"6ES7212-1HE40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1212C DC/DC/Rly (6ES7212-1HE40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1212FC DC/DC/DC (6ES7212-1AF40-0XB0)",
"product_id": "CSAFPID-0218",
"product_identification_helper": {
"model_numbers": [
"6ES7212-1AF40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1212FC DC/DC/DC (6ES7212-1AF40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1212FC DC/DC/Rly (6ES7212-1HF40-0XB0)",
"product_id": "CSAFPID-0219",
"product_identification_helper": {
"model_numbers": [
"6ES7212-1HF40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1212FC DC/DC/Rly (6ES7212-1HF40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1214C AC/DC/Rly (6ES7214-1BG40-0XB0)",
"product_id": "CSAFPID-0220",
"product_identification_helper": {
"model_numbers": [
"6ES7214-1BG40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1214C AC/DC/Rly (6ES7214-1BG40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1214C DC/DC/DC (6ES7214-1AG40-0XB0)",
"product_id": "CSAFPID-0221",
"product_identification_helper": {
"model_numbers": [
"6ES7214-1AG40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1214C DC/DC/DC (6ES7214-1AG40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1214C DC/DC/Rly (6ES7214-1HG40-0XB0)",
"product_id": "CSAFPID-0222",
"product_identification_helper": {
"model_numbers": [
"6ES7214-1HG40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1214C DC/DC/Rly (6ES7214-1HG40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1214FC DC/DC/DC (6ES7214-1AF40-0XB0)",
"product_id": "CSAFPID-0223",
"product_identification_helper": {
"model_numbers": [
"6ES7214-1AF40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1214FC DC/DC/DC (6ES7214-1AF40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1214FC DC/DC/Rly (6ES7214-1HF40-0XB0)",
"product_id": "CSAFPID-0224",
"product_identification_helper": {
"model_numbers": [
"6ES7214-1HF40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1214FC DC/DC/Rly (6ES7214-1HF40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1215C AC/DC/Rly (6ES7215-1BG40-0XB0)",
"product_id": "CSAFPID-0225",
"product_identification_helper": {
"model_numbers": [
"6ES7215-1BG40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1215C AC/DC/Rly (6ES7215-1BG40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1215C DC/DC/DC (6ES7215-1AG40-0XB0)",
"product_id": "CSAFPID-0226",
"product_identification_helper": {
"model_numbers": [
"6ES7215-1AG40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1215C DC/DC/DC (6ES7215-1AG40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1215C DC/DC/Rly (6ES7215-1HG40-0XB0)",
"product_id": "CSAFPID-0227",
"product_identification_helper": {
"model_numbers": [
"6ES7215-1HG40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1215C DC/DC/Rly (6ES7215-1HG40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1215FC DC/DC/DC (6ES7215-1AF40-0XB0)",
"product_id": "CSAFPID-0228",
"product_identification_helper": {
"model_numbers": [
"6ES7215-1AF40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1215FC DC/DC/DC (6ES7215-1AF40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1215FC DC/DC/Rly (6ES7215-1HF40-0XB0)",
"product_id": "CSAFPID-0229",
"product_identification_helper": {
"model_numbers": [
"6ES7215-1HF40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1215FC DC/DC/Rly (6ES7215-1HF40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIMATIC S7-1200 CPU 1217C DC/DC/DC (6ES7217-1AG40-0XB0)",
"product_id": "CSAFPID-0230",
"product_identification_helper": {
"model_numbers": [
"6ES7217-1AG40-0XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIMATIC S7-1200 CPU 1217C DC/DC/DC (6ES7217-1AG40-0XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV1.0_SP3",
"product": {
"name": "SINEC NMS",
"product_id": "CSAFPID-0231"
}
}
],
"category": "product_name",
"name": "SINEC NMS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c3.1",
"product": {
"name": "SINEMA Remote Connect Server",
"product_id": "CSAFPID-0232"
}
}
],
"category": "product_name",
"name": "SINEMA Remote Connect Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:all/*",
"product": {
"name": "SINEMA Server V14",
"product_id": "CSAFPID-0233"
}
}
],
"category": "product_name",
"name": "SINEMA Server V14"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV4.95_SP1",
"product": {
"name": "SINUMERIK Operate",
"product_id": "CSAFPID-0234"
}
}
],
"category": "product_name",
"name": "SINUMERIK Operate"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.2.28",
"product": {
"name": "SIPLUS ET 200SP CP 1543SP-1 ISEC (6AG1543-6WX00-7XE0)",
"product_id": "CSAFPID-0235",
"product_identification_helper": {
"model_numbers": [
"6AG1543-6WX00-7XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200SP CP 1543SP-1 ISEC (6AG1543-6WX00-7XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c2.2.28",
"product": {
"name": "SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL (6AG2543-6WX00-4XE0)",
"product_id": "CSAFPID-0236",
"product_identification_helper": {
"model_numbers": [
"6AG2543-6WX00-4XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS ET 200SP CP 1543SP-1 ISEC TX RAIL (6AG2543-6WX00-4XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV3.3.46",
"product": {
"name": "SIPLUS NET CP 1242-7 V2 (6AG1242-7KX31-7XE0)",
"product_id": "CSAFPID-0237",
"product_identification_helper": {
"model_numbers": [
"6AG1242-7KX31-7XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS NET CP 1242-7 V2 (6AG1242-7KX31-7XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV3.0.22",
"product": {
"name": "SIPLUS NET CP 1543-1 (6AG1543-1AX00-2XE0)",
"product_id": "CSAFPID-0238",
"product_identification_helper": {
"model_numbers": [
"6AG1543-1AX00-2XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS NET CP 1543-1 (6AG1543-1AX00-2XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.1.4",
"product": {
"name": "SIPLUS NET SCALANCE X308-2 (6AG1308-2FL10-4AA3)",
"product_id": "CSAFPID-0239",
"product_identification_helper": {
"model_numbers": [
"6AG1308-2FL10-4AA3"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS NET SCALANCE X308-2 (6AG1308-2FL10-4AA3)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV3.3.46",
"product": {
"name": "SIPLUS S7-1200 CP 1243-1 (6AG1243-1BX30-2AX0)",
"product_id": "CSAFPID-0240",
"product_identification_helper": {
"model_numbers": [
"6AG1243-1BX30-2AX0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CP 1243-1 (6AG1243-1BX30-2AX0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cV3.3.46",
"product": {
"name": "SIPLUS S7-1200 CP 1243-1 RAIL (6AG2243-1BX30-1XE0)",
"product_id": "CSAFPID-0241",
"product_identification_helper": {
"model_numbers": [
"6AG2243-1BX30-1XE0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CP 1243-1 RAIL (6AG2243-1BX30-1XE0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1212 AC/DC/RLY (6AG1212-1BE40-4XB0)",
"product_id": "CSAFPID-0242",
"product_identification_helper": {
"model_numbers": [
"6AG1212-1BE40-4XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1212 AC/DC/RLY (6AG1212-1BE40-4XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-2XB0)",
"product_id": "CSAFPID-0243",
"product_identification_helper": {
"model_numbers": [
"6AG1212-1HE40-2XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-2XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-4XB0)",
"product_id": "CSAFPID-0244",
"product_identification_helper": {
"model_numbers": [
"6AG1212-1HE40-4XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1212 DC/DC/RLY (6AG1212-1HE40-4XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1212C AC/DC/RLY (6AG1212-1BE40-2XB0)",
"product_id": "CSAFPID-0245",
"product_identification_helper": {
"model_numbers": [
"6AG1212-1BE40-2XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1212C AC/DC/RLY (6AG1212-1BE40-2XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-2XB0)",
"product_id": "CSAFPID-0246",
"product_identification_helper": {
"model_numbers": [
"6AG1212-1AE40-2XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-2XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-4XB0)",
"product_id": "CSAFPID-0247",
"product_identification_helper": {
"model_numbers": [
"6AG1212-1AE40-4XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1212C DC/DC/DC (6AG1212-1AE40-4XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL (6AG2212-1AE40-1XB0)",
"product_id": "CSAFPID-0248",
"product_identification_helper": {
"model_numbers": [
"6AG2212-1AE40-1XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1212C DC/DC/DC RAIL (6AG2212-1AE40-1XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-5XB0)",
"product_id": "CSAFPID-0249",
"product_identification_helper": {
"model_numbers": [
"6AG1214-1BG40-5XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1214 AC/DC/RLY (6AG1214-1BG40-5XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-2XB0)",
"product_id": "CSAFPID-0250",
"product_identification_helper": {
"model_numbers": [
"6AG1214-1HG40-2XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1214 DC/DC/RLY (6AG1214-1HG40-2XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1214C AC/DC/RLY (6AG1214-1BG40-2XB0)",
"product_id": "CSAFPID-0251",
"product_identification_helper": {
"model_numbers": [
"6AG1214-1BG40-2XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1214C AC/DC/RLY (6AG1214-1BG40-2XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1214C AC/DC/RLY (6AG1214-1BG40-4XB0)",
"product_id": "CSAFPID-0252",
"product_identification_helper": {
"model_numbers": [
"6AG1214-1BG40-4XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1214C AC/DC/RLY (6AG1214-1BG40-4XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1214C DC/DC/DC (6AG1214-1AG40-2XB0)",
"product_id": "CSAFPID-0253",
"product_identification_helper": {
"model_numbers": [
"6AG1214-1AG40-2XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1214C DC/DC/DC (6AG1214-1AG40-2XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1214C DC/DC/DC (6AG1214-1AG40-4XB0)",
"product_id": "CSAFPID-0254",
"product_identification_helper": {
"model_numbers": [
"6AG1214-1AG40-4XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1214C DC/DC/DC (6AG1214-1AG40-4XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1214C DC/DC/DC (6AG1214-1AG40-5XB0)",
"product_id": "CSAFPID-0255",
"product_identification_helper": {
"model_numbers": [
"6AG1214-1AG40-5XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1214C DC/DC/DC (6AG1214-1AG40-5XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL (6AG2214-1AG40-1XB0)",
"product_id": "CSAFPID-0256",
"product_identification_helper": {
"model_numbers": [
"6AG2214-1AG40-1XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1214C DC/DC/DC RAIL (6AG2214-1AG40-1XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1214C DC/DC/RLY (6AG1214-1HG40-4XB0)",
"product_id": "CSAFPID-0257",
"product_identification_helper": {
"model_numbers": [
"6AG1214-1HG40-4XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1214C DC/DC/RLY (6AG1214-1HG40-4XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1214C DC/DC/RLY (6AG1214-1HG40-5XB0)",
"product_id": "CSAFPID-0258",
"product_identification_helper": {
"model_numbers": [
"6AG1214-1HG40-5XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1214C DC/DC/RLY (6AG1214-1HG40-5XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1214FC DC/DC/DC (6AG1214-1AF40-5XB0)",
"product_id": "CSAFPID-0259",
"product_identification_helper": {
"model_numbers": [
"6AG1214-1AF40-5XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1214FC DC/DC/DC (6AG1214-1AF40-5XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1214FC DC/DC/RLY (6AG1214-1HF40-5XB0)",
"product_id": "CSAFPID-0260",
"product_identification_helper": {
"model_numbers": [
"6AG1214-1HF40-5XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1214FC DC/DC/RLY (6AG1214-1HF40-5XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-4XB0)",
"product_id": "CSAFPID-0261",
"product_identification_helper": {
"model_numbers": [
"6AG1215-1BG40-4XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-4XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-5XB0)",
"product_id": "CSAFPID-0262",
"product_identification_helper": {
"model_numbers": [
"6AG1215-1BG40-5XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1215 AC/DC/RLY (6AG1215-1BG40-5XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-2XB0)",
"product_id": "CSAFPID-0263",
"product_identification_helper": {
"model_numbers": [
"6AG1215-1AG40-2XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-2XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-4XB0)",
"product_id": "CSAFPID-0264",
"product_identification_helper": {
"model_numbers": [
"6AG1215-1AG40-4XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1215 DC/DC/DC (6AG1215-1AG40-4XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-2XB0)",
"product_id": "CSAFPID-0265",
"product_identification_helper": {
"model_numbers": [
"6AG1215-1HG40-2XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-2XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-4XB0)",
"product_id": "CSAFPID-0266",
"product_identification_helper": {
"model_numbers": [
"6AG1215-1HG40-4XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-4XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-5XB0)",
"product_id": "CSAFPID-0267",
"product_identification_helper": {
"model_numbers": [
"6AG1215-1HG40-5XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1215 DC/DC/RLY (6AG1215-1HG40-5XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1215C AC/DC/RLY (6AG1215-1BG40-2XB0)",
"product_id": "CSAFPID-0268",
"product_identification_helper": {
"model_numbers": [
"6AG1215-1BG40-2XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1215C AC/DC/RLY (6AG1215-1BG40-2XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1215C DC/DC/DC (6AG1215-1AG40-5XB0)",
"product_id": "CSAFPID-0269",
"product_identification_helper": {
"model_numbers": [
"6AG1215-1AG40-5XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1215C DC/DC/DC (6AG1215-1AG40-5XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c4.5.2",
"product": {
"name": "SIPLUS S7-1200 CPU 1215FC DC/DC/DC (6AG1215-1AF40-5XB0)",
"product_id": "CSAFPID-0270",
"product_identification_helper": {
"model_numbers": [
"6AG1215-1AF40-5XB0"
]
}
}
}
],
"category": "product_name",
"name": "SIPLUS S7-1200 CPU 1215FC DC/DC/DC (6AG1215-1AF40-5XB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c1.0.7",
"product": {
"name": "TIA Administrator",
"product_id": "CSAFPID-0271"
}
}
],
"category": "product_name",
"name": "TIA Administrator"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-3712",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \"d2i\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \"data\" and \"length\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \"data\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049",
"CSAFPID-0050",
"CSAFPID-0051",
"CSAFPID-0052",
"CSAFPID-0053",
"CSAFPID-0054",
"CSAFPID-0055",
"CSAFPID-0056",
"CSAFPID-0057",
"CSAFPID-0058",
"CSAFPID-0059",
"CSAFPID-0060",
"CSAFPID-0061",
"CSAFPID-0062",
"CSAFPID-0063",
"CSAFPID-0064",
"CSAFPID-0065",
"CSAFPID-0066",
"CSAFPID-0067",
"CSAFPID-0068",
"CSAFPID-0069",
"CSAFPID-0070",
"CSAFPID-0071",
"CSAFPID-0072",
"CSAFPID-0073",
"CSAFPID-0074",
"CSAFPID-0075",
"CSAFPID-0076",
"CSAFPID-0077",
"CSAFPID-0078",
"CSAFPID-0079",
"CSAFPID-0080",
"CSAFPID-0081",
"CSAFPID-0082",
"CSAFPID-0083",
"CSAFPID-0084",
"CSAFPID-0085",
"CSAFPID-0086",
"CSAFPID-0087",
"CSAFPID-0088",
"CSAFPID-0089",
"CSAFPID-0090",
"CSAFPID-0091",
"CSAFPID-0092",
"CSAFPID-0093",
"CSAFPID-0094",
"CSAFPID-0095",
"CSAFPID-0096",
"CSAFPID-0097",
"CSAFPID-0098",
"CSAFPID-0099",
"CSAFPID-0100",
"CSAFPID-0101",
"CSAFPID-0102",
"CSAFPID-0103",
"CSAFPID-0104",
"CSAFPID-0105",
"CSAFPID-0106",
"CSAFPID-0107",
"CSAFPID-0108",
"CSAFPID-0109",
"CSAFPID-0110",
"CSAFPID-0111",
"CSAFPID-0112",
"CSAFPID-0113",
"CSAFPID-0114",
"CSAFPID-0115",
"CSAFPID-0116",
"CSAFPID-0117",
"CSAFPID-0118",
"CSAFPID-0119",
"CSAFPID-0120",
"CSAFPID-0121",
"CSAFPID-0122",
"CSAFPID-0123",
"CSAFPID-0124",
"CSAFPID-0125",
"CSAFPID-0126",
"CSAFPID-0127",
"CSAFPID-0128",
"CSAFPID-0129",
"CSAFPID-0130",
"CSAFPID-0131",
"CSAFPID-0132",
"CSAFPID-0133",
"CSAFPID-0134",
"CSAFPID-0135",
"CSAFPID-0136",
"CSAFPID-0137",
"CSAFPID-0138",
"CSAFPID-0139",
"CSAFPID-0140",
"CSAFPID-0141",
"CSAFPID-0142",
"CSAFPID-0143",
"CSAFPID-0144",
"CSAFPID-0145",
"CSAFPID-0146",
"CSAFPID-0147",
"CSAFPID-0148",
"CSAFPID-0149",
"CSAFPID-0150",
"CSAFPID-0151",
"CSAFPID-0152",
"CSAFPID-0153",
"CSAFPID-0154",
"CSAFPID-0155",
"CSAFPID-0156",
"CSAFPID-0157",
"CSAFPID-0158",
"CSAFPID-0159",
"CSAFPID-0160",
"CSAFPID-0161",
"CSAFPID-0162",
"CSAFPID-0163",
"CSAFPID-0164",
"CSAFPID-0165",
"CSAFPID-0166",
"CSAFPID-0167",
"CSAFPID-0168",
"CSAFPID-0169",
"CSAFPID-0170",
"CSAFPID-0171",
"CSAFPID-0172",
"CSAFPID-0173",
"CSAFPID-0174",
"CSAFPID-0175",
"CSAFPID-0176",
"CSAFPID-0177",
"CSAFPID-0178",
"CSAFPID-0179",
"CSAFPID-0180",
"CSAFPID-0181",
"CSAFPID-0182",
"CSAFPID-0183",
"CSAFPID-0184",
"CSAFPID-0185",
"CSAFPID-0186",
"CSAFPID-0187",
"CSAFPID-0188",
"CSAFPID-0189",
"CSAFPID-0190",
"CSAFPID-0191",
"CSAFPID-0192",
"CSAFPID-0193",
"CSAFPID-0194",
"CSAFPID-0195",
"CSAFPID-0196",
"CSAFPID-0197",
"CSAFPID-0198",
"CSAFPID-0199",
"CSAFPID-0200",
"CSAFPID-0201",
"CSAFPID-0202",
"CSAFPID-0203",
"CSAFPID-0204",
"CSAFPID-0205",
"CSAFPID-0206",
"CSAFPID-0207",
"CSAFPID-0208",
"CSAFPID-0209",
"CSAFPID-0210",
"CSAFPID-0211",
"CSAFPID-0212",
"CSAFPID-0213",
"CSAFPID-0214",
"CSAFPID-0215",
"CSAFPID-0216",
"CSAFPID-0217",
"CSAFPID-0218",
"CSAFPID-0219",
"CSAFPID-0220",
"CSAFPID-0221",
"CSAFPID-0222",
"CSAFPID-0223",
"CSAFPID-0224",
"CSAFPID-0225",
"CSAFPID-0226",
"CSAFPID-0227",
"CSAFPID-0228",
"CSAFPID-0229",
"CSAFPID-0230",
"CSAFPID-0231",
"CSAFPID-0232",
"CSAFPID-0233",
"CSAFPID-0234",
"CSAFPID-0235",
"CSAFPID-0236",
"CSAFPID-0237",
"CSAFPID-0238",
"CSAFPID-0239",
"CSAFPID-0240",
"CSAFPID-0241",
"CSAFPID-0242",
"CSAFPID-0243",
"CSAFPID-0244",
"CSAFPID-0245",
"CSAFPID-0246",
"CSAFPID-0247",
"CSAFPID-0248",
"CSAFPID-0249",
"CSAFPID-0250",
"CSAFPID-0251",
"CSAFPID-0252",
"CSAFPID-0253",
"CSAFPID-0254",
"CSAFPID-0255",
"CSAFPID-0256",
"CSAFPID-0257",
"CSAFPID-0258",
"CSAFPID-0259",
"CSAFPID-0260",
"CSAFPID-0261",
"CSAFPID-0262",
"CSAFPID-0263",
"CSAFPID-0264",
"CSAFPID-0265",
"CSAFPID-0266",
"CSAFPID-0267",
"CSAFPID-0268",
"CSAFPID-0269",
"CSAFPID-0270",
"CSAFPID-0271"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3712"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/125.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"
}
],
"remediations": [
{
"category": "no_fix_planned",
"details": "Currently no fix is planned",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0233"
]
},
{
"category": "vendor_fix",
"details": "Update to V1.0 SP3 or later version",
"product_ids": [
"CSAFPID-0231"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109813788/"
},
{
"category": "vendor_fix",
"details": "Update to V1.0.7 or later version",
"product_ids": [
"CSAFPID-0271"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109825038/"
},
{
"category": "vendor_fix",
"details": "Update to V2.15.0 or later version",
"product_ids": [
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109805782/"
},
{
"category": "vendor_fix",
"details": "Update to V2.2.28 or later version",
"product_ids": [
"CSAFPID-0206",
"CSAFPID-0208",
"CSAFPID-0235",
"CSAFPID-0236"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109817067/"
},
{
"category": "vendor_fix",
"details": "Update to V3.0.0 or later version",
"product_ids": [
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109808629/"
},
{
"category": "vendor_fix",
"details": "Update to V3.1 or later version",
"product_ids": [
"CSAFPID-0232"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109811169/"
},
{
"category": "vendor_fix",
"details": "Update to V3.1.1 or later version",
"product_ids": [
"CSAFPID-0210"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109807752/"
},
{
"category": "vendor_fix",
"details": "Update to V4.1.4 or later version",
"product_ids": [
"CSAFPID-0119",
"CSAFPID-0120",
"CSAFPID-0121",
"CSAFPID-0122",
"CSAFPID-0123",
"CSAFPID-0124",
"CSAFPID-0125",
"CSAFPID-0126",
"CSAFPID-0127",
"CSAFPID-0128",
"CSAFPID-0129",
"CSAFPID-0130",
"CSAFPID-0131",
"CSAFPID-0132",
"CSAFPID-0133",
"CSAFPID-0134",
"CSAFPID-0135",
"CSAFPID-0136",
"CSAFPID-0137",
"CSAFPID-0138",
"CSAFPID-0139",
"CSAFPID-0140",
"CSAFPID-0141",
"CSAFPID-0142",
"CSAFPID-0143",
"CSAFPID-0144",
"CSAFPID-0145",
"CSAFPID-0146",
"CSAFPID-0147",
"CSAFPID-0148",
"CSAFPID-0149",
"CSAFPID-0150",
"CSAFPID-0151",
"CSAFPID-0152",
"CSAFPID-0153",
"CSAFPID-0154",
"CSAFPID-0155",
"CSAFPID-0156",
"CSAFPID-0157",
"CSAFPID-0158",
"CSAFPID-0159",
"CSAFPID-0160",
"CSAFPID-0161",
"CSAFPID-0170",
"CSAFPID-0171",
"CSAFPID-0172",
"CSAFPID-0173",
"CSAFPID-0174",
"CSAFPID-0175",
"CSAFPID-0176",
"CSAFPID-0177",
"CSAFPID-0178",
"CSAFPID-0179",
"CSAFPID-0180",
"CSAFPID-0181",
"CSAFPID-0182",
"CSAFPID-0183",
"CSAFPID-0184",
"CSAFPID-0185",
"CSAFPID-0186",
"CSAFPID-0187",
"CSAFPID-0188",
"CSAFPID-0189",
"CSAFPID-0190",
"CSAFPID-0191",
"CSAFPID-0192",
"CSAFPID-0193",
"CSAFPID-0194",
"CSAFPID-0195",
"CSAFPID-0196",
"CSAFPID-0197",
"CSAFPID-0198",
"CSAFPID-0199",
"CSAFPID-0200",
"CSAFPID-0239"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109808359/"
},
{
"category": "vendor_fix",
"details": "Update to V4.5.2 or later version",
"product_ids": [
"CSAFPID-0212",
"CSAFPID-0213",
"CSAFPID-0214",
"CSAFPID-0215",
"CSAFPID-0216",
"CSAFPID-0217",
"CSAFPID-0218",
"CSAFPID-0219",
"CSAFPID-0220",
"CSAFPID-0221",
"CSAFPID-0222",
"CSAFPID-0223",
"CSAFPID-0224",
"CSAFPID-0225",
"CSAFPID-0226",
"CSAFPID-0227",
"CSAFPID-0228",
"CSAFPID-0229",
"CSAFPID-0230",
"CSAFPID-0242",
"CSAFPID-0243",
"CSAFPID-0244",
"CSAFPID-0245",
"CSAFPID-0246",
"CSAFPID-0247",
"CSAFPID-0248",
"CSAFPID-0249",
"CSAFPID-0250",
"CSAFPID-0251",
"CSAFPID-0252",
"CSAFPID-0253",
"CSAFPID-0254",
"CSAFPID-0255",
"CSAFPID-0256",
"CSAFPID-0257",
"CSAFPID-0258",
"CSAFPID-0259",
"CSAFPID-0260",
"CSAFPID-0261",
"CSAFPID-0262",
"CSAFPID-0263",
"CSAFPID-0264",
"CSAFPID-0265",
"CSAFPID-0266",
"CSAFPID-0267",
"CSAFPID-0268",
"CSAFPID-0269",
"CSAFPID-0270"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/107539610/"
},
{
"category": "vendor_fix",
"details": "Update to V5.5.2 or later version",
"product_ids": [
"CSAFPID-0098",
"CSAFPID-0099",
"CSAFPID-0100",
"CSAFPID-0101",
"CSAFPID-0102",
"CSAFPID-0103",
"CSAFPID-0109",
"CSAFPID-0110",
"CSAFPID-0162",
"CSAFPID-0163",
"CSAFPID-0166",
"CSAFPID-0167"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109817790/"
},
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049",
"CSAFPID-0050",
"CSAFPID-0051",
"CSAFPID-0052",
"CSAFPID-0053",
"CSAFPID-0054",
"CSAFPID-0055",
"CSAFPID-0056",
"CSAFPID-0057",
"CSAFPID-0058",
"CSAFPID-0059",
"CSAFPID-0060",
"CSAFPID-0061",
"CSAFPID-0062",
"CSAFPID-0063",
"CSAFPID-0064",
"CSAFPID-0065",
"CSAFPID-0066",
"CSAFPID-0067",
"CSAFPID-0068",
"CSAFPID-0069",
"CSAFPID-0070",
"CSAFPID-0071",
"CSAFPID-0072",
"CSAFPID-0073",
"CSAFPID-0074",
"CSAFPID-0075",
"CSAFPID-0076",
"CSAFPID-0077",
"CSAFPID-0078",
"CSAFPID-0079",
"CSAFPID-0080",
"CSAFPID-0081",
"CSAFPID-0082",
"CSAFPID-0083",
"CSAFPID-0084",
"CSAFPID-0085",
"CSAFPID-0086",
"CSAFPID-0087",
"CSAFPID-0088",
"CSAFPID-0089",
"CSAFPID-0090",
"CSAFPID-0091"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
},
{
"category": "vendor_fix",
"details": "Update to V7.1 or later version",
"product_ids": [
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109807276/"
},
{
"category": "vendor_fix",
"details": "Use the Edge Management System to update to V1.1.1 or later version",
"product_ids": [
"CSAFPID-0002"
]
},
{
"category": "vendor_fix",
"details": "Update to V7.1 or later version",
"product_ids": [
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0031"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109807276/"
},
{
"category": "vendor_fix",
"details": "Update to V2.3 or later version",
"product_ids": [
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109805907/"
},
{
"category": "vendor_fix",
"details": "Update to V1.2 or later version",
"product_ids": [
"CSAFPID-0092",
"CSAFPID-0093",
"CSAFPID-0094",
"CSAFPID-0095",
"CSAFPID-0096",
"CSAFPID-0097"
]
},
{
"category": "vendor_fix",
"details": "Update to V5.2.6 or later version",
"product_ids": [
"CSAFPID-0104",
"CSAFPID-0105",
"CSAFPID-0106",
"CSAFPID-0107",
"CSAFPID-0108",
"CSAFPID-0111",
"CSAFPID-0112",
"CSAFPID-0113",
"CSAFPID-0114",
"CSAFPID-0115",
"CSAFPID-0116",
"CSAFPID-0117",
"CSAFPID-0118",
"CSAFPID-0164",
"CSAFPID-0165",
"CSAFPID-0168",
"CSAFPID-0169"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109811753/"
},
{
"category": "vendor_fix",
"details": "Update to V3.3.46 or later version",
"product_ids": [
"CSAFPID-0201",
"CSAFPID-0202",
"CSAFPID-0203",
"CSAFPID-0204",
"CSAFPID-0205",
"CSAFPID-0237",
"CSAFPID-0240",
"CSAFPID-0241"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109812218/"
},
{
"category": "vendor_fix",
"details": "Update to V3.0.22 or later version",
"product_ids": [
"CSAFPID-0207",
"CSAFPID-0238"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109808678/"
},
{
"category": "vendor_fix",
"details": "Update to V1.1 or later version",
"product_ids": [
"CSAFPID-0209"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109811116/"
},
{
"category": "vendor_fix",
"details": "Update to V2020 SP1 or later version",
"product_ids": [
"CSAFPID-0211"
]
},
{
"category": "vendor_fix",
"details": "For PCS neo customers: Update to PCS neo V3.1 SP1 (https://support.industry.siemens.com/cs/ww/de/view/109807752/)",
"product_ids": [
"CSAFPID-0211"
]
},
{
"category": "vendor_fix",
"details": "For PCS 7 customers: Update to PCS 7 V9.1 SP1 (https://support.industry.siemens.com/cs/ww/en/view/109805073/)",
"product_ids": [
"CSAFPID-0211"
]
},
{
"category": "vendor_fix",
"details": "For WinCC customers: contact local support",
"product_ids": [
"CSAFPID-0211"
]
},
{
"category": "vendor_fix",
"details": "Upgrade to V4.95 SP1 or later version\nSINUMERIK software can be obtained from your local Siemens account manager",
"product_ids": [
"CSAFPID-0234"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049",
"CSAFPID-0050",
"CSAFPID-0051",
"CSAFPID-0052",
"CSAFPID-0053",
"CSAFPID-0054",
"CSAFPID-0055",
"CSAFPID-0056",
"CSAFPID-0057",
"CSAFPID-0058",
"CSAFPID-0059",
"CSAFPID-0060",
"CSAFPID-0061",
"CSAFPID-0062",
"CSAFPID-0063",
"CSAFPID-0064",
"CSAFPID-0065",
"CSAFPID-0066",
"CSAFPID-0067",
"CSAFPID-0068",
"CSAFPID-0069",
"CSAFPID-0070",
"CSAFPID-0071",
"CSAFPID-0072",
"CSAFPID-0073",
"CSAFPID-0074",
"CSAFPID-0075",
"CSAFPID-0076",
"CSAFPID-0077",
"CSAFPID-0078",
"CSAFPID-0079",
"CSAFPID-0080",
"CSAFPID-0081",
"CSAFPID-0082",
"CSAFPID-0083",
"CSAFPID-0084",
"CSAFPID-0085",
"CSAFPID-0086",
"CSAFPID-0087",
"CSAFPID-0088",
"CSAFPID-0089",
"CSAFPID-0090",
"CSAFPID-0091",
"CSAFPID-0092",
"CSAFPID-0093",
"CSAFPID-0094",
"CSAFPID-0095",
"CSAFPID-0096",
"CSAFPID-0097",
"CSAFPID-0098",
"CSAFPID-0099",
"CSAFPID-0100",
"CSAFPID-0101",
"CSAFPID-0102",
"CSAFPID-0103",
"CSAFPID-0104",
"CSAFPID-0105",
"CSAFPID-0106",
"CSAFPID-0107",
"CSAFPID-0108",
"CSAFPID-0109",
"CSAFPID-0110",
"CSAFPID-0111",
"CSAFPID-0112",
"CSAFPID-0113",
"CSAFPID-0114",
"CSAFPID-0115",
"CSAFPID-0116",
"CSAFPID-0117",
"CSAFPID-0118",
"CSAFPID-0119",
"CSAFPID-0120",
"CSAFPID-0121",
"CSAFPID-0122",
"CSAFPID-0123",
"CSAFPID-0124",
"CSAFPID-0125",
"CSAFPID-0126",
"CSAFPID-0127",
"CSAFPID-0128",
"CSAFPID-0129",
"CSAFPID-0130",
"CSAFPID-0131",
"CSAFPID-0132",
"CSAFPID-0133",
"CSAFPID-0134",
"CSAFPID-0135",
"CSAFPID-0136",
"CSAFPID-0137",
"CSAFPID-0138",
"CSAFPID-0139",
"CSAFPID-0140",
"CSAFPID-0141",
"CSAFPID-0142",
"CSAFPID-0143",
"CSAFPID-0144",
"CSAFPID-0145",
"CSAFPID-0146",
"CSAFPID-0147",
"CSAFPID-0148",
"CSAFPID-0149",
"CSAFPID-0150",
"CSAFPID-0151",
"CSAFPID-0152",
"CSAFPID-0153",
"CSAFPID-0154",
"CSAFPID-0155",
"CSAFPID-0156",
"CSAFPID-0157",
"CSAFPID-0158",
"CSAFPID-0159",
"CSAFPID-0160",
"CSAFPID-0161",
"CSAFPID-0162",
"CSAFPID-0163",
"CSAFPID-0164",
"CSAFPID-0165",
"CSAFPID-0166",
"CSAFPID-0167",
"CSAFPID-0168",
"CSAFPID-0169",
"CSAFPID-0170",
"CSAFPID-0171",
"CSAFPID-0172",
"CSAFPID-0173",
"CSAFPID-0174",
"CSAFPID-0175",
"CSAFPID-0176",
"CSAFPID-0177",
"CSAFPID-0178",
"CSAFPID-0179",
"CSAFPID-0180",
"CSAFPID-0181",
"CSAFPID-0182",
"CSAFPID-0183",
"CSAFPID-0184",
"CSAFPID-0185",
"CSAFPID-0186",
"CSAFPID-0187",
"CSAFPID-0188",
"CSAFPID-0189",
"CSAFPID-0190",
"CSAFPID-0191",
"CSAFPID-0192",
"CSAFPID-0193",
"CSAFPID-0194",
"CSAFPID-0195",
"CSAFPID-0196",
"CSAFPID-0197",
"CSAFPID-0198",
"CSAFPID-0199",
"CSAFPID-0200",
"CSAFPID-0201",
"CSAFPID-0202",
"CSAFPID-0203",
"CSAFPID-0204",
"CSAFPID-0205",
"CSAFPID-0206",
"CSAFPID-0207",
"CSAFPID-0208",
"CSAFPID-0209",
"CSAFPID-0210",
"CSAFPID-0211",
"CSAFPID-0212",
"CSAFPID-0213",
"CSAFPID-0214",
"CSAFPID-0215",
"CSAFPID-0216",
"CSAFPID-0217",
"CSAFPID-0218",
"CSAFPID-0219",
"CSAFPID-0220",
"CSAFPID-0221",
"CSAFPID-0222",
"CSAFPID-0223",
"CSAFPID-0224",
"CSAFPID-0225",
"CSAFPID-0226",
"CSAFPID-0227",
"CSAFPID-0228",
"CSAFPID-0229",
"CSAFPID-0230",
"CSAFPID-0231",
"CSAFPID-0232",
"CSAFPID-0233",
"CSAFPID-0234",
"CSAFPID-0235",
"CSAFPID-0236",
"CSAFPID-0237",
"CSAFPID-0238",
"CSAFPID-0239",
"CSAFPID-0240",
"CSAFPID-0241",
"CSAFPID-0242",
"CSAFPID-0243",
"CSAFPID-0244",
"CSAFPID-0245",
"CSAFPID-0246",
"CSAFPID-0247",
"CSAFPID-0248",
"CSAFPID-0249",
"CSAFPID-0250",
"CSAFPID-0251",
"CSAFPID-0252",
"CSAFPID-0253",
"CSAFPID-0254",
"CSAFPID-0255",
"CSAFPID-0256",
"CSAFPID-0257",
"CSAFPID-0258",
"CSAFPID-0259",
"CSAFPID-0260",
"CSAFPID-0261",
"CSAFPID-0262",
"CSAFPID-0263",
"CSAFPID-0264",
"CSAFPID-0265",
"CSAFPID-0266",
"CSAFPID-0267",
"CSAFPID-0268",
"CSAFPID-0269",
"CSAFPID-0270",
"CSAFPID-0271"
]
}
],
"title": "CVE-2021-3712"
}
]
}
ICSA-26-111-07
Vulnerability from csaf_cisa - Published: 2026-04-14 00:00 - Updated: 2026-04-21 06:00Summary
Siemens SCALANCE
Notes
Summary: SCALANCE W-700 IEEE 802.11n family before V6.6.0 are affected by multiple vulnerabilities.
Siemens has released a new version for SCALANCE W-700 IEEE 802.11n family and recommends to update to the latest version.
General Recommendations: As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens' operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.
Additional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity
Additional Resources: For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories
Terms of Use: The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.
Legal Notice and Terms of Use: This product is provided subject to this Notification (https://www.cisa.gov/notification) and this Privacy & Use policy (https://www.cisa.gov/privacy-policy).
Advisory Conversion Disclaimer: This ICSA is a verbatim republication of Siemens ProductCERT SSA-019200 from a direct conversion of the vendor's Common Security Advisory Framework (CSAF) advisory. This is republished to CISA's website as a means of increasing visibility and is provided "as-is" for informational purposes only. CISA is not responsible for the editorial or technical accuracy of republished advisories and provides no warranties of any kind regarding any information contained within this advisory. Further, CISA does not endorse any commercial product or service. Please contact Siemens ProductCERT directly for any questions regarding this advisory.
Critical infrastructure sectors: Communications, Information Technology, Critical Manufacturing
Countries/areas deployed: Worldwide
Company headquarters location: Germany
Recommended Practices: CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.
Recommended Practices: Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.
Recommended Practices: Locate control system networks and remote devices behind firewalls and isolate them from business networks.
Recommended Practices: When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.
Recommended Practices: CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.
Recommended Practices: CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.
Recommended Practices: CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.
Recommended Practices: Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.
CWE-306
- Missing Authentication for Critical Function
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Mitigation
Vendor Fix
fix
|
5.3 (Medium)
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
6.5 (Medium)
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
6.5 (Medium)
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
6.5 (Medium)
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
6.5 (Medium)
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
5.3 (Medium)
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
5.4 (Medium)
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Mitigation
Vendor Fix
fix
|
7.4 (High)
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
7.5 (High)
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
CWE-862
- Missing Authorization
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
9.1 (Critical)
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
CWE-770
- Allocation of Resources Without Limits or Throttling
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
CWE-80
- Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
9.1 (Critical)
Affected products
Known affected
49 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)
|
6GK5721-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
Siemens / SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)
|
6GK5721-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)
|
6GK5722-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)
|
6GK5722-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
Siemens / SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)
|
6GK5722-1FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)
|
6GK5734-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)
|
6GK5734-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
Siemens / SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)
|
6GK5734-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
Siemens / SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)
|
6GK5734-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)
|
6GK5738-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
Siemens / SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)
|
6GK5738-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)
|
6GK5748-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
Siemens / SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)
|
6GK5748-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)
|
6GK5748-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
Siemens / SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)
|
6GK5748-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)
|
6GK5761-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
Siemens / SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)
|
6GK5761-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)
|
6GK5774-1FY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
Siemens / SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)
|
6GK5774-1FY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)
|
6GK5774-1FX00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)
|
6GK5774-1FX00-0AA6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)
|
6GK5774-1FX00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
Siemens / SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)
|
6GK5774-1FX00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
Siemens / SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)
|
6GK5774-1FX00-0AB6
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)
|
6GK5778-1GY00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
Siemens / SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)
|
6GK5778-1GY00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
Siemens / SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)
|
6GK5778-1GY00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
Siemens / SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)
|
6GK5778-1GY00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)
|
6GK5786-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
Siemens / SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)
|
6GK5786-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)
|
6GK5786-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)
|
6GK5786-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
Siemens / SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)
|
6GK5786-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)
|
6GK5786-2FE00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
Siemens / SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)
|
6GK5786-2FE00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)
|
6GK5786-2HC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
Siemens / SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)
|
6GK5786-2HC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)
|
6GK5788-1GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
Siemens / SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)
|
6GK5788-1GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)
|
6GK5788-1FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
Siemens / SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)
|
6GK5788-1FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)
|
6GK5788-2GD00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
Siemens / SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)
|
6GK5788-2GD00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)
|
6GK5788-2GD00-0TA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)
|
6GK5788-2GD00-0TB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
Siemens / SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)
|
6GK5788-2GD00-0TC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)
|
6GK5788-2FC00-0AA0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)
|
6GK5788-2FC00-0AB0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
|
SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
Siemens / SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)
|
6GK5788-2FC00-0AC0
|
vers:intdot/<6.6.0 |
Vendor Fix
fix
|
References
46 references
Acknowledgments
Siemens ProductCERT
{
"document": {
"acknowledgments": [
{
"organization": "Siemens ProductCERT",
"summary": "reported these vulnerabilities to CISA."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Disclosure is not limited",
"tlp": {
"label": "WHITE",
"url": "https://www.cisa.gov/news-events/news/traffic-light-protocol-tlp-definitions-and-usage"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "SCALANCE W-700 IEEE 802.11n family before V6.6.0 are affected by multiple vulnerabilities.\n\nSiemens has released a new version for SCALANCE W-700 IEEE 802.11n family and recommends to update to the latest version.",
"title": "Summary"
},
{
"category": "general",
"text": "As a general security measure, Siemens strongly recommends to protect network access to devices with appropriate mechanisms. In order to operate the devices in a protected IT environment, Siemens recommends to configure the environment according to Siemens\u0027 operational guidelines for Industrial Security (Download: https://www.siemens.com/cert/operational-guidelines-industrial-security), and to follow the recommendations in the product manuals.\nAdditional information on Industrial Security by Siemens can be found at: https://www.siemens.com/industrialsecurity",
"title": "General Recommendations"
},
{
"category": "general",
"text": "For further inquiries on security vulnerabilities in Siemens products and solutions, please contact the Siemens ProductCERT: https://www.siemens.com/cert/advisories",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The use of Siemens Security Advisories is subject to the terms and conditions listed on: https://www.siemens.com/productcert/terms-of-use.",
"title": "Terms of Use"
},
{
"category": "legal_disclaimer",
"text": "This product is provided subject to this Notification (https://www.cisa.gov/notification) and this Privacy \u0026 Use policy (https://www.cisa.gov/privacy-policy).",
"title": "Legal Notice and Terms of Use"
},
{
"category": "other",
"text": "This ICSA is a verbatim republication of Siemens ProductCERT SSA-019200 from a direct conversion of the vendor\u0027s Common Security Advisory Framework (CSAF) advisory. This is republished to CISA\u0027s website as a means of increasing visibility and is provided \"as-is\" for informational purposes only. CISA is not responsible for the editorial or technical accuracy of republished advisories and provides no warranties of any kind regarding any information contained within this advisory. Further, CISA does not endorse any commercial product or service. Please contact Siemens ProductCERT directly for any questions regarding this advisory.",
"title": "Advisory Conversion Disclaimer"
},
{
"category": "other",
"text": "Communications, Information Technology, Critical Manufacturing",
"title": "Critical infrastructure sectors"
},
{
"category": "other",
"text": "Worldwide",
"title": "Countries/areas deployed"
},
{
"category": "other",
"text": "Germany",
"title": "Company headquarters location"
},
{
"category": "general",
"text": "CISA recommends users take defensive measures to minimize the exploitation risk of this vulnerability.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Minimize network exposure for all control system devices and/or systems, and ensure they are not accessible from the internet.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Locate control system networks and remote devices behind firewalls and isolate them from business networks.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "When remote access is required, use more secure methods, such as Virtual Private Networks (VPNs), recognizing VPNs may have vulnerabilities and should be updated to the most recent version available. Also recognize VPN is only as secure as its connected devices.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA reminds organizations to perform proper impact analysis and risk assessment prior to deploying defensive measures.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA also provides a section for control systems security recommended practices on the ICS webpage on cisa.gov. Several CISA products detailing cyber defense best practices are available for reading and download, including Improving Industrial Control Systems Cybersecurity with Defense-in-Depth Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "CISA encourages organizations to implement recommended cybersecurity strategies for proactive defense of ICS assets. Additional mitigation guidance and recommended practices are publicly available on the ICS webpage at cisa.gov in the technical information paper, ICS-TIP-12-146-01B--Targeted Cyber Intrusion Detection and Mitigation Strategies.",
"title": "Recommended Practices"
},
{
"category": "general",
"text": "Organizations observing suspected malicious activity should follow established internal procedures and report findings to CISA for tracking and correlation against other incidents.",
"title": "Recommended Practices"
}
],
"publisher": {
"category": "other",
"contact_details": "central@cisa.dhs.gov",
"name": "CISA",
"namespace": "https://www.cisa.gov/"
},
"references": [
{
"category": "self",
"summary": "SSA-019200: Multiple Vulnerabilities in SCALANCE W-700 IEEE 802.11n Devices Before V6.6.0 - CSAF Version",
"url": "https://cert-portal.siemens.com/productcert/csaf/ssa-019200.json"
},
{
"category": "self",
"summary": "SSA-019200: Multiple Vulnerabilities in SCALANCE W-700 IEEE 802.11n Devices Before V6.6.0 - HTML Version",
"url": "https://cert-portal.siemens.com/productcert/html/ssa-019200.html"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-26-111-07 JSON",
"url": "https://raw.githubusercontent.com/cisagov/CSAF/develop/csaf_files/OT/white/2026/icsa-26-111-07.json"
},
{
"category": "self",
"summary": "ICS Advisory ICSA-26-111-07 - Web Version",
"url": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-111-07"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/news-events/ics-alerts/ics-alert-10-301-01"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/resources-tools/resources/ics-recommended-practices"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/topics/industrial-control-systems"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/recommended_practices/NCCIC_ICS-CERT_Defense_in_Depth_2016_S508C.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/sites/default/files/publications/Cybersecurity_Best_Practices_for_Industrial_Control_Systems.pdf"
},
{
"category": "external",
"summary": "Recommended Practices",
"url": "https://www.cisa.gov/news-events/news/targeted-cyber-intrusion-detection-and-mitigation-strategies-update-b"
}
],
"title": "Siemens SCALANCE",
"tracking": {
"current_release_date": "2026-04-21T06:00:00.000000Z",
"generator": {
"date": "2026-04-20T18:07:26.686293Z",
"engine": {
"name": "CISA CSAF Generator",
"version": "1.5.0"
}
},
"id": "ICSA-26-111-07",
"initial_release_date": "2026-04-14T00:00:00.000000Z",
"revision_history": [
{
"date": "2026-04-14T00:00:00.000000Z",
"legacy_version": "Initial",
"number": "1",
"summary": "Publication Date"
},
{
"date": "2026-04-21T06:00:00.000000Z",
"legacy_version": "CISA Republication",
"number": "2",
"summary": "Initial CISA Republication of Siemens ProductCERT SSA-019200 advisory"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)",
"product_id": "CSAFPID-0001",
"product_identification_helper": {
"model_numbers": [
"6GK5721-1FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)",
"product_id": "CSAFPID-0002",
"product_identification_helper": {
"model_numbers": [
"6GK5721-1FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W721-1 RJ45 (6GK5721-1FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)",
"product_id": "CSAFPID-0003",
"product_identification_helper": {
"model_numbers": [
"6GK5722-1FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)",
"product_id": "CSAFPID-0004",
"product_identification_helper": {
"model_numbers": [
"6GK5722-1FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)",
"product_id": "CSAFPID-0005",
"product_identification_helper": {
"model_numbers": [
"6GK5722-1FC00-0AC0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W722-1 RJ45 (6GK5722-1FC00-0AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)",
"product_id": "CSAFPID-0006",
"product_identification_helper": {
"model_numbers": [
"6GK5734-1FX00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)",
"product_id": "CSAFPID-0007",
"product_identification_helper": {
"model_numbers": [
"6GK5734-1FX00-0AA6"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AA6)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)",
"product_id": "CSAFPID-0008",
"product_identification_helper": {
"model_numbers": [
"6GK5734-1FX00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W734-1 RJ45 (6GK5734-1FX00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)",
"product_id": "CSAFPID-0009",
"product_identification_helper": {
"model_numbers": [
"6GK5734-1FX00-0AB6"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W734-1 RJ45 (USA) (6GK5734-1FX00-0AB6)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)",
"product_id": "CSAFPID-0010",
"product_identification_helper": {
"model_numbers": [
"6GK5738-1GY00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W738-1 M12 (6GK5738-1GY00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)",
"product_id": "CSAFPID-0011",
"product_identification_helper": {
"model_numbers": [
"6GK5738-1GY00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W738-1 M12 (6GK5738-1GY00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)",
"product_id": "CSAFPID-0012",
"product_identification_helper": {
"model_numbers": [
"6GK5748-1GD00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W748-1 M12 (6GK5748-1GD00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)",
"product_id": "CSAFPID-0013",
"product_identification_helper": {
"model_numbers": [
"6GK5748-1GD00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W748-1 M12 (6GK5748-1GD00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)",
"product_id": "CSAFPID-0014",
"product_identification_helper": {
"model_numbers": [
"6GK5748-1FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)",
"product_id": "CSAFPID-0015",
"product_identification_helper": {
"model_numbers": [
"6GK5748-1FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W748-1 RJ45 (6GK5748-1FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)",
"product_id": "CSAFPID-0016",
"product_identification_helper": {
"model_numbers": [
"6GK5761-1FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)",
"product_id": "CSAFPID-0017",
"product_identification_helper": {
"model_numbers": [
"6GK5761-1FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W761-1 RJ45 (6GK5761-1FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)",
"product_id": "CSAFPID-0018",
"product_identification_helper": {
"model_numbers": [
"6GK5774-1FY00-0TA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)",
"product_id": "CSAFPID-0019",
"product_identification_helper": {
"model_numbers": [
"6GK5774-1FY00-0TB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W774-1 M12 EEC (6GK5774-1FY00-0TB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)",
"product_id": "CSAFPID-0020",
"product_identification_helper": {
"model_numbers": [
"6GK5774-1FX00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)",
"product_id": "CSAFPID-0021",
"product_identification_helper": {
"model_numbers": [
"6GK5774-1FX00-0AA6"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AA6)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)",
"product_id": "CSAFPID-0022",
"product_identification_helper": {
"model_numbers": [
"6GK5774-1FX00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)",
"product_id": "CSAFPID-0023",
"product_identification_helper": {
"model_numbers": [
"6GK5774-1FX00-0AC0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W774-1 RJ45 (6GK5774-1FX00-0AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)",
"product_id": "CSAFPID-0024",
"product_identification_helper": {
"model_numbers": [
"6GK5774-1FX00-0AB6"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W774-1 RJ45 (USA) (6GK5774-1FX00-0AB6)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)",
"product_id": "CSAFPID-0025",
"product_identification_helper": {
"model_numbers": [
"6GK5778-1GY00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W778-1 M12 (6GK5778-1GY00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)",
"product_id": "CSAFPID-0026",
"product_identification_helper": {
"model_numbers": [
"6GK5778-1GY00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W778-1 M12 (6GK5778-1GY00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)",
"product_id": "CSAFPID-0027",
"product_identification_helper": {
"model_numbers": [
"6GK5778-1GY00-0TA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W778-1 M12 EEC (6GK5778-1GY00-0TA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)",
"product_id": "CSAFPID-0028",
"product_identification_helper": {
"model_numbers": [
"6GK5778-1GY00-0TB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W778-1 M12 EEC (USA) (6GK5778-1GY00-0TB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)",
"product_id": "CSAFPID-0029",
"product_identification_helper": {
"model_numbers": [
"6GK5786-1FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)",
"product_id": "CSAFPID-0030",
"product_identification_helper": {
"model_numbers": [
"6GK5786-1FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-1 RJ45 (6GK5786-1FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)",
"product_id": "CSAFPID-0031",
"product_identification_helper": {
"model_numbers": [
"6GK5786-2FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)",
"product_id": "CSAFPID-0032",
"product_identification_helper": {
"model_numbers": [
"6GK5786-2FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)",
"product_id": "CSAFPID-0033",
"product_identification_helper": {
"model_numbers": [
"6GK5786-2FC00-0AC0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-2 RJ45 (6GK5786-2FC00-0AC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)",
"product_id": "CSAFPID-0034",
"product_identification_helper": {
"model_numbers": [
"6GK5786-2FE00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-2 SFP (6GK5786-2FE00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)",
"product_id": "CSAFPID-0035",
"product_identification_helper": {
"model_numbers": [
"6GK5786-2FE00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-2 SFP (6GK5786-2FE00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)",
"product_id": "CSAFPID-0036",
"product_identification_helper": {
"model_numbers": [
"6GK5786-2HC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)",
"product_id": "CSAFPID-0037",
"product_identification_helper": {
"model_numbers": [
"6GK5786-2HC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W786-2IA RJ45 (6GK5786-2HC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)",
"product_id": "CSAFPID-0038",
"product_identification_helper": {
"model_numbers": [
"6GK5788-1GD00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-1 M12 (6GK5788-1GD00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)",
"product_id": "CSAFPID-0039",
"product_identification_helper": {
"model_numbers": [
"6GK5788-1GD00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-1 M12 (6GK5788-1GD00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)",
"product_id": "CSAFPID-0040",
"product_identification_helper": {
"model_numbers": [
"6GK5788-1FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)",
"product_id": "CSAFPID-0041",
"product_identification_helper": {
"model_numbers": [
"6GK5788-1FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-1 RJ45 (6GK5788-1FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)",
"product_id": "CSAFPID-0042",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2GD00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 M12 (6GK5788-2GD00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)",
"product_id": "CSAFPID-0043",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2GD00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 M12 (6GK5788-2GD00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)",
"product_id": "CSAFPID-0044",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2GD00-0TA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)",
"product_id": "CSAFPID-0045",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2GD00-0TB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)",
"product_id": "CSAFPID-0046",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2GD00-0TC0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 M12 EEC (6GK5788-2GD00-0TC0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)",
"product_id": "CSAFPID-0047",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2FC00-0AA0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AA0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)",
"product_id": "CSAFPID-0048",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2FC00-0AB0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AB0)"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:intdot/\u003c6.6.0",
"product": {
"name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)",
"product_id": "CSAFPID-0049",
"product_identification_helper": {
"model_numbers": [
"6GK5788-2FC00-0AC0"
]
}
}
}
],
"category": "product_name",
"name": "SCALANCE W788-2 RJ45 (6GK5788-2FC00-0AC0)"
}
],
"category": "vendor",
"name": "Siemens"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-24588",
"cwe": {
"id": "CWE-306",
"name": "Missing Authentication for Critical Function"
},
"notes": [
{
"category": "summary",
"text": "The 802.11 standard that underpins Wi-Fi Protected Access (WPA, WPA2, and WPA3) and Wired Equivalent Privacy (WEP) doesn\u0027t require that the A-MSDU flag in the plaintext QoS header field is authenticated. Against devices that support receiving non-SSP A-MSDU frames (which is mandatory as part of 802.11n), an adversary can abuse this to inject arbitrary network packets.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-24588"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/306.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"
}
],
"remediations": [
{
"category": "mitigation",
"details": "As these vulnerabilities can only be exploited within Wi-Fi range, when possible reduce Wi-Fi transmission power or make sure to have the devices in private areas with physical access controls",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
{
"category": "mitigation",
"details": "Disable A-MSDU, if possible",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.5,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2020-24588"
},
{
"cve": "CVE-2020-26139",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in the kernel in NetBSD 7.1. An Access Point (AP) forwards EAPOL frames to other clients even though the sender has not yet successfully authenticated to the AP. This might be abused in projected Wi-Fi networks to launch denial-of-service attacks against connected clients and makes it easier to exploit other vulnerabilities in connected clients.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26139"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/287.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"
}
],
"remediations": [
{
"category": "mitigation",
"details": "As these vulnerabilities can only be exploited within Wi-Fi range, when possible reduce Wi-Fi transmission power or make sure to have the devices in private areas with physical access controls",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2020-26139"
},
{
"cve": "CVE-2020-26140",
"cwe": {
"id": "CWE-74",
"name": "Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26140"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/74.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
}
],
"remediations": [
{
"category": "mitigation",
"details": "As these vulnerabilities can only be exploited within Wi-Fi range, when possible reduce Wi-Fi transmission power or make sure to have the devices in private areas with physical access controls",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2020-26140"
},
{
"cve": "CVE-2020-26141",
"cwe": {
"id": "CWE-354",
"name": "Improper Validation of Integrity Check Value"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in the ALFA Windows 10 driver 6.1316.1209 for AWUS036H. The Wi-Fi implementation does not verify the Message Integrity Check (authenticity) of fragmented TKIP frames. An adversary can abuse this to inject and possibly decrypt packets in WPA or WPA2 networks that support the TKIP data-confidentiality protocol.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26141"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/354.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
}
],
"remediations": [
{
"category": "mitigation",
"details": "As these vulnerabilities can only be exploited within Wi-Fi range, when possible reduce Wi-Fi transmission power or make sure to have the devices in private areas with physical access controls",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2020-26141"
},
{
"cve": "CVE-2020-26143",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in the ALFA Windows 10 driver 1030.36.604 for AWUS036ACH. The WEP, WPA, WPA2, and WPA3 implementations accept fragmented plaintext frames in a protected Wi-Fi network. An adversary can abuse this to inject arbitrary data frames independent of the network configuration.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26143"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/20.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
}
],
"remediations": [
{
"category": "mitigation",
"details": "As these vulnerabilities can only be exploited within Wi-Fi range, when possible reduce Wi-Fi transmission power or make sure to have the devices in private areas with physical access controls",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2020-26143"
},
{
"cve": "CVE-2020-26144",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WEP, WPA, WPA2, and WPA3 implementations accept plaintext A-MSDU frames as long as the first 8 bytes correspond to a valid RFC1042 (i.e., LLC/SNAP) header for EAPOL. An adversary can abuse this to inject arbitrary network packets independent of the network configuration.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26144"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/20.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"
}
],
"remediations": [
{
"category": "mitigation",
"details": "As these vulnerabilities can only be exploited within Wi-Fi range, when possible reduce Wi-Fi transmission power or make sure to have the devices in private areas with physical access controls",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2020-26144"
},
{
"cve": "CVE-2020-26146",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered on Samsung Galaxy S3 i9305 4.4.4 devices. The WPA, WPA2, and WPA3 implementations reassemble fragments with non-consecutive packet numbers. An adversary can abuse this to exfiltrate selected fragments. This vulnerability is exploitable when another device sends fragmented frames and the WEP, CCMP, or GCMP data-confidentiality protocol is used. Note that WEP is vulnerable to this attack by design.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26146"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/20.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N"
}
],
"remediations": [
{
"category": "mitigation",
"details": "As these vulnerabilities can only be exploited within Wi-Fi range, when possible reduce Wi-Fi transmission power or make sure to have the devices in private areas with physical access controls",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2020-26146"
},
{
"cve": "CVE-2020-26147",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "summary",
"text": "An issue was discovered in the Linux kernel 5.8.9. The WEP, WPA, WPA2, and WPA3 implementations reassemble fragments even though some of them were sent in plaintext. This vulnerability can be abused to inject packets and/or exfiltrate selected fragments when another device sends fragmented frames and the WEP, CCMP, or GCMP data-confidentiality protocol is used.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26147"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/20.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:N"
}
],
"remediations": [
{
"category": "mitigation",
"details": "As these vulnerabilities can only be exploited within Wi-Fi range, when possible reduce Wi-Fi transmission power or make sure to have the devices in private areas with physical access controls",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:A/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2020-26147"
},
{
"cve": "CVE-2021-3712",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "summary",
"text": "ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL\u0027s own \"d2i\" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the \"data\" and \"length\" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the \"data\" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3712"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/125.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2021-3712"
},
{
"cve": "CVE-2022-0778",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "summary",
"text": "The BN_mod_sqrt() function in openSSL, which computes a modular square root, contains a bug that can cause it to loop forever for non-prime moduli. Internally this function is used when parsing certificates that contain elliptic curve public keys in compressed form or explicit elliptic curve parameters with a base point encoded in compressed form. It is possible to trigger the infinite loop by crafting a certificate that has invalid explicit curve parameters. Since certificate parsing happens prior to verification of the certificate signature, any process that parses an externally supplied certificate may thus be subject to a denial of service attack. The infinite loop can also be reached when parsing crafted private keys as they can contain explicit elliptic curve parameters.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0778"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/835.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2022-0778"
},
{
"cve": "CVE-2022-31765",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "summary",
"text": "Affected devices do not properly authorize the change password function of the web interface.\r\nThis could allow low privileged users to escalate their privileges.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-31765"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/862.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2022-31765"
},
{
"cve": "CVE-2022-36323",
"cwe": {
"id": "CWE-74",
"name": "Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker with administrative privileges to inject code or spawn a system root shell.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36323"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/74.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2022-36323"
},
{
"cve": "CVE-2022-36324",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "summary",
"text": "Affected devices do not properly handle the renegotiation of SSL/TLS parameters. This could allow an unauthenticated remote attacker to bypass the TCP brute force prevention and lead to a denial of service condition for the duration of the attack.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36324"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/770.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2022-36324"
},
{
"cve": "CVE-2022-36325",
"cwe": {
"id": "CWE-80",
"name": "Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS)"
},
"notes": [
{
"category": "summary",
"text": "Affected devices do not properly sanitize data introduced by an user when rendering the web interface. This could allow an authenticated remote attacker with administrative privileges to inject code and lead to a DOM-based XSS.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-36325"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/80.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2022-36325"
},
{
"cve": "CVE-2023-44373",
"cwe": {
"id": "CWE-74",
"name": "Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)"
},
"notes": [
{
"category": "summary",
"text": "Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker with administrative privileges to inject code or spawn a system root shell. Follow-up of CVE-2022-36323.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
},
"references": [
{
"category": "external",
"summary": "www.cve.org",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44373"
},
{
"category": "external",
"summary": "cwe.mitre.org",
"url": "https://cwe.mitre.org/data/definitions/74.html"
},
{
"category": "external",
"summary": "www.first.org",
"url": "https://www.first.org/cvss/calculator/3.1#CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "Update to V6.6.0 or later version",
"product_ids": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
],
"url": "https://support.industry.siemens.com/cs/ww/en/view/109996102/"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-0001",
"CSAFPID-0002",
"CSAFPID-0003",
"CSAFPID-0004",
"CSAFPID-0005",
"CSAFPID-0006",
"CSAFPID-0007",
"CSAFPID-0008",
"CSAFPID-0009",
"CSAFPID-0010",
"CSAFPID-0011",
"CSAFPID-0012",
"CSAFPID-0013",
"CSAFPID-0014",
"CSAFPID-0015",
"CSAFPID-0016",
"CSAFPID-0017",
"CSAFPID-0018",
"CSAFPID-0019",
"CSAFPID-0020",
"CSAFPID-0021",
"CSAFPID-0022",
"CSAFPID-0023",
"CSAFPID-0024",
"CSAFPID-0025",
"CSAFPID-0026",
"CSAFPID-0027",
"CSAFPID-0028",
"CSAFPID-0029",
"CSAFPID-0030",
"CSAFPID-0031",
"CSAFPID-0032",
"CSAFPID-0033",
"CSAFPID-0034",
"CSAFPID-0035",
"CSAFPID-0036",
"CSAFPID-0037",
"CSAFPID-0038",
"CSAFPID-0039",
"CSAFPID-0040",
"CSAFPID-0041",
"CSAFPID-0042",
"CSAFPID-0043",
"CSAFPID-0044",
"CSAFPID-0045",
"CSAFPID-0046",
"CSAFPID-0047",
"CSAFPID-0048",
"CSAFPID-0049"
]
}
],
"title": "CVE-2023-44373"
}
]
}
MSRC_CVE-2021-3712
Vulnerability from csaf_microsoft - Published: 2021-08-02 00:00 - Updated: 2026-02-18 14:40Summary
Read buffer overruns processing ASN.1 strings
Notes
Additional Resources: To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer: The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
7.4 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 18903-16820 | — | ||
| Unresolved product id: 18982-17086 | — | ||
| Unresolved product id: 18131-17084 | — | ||
| Unresolved product id: 17859-17084 | — |
Known affected
4 products
Known not affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 17084-5 | — |
References
4 references
| URL | Category |
|---|---|
| https://msrc.microsoft.com/csaf/vex/2021/msrc_cve… | self |
| https://support.microsoft.com/lifecycle | external |
| https://www.first.org/cvss | external |
| https://msrc.microsoft.com/csaf/vex/2021/msrc_cve… | self |
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2021-3712 Read buffer overruns processing ASN.1 strings - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2021/msrc_cve-2021-3712.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "Read buffer overruns processing ASN.1 strings",
"tracking": {
"current_release_date": "2026-02-18T14:40:48.000Z",
"generator": {
"date": "2026-02-21T02:07:26.077Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2021-3712",
"initial_release_date": "2021-08-02T00:00:00.000Z",
"revision_history": [
{
"date": "2021-10-16T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
},
{
"date": "2021-12-16T00:00:00.000Z",
"legacy_version": "1.1",
"number": "2",
"summary": "Added openssl to CBL-Mariner 2.0"
},
{
"date": "2024-08-29T00:00:00.000Z",
"legacy_version": "1.2",
"number": "3",
"summary": "Information published."
},
{
"date": "2024-08-30T00:00:00.000Z",
"legacy_version": "1.3",
"number": "4",
"summary": "Information published."
},
{
"date": "2024-08-31T00:00:00.000Z",
"legacy_version": "1.4",
"number": "5",
"summary": "Information published."
},
{
"date": "2024-09-01T00:00:00.000Z",
"legacy_version": "1.5",
"number": "6",
"summary": "Information published."
},
{
"date": "2024-09-02T00:00:00.000Z",
"legacy_version": "1.6",
"number": "7",
"summary": "Information published."
},
{
"date": "2024-09-03T00:00:00.000Z",
"legacy_version": "1.7",
"number": "8",
"summary": "Information published."
},
{
"date": "2024-09-05T00:00:00.000Z",
"legacy_version": "1.8",
"number": "9",
"summary": "Information published."
},
{
"date": "2024-09-06T00:00:00.000Z",
"legacy_version": "1.9",
"number": "10",
"summary": "Information published."
},
{
"date": "2024-09-07T00:00:00.000Z",
"legacy_version": "2",
"number": "11",
"summary": "Information published."
},
{
"date": "2024-09-08T00:00:00.000Z",
"legacy_version": "2.1",
"number": "12",
"summary": "Information published."
},
{
"date": "2024-09-11T00:00:00.000Z",
"legacy_version": "2.2",
"number": "13",
"summary": "Information published."
},
{
"date": "2026-02-18T14:40:48.000Z",
"legacy_version": "2.3",
"number": "14",
"summary": "Information published."
}
],
"status": "final",
"version": "14"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "1.0",
"product": {
"name": "CBL Mariner 1.0",
"product_id": "16820"
}
},
{
"category": "product_version",
"name": "2.0",
"product": {
"name": "CBL Mariner 2.0",
"product_id": "17086"
}
},
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003ccm1 openssl 1.1.1k-8",
"product": {
"name": "\u003ccm1 openssl 1.1.1k-8",
"product_id": "2"
}
},
{
"category": "product_version",
"name": "cm1 openssl 1.1.1k-8",
"product": {
"name": "cm1 openssl 1.1.1k-8",
"product_id": "18903"
}
},
{
"category": "product_version_range",
"name": "\u003ccbl2 openssl 1.1.1k-11",
"product": {
"name": "\u003ccbl2 openssl 1.1.1k-11",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "cbl2 openssl 1.1.1k-11",
"product": {
"name": "cbl2 openssl 1.1.1k-11",
"product_id": "18982"
}
}
],
"category": "product_name",
"name": "openssl"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003cazl3 edk2 20240223gitedc6681206c1-1",
"product": {
"name": "\u003cazl3 edk2 20240223gitedc6681206c1-1",
"product_id": "3"
}
},
{
"category": "product_version",
"name": "azl3 edk2 20240223gitedc6681206c1-1",
"product": {
"name": "azl3 edk2 20240223gitedc6681206c1-1",
"product_id": "18131"
}
},
{
"category": "product_version_range",
"name": "\u003cazl3 edk2 20230301gitf80f052277c8-37",
"product": {
"name": "\u003cazl3 edk2 20230301gitf80f052277c8-37",
"product_id": "4"
}
},
{
"category": "product_version",
"name": "azl3 edk2 20230301gitf80f052277c8-37",
"product": {
"name": "azl3 edk2 20230301gitf80f052277c8-37",
"product_id": "17859"
}
}
],
"category": "product_name",
"name": "edk2"
},
{
"category": "product_name",
"name": "azl3 shim-unsigned-aarch64 15.8-5",
"product": {
"name": "azl3 shim-unsigned-aarch64 15.8-5",
"product_id": "5"
}
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccm1 openssl 1.1.1k-8 as a component of CBL Mariner 1.0",
"product_id": "16820-2"
},
"product_reference": "2",
"relates_to_product_reference": "16820"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cm1 openssl 1.1.1k-8 as a component of CBL Mariner 1.0",
"product_id": "18903-16820"
},
"product_reference": "18903",
"relates_to_product_reference": "16820"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 openssl 1.1.1k-11 as a component of CBL Mariner 2.0",
"product_id": "17086-1"
},
"product_reference": "1",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 openssl 1.1.1k-11 as a component of CBL Mariner 2.0",
"product_id": "18982-17086"
},
"product_reference": "18982",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 edk2 20240223gitedc6681206c1-1 as a component of Azure Linux 3.0",
"product_id": "17084-3"
},
"product_reference": "3",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 edk2 20240223gitedc6681206c1-1 as a component of Azure Linux 3.0",
"product_id": "18131-17084"
},
"product_reference": "18131",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 edk2 20230301gitf80f052277c8-37 as a component of Azure Linux 3.0",
"product_id": "17084-4"
},
"product_reference": "4",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 edk2 20230301gitf80f052277c8-37 as a component of Azure Linux 3.0",
"product_id": "17859-17084"
},
"product_reference": "17859",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 shim-unsigned-aarch64 15.8-5 as a component of Azure Linux 3.0",
"product_id": "17084-5"
},
"product_reference": "5",
"relates_to_product_reference": "17084"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2021-3712",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"flags": [
{
"label": "vulnerable_code_not_in_execute_path",
"product_ids": [
"17084-5"
]
}
],
"notes": [
{
"category": "general",
"text": "openssl",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"18903-16820",
"18982-17086",
"18131-17084",
"17859-17084"
],
"known_affected": [
"16820-2",
"17086-1",
"17084-3",
"17084-4"
],
"known_not_affected": [
"17084-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2021-3712 Read buffer overruns processing ASN.1 strings - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2021/msrc_cve-2021-3712.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2021-10-16T00:00:00.000Z",
"details": "-:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"16820-2"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
},
{
"category": "vendor_fix",
"date": "2021-10-16T00:00:00.000Z",
"details": "1.1.1k-11:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17086-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
},
{
"category": "vendor_fix",
"date": "2021-10-16T00:00:00.000Z",
"details": "20240223gitedc6681206c1-1:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-3"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
},
{
"category": "vendor_fix",
"date": "2021-10-16T00:00:00.000Z",
"details": "20240223gitedc6681206c1-2:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-4"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"environmentalsScore": 0.0,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 7.4,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"16820-2",
"17086-1",
"17084-3",
"17084-4"
]
}
],
"title": "Read buffer overruns processing ASN.1 strings"
}
]
}
NCSC-2024-0239
Vulnerability from csaf_ncscnl - Published: 2024-06-07 06:26 - Updated: 2024-06-07 06:26Summary
Kwetsbaarheden verholpen in Solarwinds Platform
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten: Solarwinds heeft kwetsbaarheden verholpen in Solarwinds Platform.
Interpretaties: Een kwaadwillende kan de kwetsbaarheden misbruiken om een Denial-of-Service te veroorzaken, een command-injection uit te voeren, of om een Cross-Site-Scripting-aanval uit te voeren. Een dergelijke aanval kan leiden tot uitvoer van willekeurige code in de browser van het slachtoffer.
Voor succesvol misbruik moet de kwaadwillende voorafgaande authenticatie hebben.
Oplossingen: Solarwinds heeft updates uitgebracht om de kwetsbaarheden te verhelpen in Solarwinds Platform 2024.2
In deze updates zijn tevens kwetsbaarheden verholpen in onderliggende third-party software waar het platform gebruik van maakt. Voor deze kwetsbaarheden zijn eerdere beveiligingsadviezen gepubliceerd.
Zie bijgevoegde referenties voor meer informatie.
Kans: medium
Schade: high
CWE-125: Out-of-bounds Read
CWE-190: Integer Overflow or Wraparound
CWE-20: Improper Input Validation
CWE-325: Missing Cryptographic Step
CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-385: Covert Timing Channel
CWE-416: Use After Free
CWE-476: NULL Pointer Dereference
CWE-682: Incorrect Calculation
CWE-704: Incorrect Type Conversion or Cast
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop')
CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
CWE-942: Permissive Cross-domain Policy with Untrusted Domains
CWE-682
- Incorrect Calculation
CWE-325
- Missing Cryptographic Step
CWE-385
- Covert Timing Channel
CWE-325
- Missing Cryptographic Step
CWE-476
- NULL Pointer Dereference
CWE-125
- Out-of-bounds Read
CWE-942
- Permissive Cross-domain Policy with Untrusted Domains
CWE-190
- Integer Overflow or Wraparound
CWE-835
- Loop with Unreachable Exit Condition ('Infinite Loop')
CWE-416
- Use After Free
CWE-704
- Incorrect Type Conversion or Cast
8.1 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
solarwinds_platform_
solarwinds
|
cpe:2.3:a:solarwinds:solarwinds_platform_:2024.1.1_and_previous_versions_:*:*:*:*:*:*:*
|
— |
8.1 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
solarwinds_platform
solarwinds_
|
cpe:2.3:a:solarwinds_:solarwinds_platform:2024.1.1_and_previous_versions_:*:*:*:*:*:*:*
|
— |
7.1 (High)
Affected products
Known affected
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
solarwinds_platform_
solarwinds_
|
cpe:2.3:a:solarwinds_:solarwinds_platform_:2024.1.1_and_previous_versions:*:*:*:*:*:*:*
|
— |
References
18 references
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Solarwinds heeft kwetsbaarheden verholpen in Solarwinds Platform.",
"title": "Feiten"
},
{
"category": "description",
"text": "Een kwaadwillende kan de kwetsbaarheden misbruiken om een Denial-of-Service te veroorzaken, een command-injection uit te voeren, of om een Cross-Site-Scripting-aanval uit te voeren. Een dergelijke aanval kan leiden tot uitvoer van willekeurige code in de browser van het slachtoffer.\n\nVoor succesvol misbruik moet de kwaadwillende voorafgaande authenticatie hebben.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Solarwinds heeft updates uitgebracht om de kwetsbaarheden te verhelpen in Solarwinds Platform 2024.2\n\nIn deze updates zijn tevens kwetsbaarheden verholpen in onderliggende third-party software waar het platform gebruik van maakt. Voor deze kwetsbaarheden zijn eerdere beveiligingsadviezen gepubliceerd.\n\nZie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "Missing Cryptographic Step",
"title": "CWE-325"
},
{
"category": "general",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
},
{
"category": "general",
"text": "Covert Timing Channel",
"title": "CWE-385"
},
{
"category": "general",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "general",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "general",
"text": "Incorrect Calculation",
"title": "CWE-682"
},
{
"category": "general",
"text": "Incorrect Type Conversion or Cast",
"title": "CWE-704"
},
{
"category": "general",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
},
{
"category": "general",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "general",
"text": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
"title": "CWE-89"
},
{
"category": "general",
"text": "Permissive Cross-domain Policy with Untrusted Domains",
"title": "CWE-942"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd",
"url": "https://documentation.solarwinds.com/en/success_center/orionplatform/content/release_notes/solarwinds_platform_2024-2_release_notes.htm"
},
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd",
"url": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-28996"
},
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd",
"url": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-28999"
},
{
"category": "external",
"summary": "Reference - cveprojectv5; nvd",
"url": "https://www.solarwinds.com/trust-center/security-advisories/CVE-2024-29004"
}
],
"title": "Kwetsbaarheden verholpen in Solarwinds Platform",
"tracking": {
"current_release_date": "2024-06-07T06:26:01.172456Z",
"id": "NCSC-2024-0239",
"initial_release_date": "2024-06-07T06:26:01.172456Z",
"revision_history": [
{
"date": "2024-06-07T06:26:01.172456Z",
"number": "0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "solarwinds_platform_",
"product": {
"name": "solarwinds_platform_",
"product_id": "CSAFPID-1463738",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds_:solarwinds_platform_:2024.1.1_and_previous_versions:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "solarwinds_platform",
"product": {
"name": "solarwinds_platform",
"product_id": "CSAFPID-1463740",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds_:solarwinds_platform:2024.1.1_and_previous_versions_:*:*:*:*:*:*:*"
}
}
}
],
"category": "vendor",
"name": "solarwinds_"
},
{
"branches": [
{
"category": "product_name",
"name": "orion_platform",
"product": {
"name": "orion_platform",
"product_id": "CSAFPID-1463455",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds:orion_platform:2024.1.0:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "orion_platform",
"product": {
"name": "orion_platform",
"product_id": "CSAFPID-1463456",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds:orion_platform:2024.1.1:*:*:*:*:*:*:*"
}
}
},
{
"category": "product_name",
"name": "solarwinds_platform_",
"product": {
"name": "solarwinds_platform_",
"product_id": "CSAFPID-1463739",
"product_identification_helper": {
"cpe": "cpe:2.3:a:solarwinds:solarwinds_platform_:2024.1.1_and_previous_versions_:*:*:*:*:*:*:*"
}
}
}
],
"category": "vendor",
"name": "solarwinds"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2017-3736",
"cwe": {
"id": "CWE-682",
"name": "Incorrect Calculation"
},
"notes": [
{
"category": "other",
"text": "Incorrect Calculation",
"title": "CWE-682"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2017-3736",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2017/CVE-2017-3736.json"
}
],
"title": "CVE-2017-3736"
},
{
"cve": "CVE-2018-0732",
"cwe": {
"id": "CWE-325",
"name": "Missing Cryptographic Step"
},
"notes": [
{
"category": "other",
"text": "Missing Cryptographic Step",
"title": "CWE-325"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2018-0732",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2018/CVE-2018-0732.json"
}
],
"title": "CVE-2018-0732"
},
{
"cve": "CVE-2018-0737",
"cwe": {
"id": "CWE-385",
"name": "Covert Timing Channel"
},
"notes": [
{
"category": "other",
"text": "Covert Timing Channel",
"title": "CWE-385"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2018-0737",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2018/CVE-2018-0737.json"
}
],
"title": "CVE-2018-0737"
},
{
"cve": "CVE-2019-1559",
"cwe": {
"id": "CWE-325",
"name": "Missing Cryptographic Step"
},
"notes": [
{
"category": "other",
"text": "Missing Cryptographic Step",
"title": "CWE-325"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2019-1559",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2019/CVE-2019-1559.json"
}
],
"title": "CVE-2019-1559"
},
{
"cve": "CVE-2020-1971",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2020-1971",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2020/CVE-2020-1971.json"
}
],
"title": "CVE-2020-1971"
},
{
"cve": "CVE-2021-3712",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2021-3712",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-3712.json"
}
],
"title": "CVE-2021-3712"
},
{
"cve": "CVE-2021-4321",
"cwe": {
"id": "CWE-942",
"name": "Permissive Cross-domain Policy with Untrusted Domains"
},
"notes": [
{
"category": "other",
"text": "Permissive Cross-domain Policy with Untrusted Domains",
"title": "CWE-942"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2021-4321",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-4321.json"
}
],
"title": "CVE-2021-4321"
},
{
"cve": "CVE-2021-23840",
"cwe": {
"id": "CWE-190",
"name": "Integer Overflow or Wraparound"
},
"notes": [
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2021-23840",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2021/CVE-2021-23840.json"
}
],
"title": "CVE-2021-23840"
},
{
"cve": "CVE-2022-0778",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "other",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2022-0778",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2022/CVE-2022-0778.json"
}
],
"title": "CVE-2022-0778"
},
{
"cve": "CVE-2023-0215",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2023-0215",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0215.json"
}
],
"title": "CVE-2023-0215"
},
{
"cve": "CVE-2023-0286",
"cwe": {
"id": "CWE-704",
"name": "Incorrect Type Conversion or Cast"
},
"notes": [
{
"category": "other",
"text": "Incorrect Type Conversion or Cast",
"title": "CWE-704"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
}
],
"references": [
{
"category": "self",
"summary": "CVE-2023-0286",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2023/CVE-2023-0286.json"
}
],
"title": "CVE-2023-0286"
},
{
"cve": "CVE-2024-28996",
"cwe": {
"id": "CWE-89",
"name": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Special Elements used in an SQL Command (\u0027SQL Injection\u0027)",
"title": "CWE-89"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1463739"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-28996",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28996.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1463739"
]
}
],
"title": "CVE-2024-28996"
},
{
"cve": "CVE-2024-28999",
"cwe": {
"id": "CWE-362",
"name": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)"
},
"notes": [
{
"category": "other",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1463740"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-28999",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-28999.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1463740"
]
}
],
"title": "CVE-2024-28999"
},
{
"cve": "CVE-2024-29004",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)",
"title": "CWE-79"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1463738"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-29004",
"url": "https://api.ncsc.nl/velma/v1/vulnerabilities/2024/CVE-2024-29004.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1463738"
]
}
],
"title": "CVE-2024-29004"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…