Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cnvdChina National Vulnerability DatabaseCNVD-2022-87966
HistoryDec 14, 2022 - 12:00 a.m.

Siemens SCALANCE X-200RNA Switch Devices has an unspecified vulnerability

2022-12-1400:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
siemens
scalance x-200rna
switch devices
vulnerability
web server
session id
calculation
insecure manner
unauthenticated remote attacker
hijack
existing session
industrial ethernet access point
security vulnerability
parallel network

0.003 Low

EPSS

Percentile

68.9%

JSON

The SCALANCE X-204RNA Industrial Ethernet Access Point enables non-PRP endpoint devices to connect to a separate parallel network as needed.A security vulnerability exists in Siemens SCALANCE X-200RNA Switch Devices due to the web server of the affected device calculating session IDs and random numbers in an insecure manner, allowing an unauthenticated remote attacker to use the session ID and hijack an existing session.

Related

prion 1
nessus 1
nvd 1
cvelist 1
cve 1
ics 1
prion
prion
Design/Logic Flaw
2022-12-13 16:15:00
nessus
nessus
Siemens SCALANCE X-200RNA Switch Devices Use of Insufficiently Random Values (CVE-2022-46353)
2023-08-03 00:00:00
nvd
nvd
CVE-2022-46353
2022-12-13 16:15:25
cvelist
cvelist
CVE-2022-46353
2022-12-13 00:00:00
cve
cve
CVE-2022-46353
2022-12-13 16:15:25
ics
ics
Siemens SCALANCE X-200RNA Switch Devices
2022-12-15 12:00:00

0.003 Low

EPSS

Percentile

68.9%

JSON
Related for CNVD-2022-87966
prion1nessus1nvd1cvelist1cve1ics1