Lucene search
HistoryJan 21, 2015 - 5:59 p.m.
CVE-2014-8478
siemens
scalance
x-300
x-408
firmware
vulnerability
denial of service
http
nvd
6.9 Medium
AI Score
Confidence
Low
7.8 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.002 Low
EPSS
Percentile
64.3%
The web server on Siemens SCALANCE X-300 switches with firmware before 4.0 and SCALANCE X 408 switches with firmware before 4.0 allows remote attackers to cause a denial of service (reboot) via malformed HTTP requests.
Affected configurations
Node
siemensscalance_x-300_series_firmwareRange≤3.9.3
siemensscalance_x-300Match-
ORsiemensscalance_x-300eecMatch-
ORsiemensscalance_x-300poeMatch-
ORsiemensscalance_xr-300Match-
ORsiemensscalance_xr-300eecMatch-
ORsiemensscalance_xr-300poeMatch-
Node
siemensscalance_x-408_firmwareRange≤3.9.3
siemensscalance_x-408
| CPE | Name | Operator | Version |
|---|---|---|---|
| siemens:scalance_x-300_series_firmware | siemens scalance x-300 series firmware | le | 3.9.3 |
Related
prion
prion
Design/Logic Flaw
2015-01-21 17:59:00
nvd
nvd
CVE-2014-8478
2015-01-21 17:59:00
cvelist
cvelist
CVE-2014-8478
2015-01-21 17:00:00
ics
ics
Siemens SCALANCE X-300/X408 Switch Family DOS Vulnerabilities
2018-08-29 12:00:00
6.9 Medium
AI Score
Confidence
Low
7.8 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
0.002 Low
EPSS
Percentile
64.3%
Related for CVE-2014-8478