Lucene search
SiemensCVELIST:CVE-2022-46354HistoryDec 13, 2022 - 12:00 a.m.
CVE-2022-46354
2022-12-1300:00:00
CWE-284
siemens
www.cve.org
vulnerability
scalance x204rna
scalance x204rna eec
webserver
security headers
remote attacker
A vulnerability has been identified in SCALANCE X204RNA (HSR) (All versions < V3.2.7), SCALANCE X204RNA (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (HSR) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP) (All versions < V3.2.7), SCALANCE X204RNA EEC (PRP/HSR) (All versions < V3.2.7). The webserver of an affected device is missing specific security headers. This could allow an remote attacker to extract confidential session information under certain circumstances.
CNA Affected
[
{
"vendor": "Siemens",
"product": "SCALANCE X204RNA (HSR)",
"versions": [
{
"version": "All versions < V3.2.7",
"status": "affected"
}
]
},
{
"vendor": "Siemens",
"product": "SCALANCE X204RNA (PRP)",
"versions": [
{
"version": "All versions < V3.2.7",
"status": "affected"
}
]
},
{
"vendor": "Siemens",
"product": "SCALANCE X204RNA EEC (HSR)",
"versions": [
{
"version": "All versions < V3.2.7",
"status": "affected"
}
]
},
{
"vendor": "Siemens",
"product": "SCALANCE X204RNA EEC (PRP)",
"versions": [
{
"version": "All versions < V3.2.7",
"status": "affected"
}
]
},
{
"vendor": "Siemens",
"product": "SCALANCE X204RNA EEC (PRP/HSR)",
"versions": [
{
"version": "All versions < V3.2.7",
"status": "affected"
}
]
}
]Related
prion
prion
Information disclosure
2022-12-13 16:15:00
cve
cve
CVE-2022-46354
2022-12-13 16:15:25
nessus
nessus
cnvd
cnvd
nvd
nvd
CVE-2022-46354
2022-12-13 16:15:25
ics
ics
Siemens SCALANCE X-200RNA Switch Devices
2022-12-15 12:00:00