EUVD-2023-32658

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

Vulnerability in SCALANCE devices allows unauthorized data access via weak SSH ciphers before V5.5.2.

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2023-29054	11 Apr 202314:23	–	circl
CNNVD	Siemens SCALANCE 加密问题漏洞	11 Apr 202300:00	–	cnnvd
CVE	CVE-2023-29054	11 Apr 202309:03	–	cve
Cvelist	CVE-2023-29054	11 Apr 202309:03	–	cvelist
ICS	Siemens SCALANCE X-200IRT Devices	11 Apr 202300:00	–	ics
NCSC	Vulnerabilities fixed in Siemens products	11 Apr 202300:00	–	ncsc
NVD	CVE-2023-29054	11 Apr 202310:15	–	nvd
Prion	Design/Logic Flaw	11 Apr 202310:15	–	prion
RedhatCVE	CVE-2023-29054	23 May 202501:46	–	redhatcve
Tenable Nessus	Siemens SCALANCE X-200IRT Devices Inadequate Encryption Strength (CVE-2023-29054)	21 Apr 202300:00	–	nessus

[
  {
    "enisaIdVendor": [
      {
        "id": "4396396d-4f28-3542-af9b-540ca68a0b92",
        "vendor": {
          "name": "Siemens"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "1711da32-6f34-3332-962f-cbb5957facd4",
        "product": {
          "name": "SCALANCE X202-2P IRT PRO"
        },
        "product_version": "All versions < V5.5.2"
      },
      {
        "id": "1dfcaf81-89e6-3316-944f-4600636fe8d3",
        "product": {
          "name": "SCALANCE X200-4P IRT"
        },
        "product_version": "All versions < V5.5.2"
      },
      {
        "id": "25ba3fa6-58f4-3a13-a807-b01afcf8f544",
        "product": {
          "name": "SCALANCE X202-2IRT"
        },
        "product_version": "All versions < V5.5.2"
      },
      {
        "id": "4946ba1c-100f-3c89-8e2d-a50574f84a10",
        "product": {
          "name": "SCALANCE X201-3P IRT"
        },
        "product_version": "All versions < V5.5.2"
      },
      {
        "id": "5b753194-1d57-3f32-8c31-f3d85a04611d",
        "product": {
          "name": "SCALANCE X204IRT"
        },
        "product_version": "All versions < V5.5.2"
      },
      {
        "id": "5d13b761-7e66-335a-8c4d-c7ed7fecb2e0",
        "product": {
          "name": "SCALANCE X202-2P IRT"
        },
        "product_version": "All versions < V5.5.2"
      },
      {
        "id": "7b041b2f-fa2b-3961-8ecb-6c20f4a596e2",
        "product": {
          "name": "SCALANCE XF202-2P IRT"
        },
        "product_version": "All versions < V5.5.2"
      },
      {
        "id": "9a7812b9-2eb3-3bd1-940a-45875e177720",
        "product": {
          "name": "SCALANCE X204IRT PRO"
        },
        "product_version": "All versions < V5.5.2"
      },
      {
        "id": "9e2d69a5-5046-3f78-98ff-e515a0ac7f04",
        "product": {
          "name": "SCALANCE XF201-3P IRT"
        },
        "product_version": "All versions < V5.5.2"
      },
      {
        "id": "a2955b85-f530-3b7f-8337-b618e4581909",
        "product": {
          "name": "SCALANCE X201-3P IRT PRO"
        },
        "product_version": "All versions < V5.5.2"
      },
      {
        "id": "c6c9c3a7-b10e-389c-827d-3a90231168dc",
        "product": {
          "name": "SCALANCE XF204IRT"
        },
        "product_version": "All versions < V5.5.2"
      },
      {
        "id": "f860c65d-3533-38e0-8c72-fe068298ee2f",
        "product": {
          "name": "SCALANCE XF204-2BA IRT"
        },
        "product_version": "All versions < V5.5.2"
      },
      {
        "id": "fdff2e1b-114c-32bf-b2bd-f862b748400f",
        "product": {
          "name": "SIPLUS NET SCALANCE X202-2P IRT"
        },
        "product_version": "All versions < V5.5.2"
      }
    ]
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-479249.pdf

03 Oct 2025 20:07Current

7.4High risk

Vulners AI Score7.4

CVSS 3.16.7 - 7.4

EPSS0.00155

SSVC

vulnerability scalance devices weak ciphers ssh access unauthorized data