Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.TENABLE_OT_SIEMENS_CVE-2022-46140.NASL
HistoryJan 25, 2023 - 12:00 a.m.

Siemens in SCALANCE Products (CVE-2022-46140)

2023-01-2500:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
23
siemens
scalance products
weak encryption
authenticated attacker
debug information
software update
security guidelines

5.1 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

38.1%

JSON

Affected devices use a weak encryption scheme to encrypt the debug zip file. This could allow an authenticated attacker to decrypt the contents of the file and retrieve debug information about the system.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(500749);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/11");

  script_cve_id("CVE-2022-46140");

  script_name(english:"Siemens in SCALANCE Products (CVE-2022-46140)");

  script_set_attribute(attribute:"synopsis", value:
"The remote OT asset is affected by a vulnerability.");
  script_set_attribute(attribute:"description", value:
"Affected devices use a weak encryption scheme to encrypt the debug zip
file. This could allow an authenticated attacker to decrypt the
contents of the file and retrieve debug information about the system.

This plugin only works with Tenable.ot.
Please visit https://www.tenable.com/products/tenable-ot for more information.");
  script_set_attribute(attribute:"see_also", value:"https://cert-portal.siemens.com/productcert/pdf/ssa-413565.pdf");
  script_set_attribute(attribute:"see_also", value:"https://www.cisa.gov/news-events/ics-advisories/icsa-22-349-04");
  script_set_attribute(attribute:"solution", value:
"The following text was originally created by the Cybersecurity and Infrastructure Security Agency (CISA). The original
can be found at CISA.gov.

Siemens recommends updating to the latest version of its software where available:

- SCALANCE SC622-2C (6GK5622-2GS00-2AC2): Update to V2.3 or later
- SCALANCE SC622-2C (6GK5622-2GS00-2AC2) (Specifically CVE-2022-34821, CVE-2022-46142, CVE-2022-46143, CVE-2022-46144):
Update to V3.0 or later
- SCALANCE SC626-2C (6GK5626-2GS00-2AC2): Update to V2.3 or later
- SCALANCE SC626-2C (6GK5626-2GS00-2AC2) (Specifically for CVE-2022-34821, CVE-2022-46142, CVE-2022-46143,
CVE-2022-46144): Update to V3.0 or later
- SCALANCE SC632-2C (6GK5632-2GS00-2AC2): Update to V2.3 or later
- SCALANCE SC632-2C (6GK5632-2GS00-2AC2) (Specifically for CVE-2022-34821, CVE-2022-46142, CVE-2022-46143,
CVE-2022-46144): Update to V3.0 or later
- SCALANCE SC636-2C (6GK5636-2GS00-2AC2): Update to V2.3 or later
- SCALANCE SC636-2C (6GK5636-2GS00-2AC2) (Specifically for CVE-2022-34821, CVE-2022-46142, CVE-2022-46143,
CVE-2022-46144): Update to V3.0 or later
- SCALANCE SC642-2C (6GK5642-2GS00-2AC2): Update to V2.3 or later
- SCALANCE SC642-2C (6GK5642-2GS00-2AC2) (Specifically for CVE-2022-34821, CVE-2022-46142, CVE-2022-46143,
CVE-2022-46144): Update to V3.0 or later
- SCALANCE SC646-2C (6GK5646-2GS00-2AC2): Update to V2.3 or later
- SCALANCE SC646-2C (6GK5646-2GS00-2AC2) (Specifically for CVE-2022-34821, CVE-2022-46142, CVE-2022-46143,
CVE-2022-46144): Update to V3.0 or later

As a general security measure, Siemens recommends protecting network access to devices with appropriate mechanisms. To
operate the devices in a protected IT environment, Siemens recommends configuring the environment according to Siemensรขย€ย™
operational guidelines for industrial security and following recommendations in the product manuals.

Additional information on industrial security by Siemens can be found on the Siemens industrial security webpage

For more information, see the associated Siemens security advisory SSA-413565 in HTML and CSAF.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:C/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2022-46140");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(327);

  script_set_attribute(attribute:"vuln_publication_date", value:"2022/12/13");
  script_set_attribute(attribute:"patch_publication_date", value:"2022/12/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/01/25");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:ruggedcom_rm1224_lte_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_m804pb_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_m812-1_adsl-router_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_m816-1_adsl-router_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_m826-2_shdsl-router_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_m874-2_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_m874-3_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_m876-3_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_m876-4_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_mum853-1_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_mum856-1_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_s615_eec_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_s615_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_sc622-2c_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_sc626-2c_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_sc632-2c_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_sc636-2c_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_sc642-2c_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_sc646-2c_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w1748-1_m12_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w1788-1_m12_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w1788-2_eec_m12_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w1788-2_m12_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w1788-2ia_m12_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w721-1_rj45_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w722-1_rj45_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w734-1_rj45_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w738-1_m12_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w748-1_m12_firmware");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w761-1_rj45_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w774-1_m12_eec_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w774-1_m12_rj45_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w774-1_rj45_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w778-1_m12_eec_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w778-1_m12_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w786-1_rj45_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w786-2_rj45_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w786-2_sfp_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w786-2ia_rj45_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w788-1_m12_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w788-1_rj45_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w788-2_m12_eec_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w788-2_m12_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_w788-2_rj45_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_wam763-1_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_wam766-1_6ghz_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_wam766-1_ecc_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_wam766-1_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_wum763-1_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_wum766-1_6ghz_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_wum766-1_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xb205-3_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xb205-3ld_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xb208_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xb213-3_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xb213-3ld_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xb216_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc206-2_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc206-2g_poe_eec_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc206-2g_poe_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc206-2sfp_eec_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc206-2sfp_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc206-2sfp_g_eec_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc206-2sfp_g_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc208_eec_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc208_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc208_poe_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc216-3g_poe_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc216-4c_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc216-4c_g_eec_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc216-4c_g_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc216_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc216eec_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc224-4c_g_eec_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc224-4c_g_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xc224_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xf204-2ba_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xf204-2ba_dna_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xf204_dna_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xf204_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xm408-4c_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xm408-8c_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xm416-4c_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xp208_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xp208eec_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xp208poe_eec_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xp216_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xp216eec_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xp216poe_eec_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xr324wg_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xr326-2c_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xr326-2c_poe_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xr328-4c_wg_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xr524-8c_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xr526-8c_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xr528-6m_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:scalance_xr552-12m_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:siplus_net_scalance_xc206-2_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:siplus_net_scalance_xc206-2sfp_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:siplus_net_scalance_xc208_firmware:-");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:siemens:siplus_net_scalance_xc216-4c_firmware:-");
  script_set_attribute(attribute:"generated_plugin", value:"former");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Tenable.ot");

  script_copyright(english:"This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("tenable_ot_api_integration.nasl");
  script_require_keys("Tenable.ot/Siemens");

  exit(0);
}


include('tenable_ot_cve_funcs.inc');

get_kb_item_or_exit('Tenable.ot/Siemens');

var asset = tenable_ot::assets::get(vendor:'Siemens');

var vuln_cpes = {
    "cpe:/o:siemens:ruggedcom_rm1224_lte_firmware" :
        {"versionEndExcluding" : "7.2", "family" : "RuggedCom", "orderNumbers": ["6GK6108-4AM00-2BA2", "6GK6108-4AM00-2DA2"]},
    "cpe:/o:siemens:scalance_m804pb_firmware" :
        {"versionEndExcluding" : "7.2", "family" : "SCALANCEM", "orderNumbers": ["6GK5804-0AP00-2AA2"]},
    "cpe:/o:siemens:scalance_m812-1_adsl-router_firmware" :
        {"versionEndExcluding" : "7.2", "family" : "SCALANCEM", "orderNumbers": ["6GK5812-1AA00-2AA2", "6GK5812-1BA00-2AA2"]},
    "cpe:/o:siemens:scalance_m816-1_adsl-router_firmware" :
        {"versionEndExcluding" : "7.2", "family" : "SCALANCEM", "orderNumbers": ["6GK5816-1AA00-2AA2", "6GK5816-1BA00-2AA2"]},
    "cpe:/o:siemens:scalance_m826-2_shdsl-router_firmware" :
        {"versionEndExcluding" : "7.2", "family" : "SCALANCEM", "orderNumbers": ["6GK5826-2AB00-2AB2", "6GK5816-1BA00-2AA2"]},
    "cpe:/o:siemens:scalance_m874-2_firmware" :
        {"versionEndExcluding" : "7.2", "family" : "SCALANCEM", "orderNumbers": ["6GK5826-2AB00-2AB2"]},
    "cpe:/o:siemens:scalance_m874-3_firmware" :
        {"versionEndExcluding" : "7.2", "family" : "SCALANCEM", "orderNumbers": ["6GK5874-3AA00-2AA2"]},
    "cpe:/o:siemens:scalance_m876-3_firmware" :
        {"versionEndExcluding" : "7.2", "family" : "SCALANCEM", "orderNumbers": ["6GK5876-3AA02-2BA2", "6GK5876-3AA02-2EA2"]},
    "cpe:/o:siemens:scalance_m876-4_firmware" :
        {"versionEndExcluding" : "7.2", "family" : "SCALANCEM", "orderNumbers": ["6GK5876-4AA10-2BA2", "6GK5876-4AA00-2BA2", "6GK5876-4AA00-2DA2"]},
    "cpe:/o:siemens:scalance_mum853-1_firmware" :
        {"versionEndExcluding" : "7.2", "family" : "SCALANCEM", "orderNumbers": ["6GK5853-2EA00-2DA1"]},
    "cpe:/o:siemens:scalance_mum856-1_firmware" :
        {"versionEndExcluding" : "7.2", "family" : "SCALANCEM", "orderNumbers": ["6GK5856-2EA00-3DA1", "6GK5856-2EA00-3AA1"]},
    "cpe:/o:siemens:scalance_s615_firmware" :
        {"versionEndExcluding" : "7.2", "family" : "SCALANCES", "orderNumbers": ["6GK5615-0AA00-2AA2"]},
    "cpe:/o:siemens:scalance_s615_eec_firmware" :
        {"versionEndExcluding" : "7.2", "family" : "SCALANCES", "orderNumbers": ["6GK5615-0AA01-2AA2"]},
    "cpe:/o:siemens:scalance_sc622-2c_firmware" :
        {"versionEndExcluding" : "3.0", "family" : "SCALANCES", "orderNumbers": ["6GK5622-2GS00-2AC2"]},
    "cpe:/o:siemens:scalance_sc626-2c_firmware" :
        {"versionEndExcluding" : "3.0", "family" : "SCALANCES", "orderNumbers": ["6GK5626-2GS00-2AC2"]},
    "cpe:/o:siemens:scalance_sc632-2c_firmware" :
        {"versionEndExcluding" : "3.0", "family" : "SCALANCES", "orderNumbers": ["6GK5632-2GS00-2AC2"]},
    "cpe:/o:siemens:scalance_sc636-2c_firmware" :
        {"versionEndExcluding" : "3.0", "family" : "SCALANCES", "orderNumbers": ["6GK5636-2GS00-2AC2"]},
    "cpe:/o:siemens:scalance_sc642-2c_firmware" :
        {"versionEndExcluding" : "3.0", "family" : "SCALANCES", "orderNumbers": ["6GK5642-2GS00-2AC2"]},
    "cpe:/o:siemens:scalance_sc646-2c_firmware" :
        {"versionEndExcluding" : "3.0", "family" : "SCALANCES", "orderNumbers": ["6GK5646-2GS00-2AC2"]},
    "cpe:/o:siemens:scalance_w721-1_rj45_firmware" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5721-1FC00-0AA0"]},
    "cpe:/o:siemens:scalance_w722-1_rj45_firmware" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5722-1FC00-0AA0", "6GK5722-1FC00-0AC0"]},
    "cpe:/o:siemens:scalance_w734-1_rj45_firmware" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5734-1FX00-0AA0", "6GK5734-1FX00-0AA6", "6GK5734-1FX00-0AB6"]},
    "cpe:/o:siemens:scalance_w738-1_m12_firmware" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5738-1GY00-0AA0", "6GK5738-1GY00-0AB0"]},
    "cpe:/o:siemens:scalance_w748-1_m12_firmware" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5748-1GD00-0AA0", "6GK5748-1GD00-0AB0"]},
    "cpe:/o:siemens:scalance_w761-1_rj45_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5761-1FC00-0AA0", "6GK5761-1FC00-0AB0"]},
    "cpe:/o:siemens:scalance_w774-1_m12_eec_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5774-1FY00-0TA0", "6GK5774-1FY00-0TB0"]},
    "cpe:/o:siemens:scalance_w774-1_m12_rj45_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5774-1FX00-0AA0", "6GK5774-1FX00-0AA6"]},
    "cpe:/o:siemens:scalance_w774-1_rj45_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5774-1FX00-0AB0", "6GK5774-1FX00-0AC0"]},
    "cpe:/o:siemens:scalance_w778-1_m12_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5778-1GY00-0AA0", "6GK5778-1GY00-0AB0"]},
    "cpe:/o:siemens:scalance_w778-1_m12_eec_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5778-1GY00-0TA0", "6GK5778-1GY00-0TB0"]},
    "cpe:/o:siemens:scalance_w786-1_rj45_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5786-1FC00-0AA0", "6GK5786-1FC00-0AB0"]},
    "cpe:/o:siemens:scalance_w786-2_rj45_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5786-2FC00-0AA0", "6GK5786-2FC00-0AB0", "6GK5786-2FC00-0AC0"]},
    "cpe:/o:siemens:scalance_w786-2_sfp_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5786-2FE00-0AA0", "6GK5786-2FE00-0AB0"]},
    "cpe:/o:siemens:scalance_w786-2ia_rj45_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5786-2HC00-0AA0", "6GK5786-2HC00-0AB0"]},
    "cpe:/o:siemens:scalance_w788-1_m12_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5788-1GD00-0AA0", "6GK5788-1GD00-0AB0"]},
    "cpe:/o:siemens:scalance_w788-1_rj45_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5788-1FC00-0AA0", "6GK5788-1FC00-0AB0"]},
    "cpe:/o:siemens:scalance_w788-2_m12_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5788-2GD00-0AA0", "6GK5788-2GD00-0AB0"]},
    "cpe:/o:siemens:scalance_w788-2_m12_eec_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5788-2GD00-0TA0", "6GK5788-2GD00-0TB0", "6GK5788-2GD00-0TC0"]},
    "cpe:/o:siemens:scalance_w788-2_rj45_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5788-2FC00-0AA0", "6GK5788-2FC00-0AB0", "6GK5788-2FC00-0AC0"]},
    "cpe:/o:siemens:scalance_w1748-1_m12_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5748-1GY01-0AA0", "6GK5748-1GY01-0TA0"]},
    "cpe:/o:siemens:scalance_w1788-1_m12_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5788-1GY01-0AA0"]},
    "cpe:/o:siemens:scalance_w1788-2_eec_m12_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5788-2GY01-0TA0"]},
    "cpe:/o:siemens:scalance_w1788-2_m12_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5788-2GY01-0AA0"]},
    "cpe:/o:siemens:scalance_w1788-2ia_m12_firmware:-" :
        {"family" : "SCALANCEW", "orderNumbers": ["6GK5788-2HY01-0AA0"]},
    "cpe:/o:siemens:scalance_wam763-1_firmware:-" :
        {"versionEndExcluding" : "2.0", "family" : "SCALANCEW", "orderNumbers": ["6GK5763-1AL00-7DA0"]},
    "cpe:/o:siemens:scalance_wam766-1_firmware:-" :
        {"versionEndExcluding" : "2.0", "family" : "SCALANCEW", "orderNumbers": ["6GK5766-1GE00-7DA0", "6GK5766-1GE00-7DB0"]},
    "cpe:/o:siemens:scalance_wam766-1_ecc_firmware:-" :
        {"versionEndExcluding" : "2.0", "family" : "SCALANCEW", "orderNumbers": ["6GK5766-1GE00-7TA0", "6GK5766-1GE00-7TB0"]},
    "cpe:/o:siemens:scalance_wum763-1_firmware:-" :
        {"versionEndExcluding" : "2.0", "family" : "SCALANCEW", "orderNumbers": ["6GK5763-1AL00-3AA0", "6GK5763-1AL00-3DA0"]},
    "cpe:/o:siemens:scalance_wum766-1_firmware:-" :
        {"versionEndExcluding" : "2.0", "family" : "SCALANCEW", "orderNumbers": ["6GK5766-1GE00-3DA0", "6GK5766-1GE00-3DB0"]},
    "cpe:/o:siemens:scalance_xb205-3_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5205-3BB00-2AB2", "6GK5205-3BB00-2TB2", "6GK5205-3BD00-2TB2", "6GK5205-3BD00-2AB2"]},
    "cpe:/o:siemens:scalance_xb205-3ld_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5205-3BF00-2TB2", "6GK5205-3BF00-2AB2"]},
    "cpe:/o:siemens:scalance_xb208_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5208-0BA00-2TB2", "6GK5208-0BA00-2AB2"]},
    "cpe:/o:siemens:scalance_xb213-3_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5213-3BD00-2TB2", "6GK5213-3BD00-2AB2", "6GK5213-3BB00-2TB2", "6GK5213-3BB00-2AB2"]},
    "cpe:/o:siemens:scalance_xb213-3ld_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5213-3BF00-2TB2", "6GK5213-3BF00-2AB2"]},
    "cpe:/o:siemens:scalance_xb216_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5216-0BA00-2TB2", "6GK5216-0BA00-2AB2"]},
    "cpe:/o:siemens:scalance_xc206-2_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5206-2BD00-2AC2", "6GK5206-2BB00-2AC2"]},
    "cpe:/o:siemens:scalance_xc206-2g_poe_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5206-2RS00-2AC2", "6GK5206-2RS00-5AC2"]},
    "cpe:/o:siemens:scalance_xc206-2g_poe_eec_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5206-2RS00-5FC2"]},
    "cpe:/o:siemens:scalance_xc206-2sfp_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5206-2BS00-2AC2"]},
    "cpe:/o:siemens:scalance_xc206-2sfp_eec_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5206-2BS00-2FC2"]},
    "cpe:/o:siemens:scalance_xc206-2sfp_g_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5206-2GS00-2AC2", "6GK5206-2GS00-2TC2"]},
    "cpe:/o:siemens:scalance_xc206-2sfp_g_eec_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5206-2GS00-2FC2"]},
    "cpe:/o:siemens:scalance_xc208_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5208-0BA00-2AC2"]},
    "cpe:/o:siemens:scalance_xc208_eec_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5208-0BA00-2FC2"]},
    "cpe:/o:siemens:scalance_xc208g_firmware:-" :
        {"versionEndExcluding" : "4.4", "versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5208-0GA00-2TC2"]},
    "cpe:/o:siemens:scalance_xc208g_eecfirmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5208-0GA00-2FC2"]},
    "cpe:/o:siemens:scalance_xc208g_poe_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5208-0RA00-2AC2"]},
    "cpe:/o:siemens:scalance_xc216_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5216-0BA00-2AC2"]},
    "cpe:/o:siemens:scalance_xc216-3g_poe_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5216-3RS00-2AC2", "6GK5216-3RS00-5AC2"]},
    "cpe:/o:siemens:scalance_xc216-4c_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5216-4BS00-2AC2"]},
    "cpe:/o:siemens:scalance_xc216-4c_g_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5216-4GS00-2AC2", "6GK5216-4GS00-2TC2"]},
    "cpe:/o:siemens:scalance_xc216-4c_g_eec_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5216-4GS00-2FC2"]},
    "cpe:/o:siemens:scalance_xc216eec_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5216-0BA00-2FC2"]},
    "cpe:/o:siemens:scalance_xc224_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5224-0BA00-2AC2"]},
    "cpe:/o:siemens:scalance_xc224-4c_g_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5224-4GS00-2AC2", "6GK5224-4GS00-2TC2"]},
    "cpe:/o:siemens:scalance_xc224-4c_g_eec_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5224-4GS00-2FC2"]},
    "cpe:/o:siemens:scalance_xf204_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5204-0BA00-2GF2"]},
    "cpe:/o:siemens:scalance_xf204_dna_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5204-0BA00-2YF2"]},
    "cpe:/o:siemens:scalance_xf204-2ba_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5204-2AA00-2GF2"]},
    "cpe:/o:siemens:scalance_xf204-2ba_dna_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5204-2AA00-2YF2"]},
    "cpe:/o:siemens:scalance_xm408-4c_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX400", "orderNumbers": ["6GK5408-4GP00-2AM2", "6GK5408-4GQ00-2AM2"]},
    "cpe:/o:siemens:scalance_xm408-8c_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX400", "orderNumbers": ["6GK5408-8GS00-2AM2", "6GK5408-8GR00-2AM2"]},
    "cpe:/o:siemens:scalance_xm416-4c_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX400", "orderNumbers": ["6GK5416-4GS00-2AM2", "6GK5416-4GR00-2AM2"]},
    "cpe:/o:siemens:scalance_xp208_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5208-0HA00-2AS6", "6GK5208-0HA00-2TS6"]},
    "cpe:/o:siemens:scalance_xp208eec_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5208-0HA00-2ES6"]},
    "cpe:/o:siemens:scalance_xp208poe_eec_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5208-0UA00-5ES6"]},
    "cpe:/o:siemens:scalance_xp216_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5216-0HA00-2AS6", "6GK5216-0HA00-2TS6"]},
    "cpe:/o:siemens:scalance_xp216eec_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5216-0HA00-2ES6"]},
    "cpe:/o:siemens:scalance_xp216poe_eec_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX200", "orderNumbers": ["6GK5216-0UA00-5ES6"]},
    "cpe:/o:siemens:scalance_xr324wg_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX300", "orderNumbers": ["6GK5324-0BA00-3AR3", "6GK5324-0BA00-2AR3"]},
    "cpe:/o:siemens:scalance_xr326-2c_poe_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX300", "orderNumbers": ["6GK5326-2QS00-3AR3", "6GK5326-2QS00-3RR3"]},
    "cpe:/o:siemens:scalance_xr328-4c_wg_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX300", "orderNumbers": ["6GK5328-4FS00-3AR3", "6GK5328-4FS00-3RR3", "6GK5328-4FS00-2AR3", "6GK5328-4FS00-2RR3", "6GK5328-4SS00-3AR3", "6GK5328-4SS00-2AR3"]},
    "cpe:/o:siemens:scalance_xr524-8c_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX500", "orderNumbers": ["6GK5524-8GS00-3AR2", "6GK5524-8GR00-3AR2", "6GK5524-8GS00-4AR2", "6GK5524-8GR00-4AR2", "6GK5524-8GS00-2AR2", "6GK5524-8GR00-2AR2"]},
    "cpe:/o:siemens:scalance_xr526-8c_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX500", "orderNumbers": ["6GK5526-8GS00-3AR2", "6GK5526-8GR00-3AR2", "6GK5526-8GR00-4AR2", "6GK5526-8GS00-4AR2", "6GK5526-8GS00-2AR2", "6GK5526-8GR00-2HR2"]},
    "cpe:/o:siemens:scalance_xr528-6m_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX500", "orderNumbers": ["6GK5528-0AA00-2HR2", "6GK5528-0AR00-2HR2", "6GK5528-0AA00-2AR2", "6GK5528-0AR00-2AR2"]},
    "cpe:/o:siemens:scalance_xr552-12m_firmware:-" :
        {"versionEndExcluding" : "4.4", "family" : "SCALANCEX500", "orderNumbers": ["6GK5552-0AA00-2HR2", "6GK5552-0AR00-2HR2", "6GK5552-0AR00-2AR2", "6GK5552-0AA00-2AR2"]}
};

tenable_ot::cve::compare_and_report(asset:asset, cpes:vuln_cpes, severity:SECURITY_WARNING);
VendorProductVersionCPE
siemensscalance_s615_firmwarecpe:/o:siemens:scalance_s615_firmware
siemensscalance_sc622-2c_firmwarecpe:/o:siemens:scalance_sc622-2c_firmware
siemensscalance_sc632-2c_firmwarecpe:/o:siemens:scalance_sc632-2c_firmware
siemensscalance_sc636-2c_firmwarecpe:/o:siemens:scalance_sc636-2c_firmware
siemensscalance_sc642-2c_firmwarecpe:/o:siemens:scalance_sc642-2c_firmware
siemensscalance_sc646-2c_firmwarecpe:/o:siemens:scalance_sc646-2c_firmware
siemensscalance_m804pb_firmwarecpe:/o:siemens:scalance_m804pb_firmware
siemensscalance_m874-2_firmwarecpe:/o:siemens:scalance_m874-2_firmware
siemensscalance_m874-3_firmwarecpe:/o:siemens:scalance_m874-3_firmware
siemensscalance_m876-3_firmwarecpe:/o:siemens:scalance_m876-3_firmware
Rows per page:
1-10 of 1011

Related

ics 4
nessus 4
nvd 5
cve 5
cvelist 5
prion 5
cnvd 1
ics
ics
Siemens Multiple Vulnerabilities in SCALANCE Products
2022-12-15 12:00:00
Siemens SRCS VPN Feature in SIMATIC CP Devices (Update A)
2022-08-11 12:00:00
Siemens SCALANCE W700
2024-06-13 12:00:00
nessus
nessus
Siemens in SCALANCE Products (CVE-2022-46144)
2023-08-03 00:00:00
Siemens in SCALANCE Products (CVE-2022-46143)
2023-01-25 00:00:00
Siemens in SCALANCE Products (CVE-2022-46142)
2023-01-25 00:00:00
nvd
nvd
CVE-2022-46140
2022-12-13 16:15:25
CVE-2022-34821
2022-07-12 10:15:12
CVE-2022-46144
2022-12-13 16:15:25
cve
cve
CVE-2022-46140
2022-12-13 16:15:25
CVE-2022-34821
2022-07-12 10:15:12
CVE-2022-46142
2022-12-13 16:15:25
cvelist
cvelist
CVE-2022-46140
2022-12-13 00:00:00
CVE-2022-46142
2022-12-13 00:00:00
CVE-2022-34821
2022-07-12 00:00:00
prion
prion
Information disclosure
2022-12-13 16:15:00
Code injection
2022-07-12 10:15:00
Design/Logic Flaw
2022-12-13 16:15:00
cnvd
cnvd
Siemens SCALANCE M-800/S615 Series Information Disclosure Vulnerability
2022-12-14 00:00:00

5.1 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

38.1%

JSON
Related for TENABLE_OT_SIEMENS_CVE-2022-46140.NASL
ics4nessus4nvd5cve5cvelist5prion5cnvd1