3 matches found
Siemens SCALANCE X Switches Use of Hard-Coded Cryptographic Key (CVE-2020-28391)
A vulnerability has been identified in SCALANCE X-200 switch family incl. SIPLUS NET variants All versions V5.2.5, SCALANCE X-200IRT switch family incl. SIPLUS NET variants All versions V5.5.0, SCALANCE X-200RNA switch family All versions V3.2.7. Devices create a new unique key upon factory reset...
CVE-2020-28391
creationtimestamp| type| source ---|---|--- 2021-01-13 00:47:29+00:00| seen| https://t.me/cibsecurity/22067...
CVE-2020-28391
Summary: CVE-2020-28391 affects Siemens SCALANCE X switches (X-200, X-200IRT, X-200RNA; incl. SIPLUS NET variants). Root cause: after factory reset, devices normally generate a new unique key, but when used with C-PLUG they ship a hardcoded private RSA key, enabling a man-in-the-middle and decryp...