Lucene search
K

81 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 4:36 p.m.8 views

CVE-2020-28395

A vulnerability has been identified in SCALANCE X-200RNA switch family All versions V3.2.7, SCALANCE X-300 switch family incl. X408 and SIPLUS NET variants All versions V4.1.0. Devices do not create a new unique private key after factory reset. An attacker could leverage this situation to a...

5.9CVSS6.5AI score0.01176EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.6 views

Siemens SCALANCE X-200RNA Switch Devices Exposure of Sensitive Information to an Unauthorized Actor (CVE-2016-0701)

The DHcheckpubkey function in crypto/dh/dhcheck.c in OpenSSL 1.0.2 before 1.0.2f does not ensure that prime numbers are appropriate for Diffie-Hellman DH key exchange, which makes it easier for remote attackers to discover a private DH exponent by making multiple handshakes with a peer that chose...

3.7CVSS6.4AI score0.83645EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.9 views

Siemens SCALANCE X-200RNA Switch Devices Integer Overflow or Wraparound (CVE-2016-2106)

Integer overflow in the EVPEncryptUpdate function in crypto/evp/evpenc.c in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h allows remote attackers to cause a denial of service heap memory corruption via a large amount of data. This plugin only works with Tenable.ot. Please visit...

7.5CVSS7.3AI score0.27261EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.9 views

Siemens SCALANCE X-200RNA Switch Devices Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2016-2108)

The ASN.1 implementation in OpenSSL before 1.0.1o and 1.0.2 before 1.0.2c allows remote attackers to execute arbitrary code or cause a denial of service buffer underflow and memory corruption via an ANY field in crafted serialized data, aka the negative zero issue. This plugin only works with...

10CVSS8.2AI score0.77906EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.5 views

Siemens SCALANCE X-200RNA Switch Devices Out-of-bounds Write (CVE-2016-6303)

Integer overflow in the MDC2Update function in crypto/mdc2/mdc2dgst.c in OpenSSL before 1.1.0 allows remote attackers to cause a denial of service out-of-bounds write and application crash or possibly have unspecified other impact via unknown vectors. This plugin only works with Tenable.ot. Pleas...

9.8CVSS7.6AI score0.31985EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.9 views

Siemens SCALANCE X-200RNA Switch Devices Exposure of Sensitive Information to an Unauthorized Actor (CVE-2015-3197)

ssl/s2srvr.c in OpenSSL 1.0.1 before 1.0.1r and 1.0.2 before 1.0.2f does not prevent use of disabled ciphers, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanisms by performing computations on SSLv2 traffic, related to the getclientmasterkey and...

5.9CVSS7.7AI score0.10731EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.12 views

Siemens SCALANCE X-200RNA Switch Devices Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2017-3735)

While parsing an IPAddressFamily extension in an X.509 certificate, it is possible to do a one-byte overread. This would result in an incorrect text display of the certificate. This bug has been present since 2006 and is present in all versions of OpenSSL before 1.0.2m and 1.1.0g. This plugin onl...

5.3CVSS6.3AI score0.17699EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.9 views

Siemens SCALANCE X-200RNA Switch Devices Exposure of Sensitive Information to an Unauthorized Actor (CVE-2015-3193)

The Montgomery squaring implementation in crypto/bn/asm/x8664-mont5.pl in OpenSSL 1.0.2 before 1.0.2e on the x8664 platform, as used by the BNmodexp function, mishandles carry propagation and produces incorrect output, which makes it easier for remote attackers to obtain sensitive private-key...

7.5CVSS6.9AI score0.25137EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.15 views

Siemens SCALANCE X-200RNA Switch Devices Exposure of Sensitive Information to an Unauthorized Actor (CVE-2016-6210)

sshd in OpenSSH before 7.3, when SHA256 or SHA512 are used for user password hashing, uses BLOWFISH hashing on a static password when the username does not exist, which allows remote attackers to enumerate users by leveraging the timing difference between responses when a large password is...

5.9CVSS6.7AI score0.88944EPSS
Exploits12References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.10 views

Siemens SCALANCE X-200RNA Switch Devices Improper Input Validation (CVE-2016-6302)

The tlsdecryptticket function in ssl/t1lib.c in OpenSSL before 1.1.0 does not consider the HMAC size during validation of the ticket length, which allows remote attackers to cause a denial of service via a ticket that is too short. This plugin only works with Tenable.ot. Please visit...

7.5CVSS7.4AI score0.26441EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.7 views

Siemens SCALANCE X-200RNA Switch Devices Improper Input Validation (CVE-2015-6563)

The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITORREQPAMINITCTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafte...

6.4CVSS6.2AI score0.00378EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.9 views

Siemens SCALANCE X-200RNA Switch Devices Resource Management Errors (CVE-2016-8858)

DISPUTED The kexinputkexinit function in kex.c in OpenSSH 6.x and 7.x through 7.3 allows remote attackers to cause a denial of service memory consumption by sending many duplicate KEXINIT requests. NOTE: a third party reports that OpenSSH upstream does not consider this as a security issue. This...

7.8CVSS7.5AI score0.29462EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.8 views

Siemens SCALANCE X-200RNA Switch Devices Concurrent Execution using Shared Resource with Improper Synchronization (CVE-2015-1791)

Race condition in the ssl3getnewsessionticket function in ssl/s3clnt.c in OpenSSL before 0.9.8zg, 1.0.0 before 1.0.0s, 1.0.1 before 1.0.1n, and 1.0.2 before 1.0.2b, when used for a multi-threaded client, allows remote attackers to cause a denial of service double free and application crash or...

6.8CVSS7.6AI score0.15968EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.12 views

Siemens SCALANCE X-200RNA Switch Devices Out-of-bounds Read (CVE-2016-6306)

The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service out- of-bounds read via crafted certificate operations, related to s3clnt.c and s3srvr.c. This plugin only works with Tenable.ot. Please visit...

5.9CVSS7.4AI score0.41683EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.7 views

Siemens SCALANCE X-200RNA Switch Devices Integer Overflow or Wraparound (CVE-2016-2177)

OpenSSL through 1.0.2h incorrectly uses pointer arithmetic for heap- buffer boundary checks, which might allow remote attackers to cause a denial of service integer overflow and application crash or possibly have unspecified other impact by leveraging unexpected malloc behavior, related to...

9.8CVSS8.1AI score0.44505EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.5 views

Siemens SCALANCE X-200RNA Switch Devices NULL Pointer Dereference (CVE-2015-0289)

The PKCS7 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not properly handle a lack of outer ContentInfo, which allows attackers to cause a denial of service NULL pointer dereference and application crash by leveraging an applicati...

5CVSS7AI score0.0837EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.12 views

Siemens SCALANCE X-200RNA Switch Devices Improper Access Control (CVE-2016-10011)

authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process. This plugin only works with Tenable.ot. Please visi...

6.2CVSS6.9AI score0.01101EPSS
Exploits1References8
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.11 views

Siemens SCALANCE X-200RNA Switch Devices Incorrect Permission Assignment for Critical Resource (CVE-2017-15906)

The processopen function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information...

5.3CVSS6.3AI score0.03359EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.20 views

Siemens SCALANCE X-200RNA Switch Devices Improper Authentication (CVE-2016-1908)

The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control decisions, which allows remote X11 clients to trigger a fallback and obtain trusted X11 forwarding privileges by leveraging configuration issues ...

9.8CVSS7AI score0.13736EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/13 12:0 a.m.6 views

Siemens SCALANCE X-200RNA Switch Devices Exposure of Sensitive Information to an Unauthorized Actor (CVE-2016-2107)

The AES-NI implementation in OpenSSL before 1.0.1t and 1.0.2 before 1.0.2h does not consider memory allocation during a certain padding check, which allows remote attackers to obtain sensitive cleartext information via a padding-oracle attack against an AES CBC session. NOTE: this vulnerability...

5.9CVSS7.4AI score0.89058EPSS
Exploits6References4
Rows per page
Query Builder