Scalance S615 Firmware Security Vulnerabilities and Issues — Scalance S615 Firmware CVE List

Lucene search

SiemensScalance S615 Firmware

24 matches found

CVE•added 2021/03/25 3:15 p.m.•749 views

CVE-2021-3449

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a...

5.9CVSS6.7AI score0.15517EPSS

CVE•added 2018/09/06 9:29 p.m.•636 views

CVE-2018-5391

The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation hav...

7.8CVSS7.7AI score0.01732EPSS

CVE•added 2017/10/04 1:29 a.m.•577 views

CVE-2017-14491

Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.

9.8CVSS9.1AI score0.52378EPSS

CVE•added 2021/08/05 9:15 p.m.•379 views

CVE-2021-22924

libcurl keeps previously used connections in a connection pool for subsequenttransfers to reuse, if one of them matches the setup.Due to errors in the logic, the config matching function did not take 'issuercert' into account and it compared the involved paths case insensitively ,which could lead t...

4.3CVSS5.7AI score0.00835EPSS

CVE•added 2017/05/11 1:29 a.m.•129 views

CVE-2017-2680

Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment (Layer 2). Human interaction is required to recover the systems. PROFIBUS interfaces are not affected.

7.1CVSS6AI score0.02335EPSS

CVE•added 2021/07/13 11:15 a.m.•120 views

CVE-2020-28400

Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a denial of service condition. The vulnerability can be triggered if a large amount of DCP reset packets are sent to the device.

8.7CVSS7.5AI score0.00903EPSS

CVE•added 2020/02/11 4:15 p.m.•115 views

CVE-2019-13946

Profinet-IO (PNIO) stack versions prior V06.00 do not properly limitinternal resource allocation when multiple legitimate diagnostic packagerequests are sent to the DCE-RPC interface.This could lead to a denial of service condition due to lack of memoryfor devices that include a vulnerable version ...

7.8CVSS7.4AI score0.00552EPSS

CVE•added 2022/08/10 12:15 p.m.•102 views

CVE-2022-36323

Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker with administrative privileges to inject code or spawn a system root shell.

9.1CVSS9AI score0.00373EPSS

CVE•added 2022/08/10 12:15 p.m.•93 views

CVE-2022-36325

Affected devices do not properly sanitize data introduced by an user when rendering the web interface. This could allow an authenticated remote attacker with administrative privileges to inject code and lead to a DOM-based XSS.

6.8CVSS5.2AI score0.00137EPSS

CVE•added 2017/05/11 10:29 a.m.•83 views

CVE-2017-2681

Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected.

7.1CVSS6.1AI score0.00442EPSS

CVE•added 2022/08/10 12:15 p.m.•83 views

CVE-2022-36324

Affected devices do not properly handle the renegotiation of SSL/TLS parameters. This could allow an unauthenticated remote attacker to bypass the TCP brute force prevention and lead to a denial of service condition for the duration of the attack.

7.5CVSS7.6AI score0.00067EPSS

CVE•added 2022/12/13 4:15 p.m.•79 views

CVE-2022-46142

Affected devices store the CLI user passwords encrypted in flash memory. Attackers with physical access to the device could retrieve the file and decrypt the CLI user passwords.

5.7CVSS5.3AI score0.0006EPSS

CVE•added 2022/12/13 4:15 p.m.•77 views

CVE-2022-46140

Affected devices use a weak encryption scheme to encrypt the debug zip file. This could allow an authenticated attacker to decrypt the contents of the file and retrieve debug information about the system.

7.1CVSS6.2AI score0.00087EPSS

CVE•added 2022/12/13 4:15 p.m.•70 views

CVE-2022-46143

Affected devices do not check the TFTP blocksize correctly. This could allow an authenticated attacker to read from an uninitialized buffer that potentially contains previously allocated data.

5.1CVSS3.7AI score0.00216EPSS

CVE•added 2022/10/11 11:15 a.m.•65 views

CVE-2022-31766

A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V7.1.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V7.1.2), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V7.1.2), SCALANCE M812-1 ADSL-Router (6GK5812-1AA...

8.6CVSS8.4AI score0.00282EPSS

CVE•added 2021/03/15 5:15 p.m.•56 views

CVE-2021-25667

A vulnerability has been identified in RUGGEDCOM RM1224 (All versions >= V4.3 and < V6.4), SCALANCE M-800 (All versions >= V4.3 and < V6.4), SCALANCE S615 (All versions >= V4.3 and < V6.4), SCALANCE SC-600 Family (All versions >= V2.0 and < V2.1.3), SCALANCE XB-200 (All vers...

8.8CVSS8.8AI score0.00907EPSS

CVE•added 2021/03/15 5:15 p.m.•50 views

CVE-2021-25676

A vulnerability has been identified in RUGGEDCOM RM1224 (V6.3), SCALANCE M-800 (V6.3), SCALANCE S615 (V6.3), SCALANCE SC-600 (All Versions >= V2.1 and < V2.1.3). Multiple failed SSH authentication attempts could trigger a temporary Denial-of-Service under certain conditions. When triggered, t...

7.5CVSS7.4AI score0.00242EPSS

CVE•added 2016/09/29 10:59 a.m.•45 views

CVE-2016-7090

The integrated web server on Siemens SCALANCE M-800 and S615 modules with firmware before 4.02 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.

4.3CVSS4.3AI score0.00498EPSS

CVE•added 2024/11/12 1:15 p.m.•44 views

CVE-2024-50572

A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V8.2), RUGGEDCOM RM1224 LTE(4G) NAM (6GK6108-4AM00-2DA2) (All versions < V8.2), SCALANCE M804PB (6GK5804-0AP00-2AA2) (All versions < V8.2), SCALANCE M812-1 ADSL-Router (6GK5812-1AA00-2AA...

8.6CVSS6.8AI score0.00488EPSS

CVE•added 2024/11/12 1:15 p.m.•41 views

CVE-2024-50559

5.1CVSS6.8AI score0.00042EPSS

CVE•added 2024/11/12 1:15 p.m.•41 views

CVE-2024-50561

6.1CVSS5.1AI score0.00069EPSS

CVE•added 2024/11/12 1:15 p.m.•40 views

CVE-2024-50557

9.8CVSS8AI score0.00695EPSS

CVE•added 2024/11/12 1:15 p.m.•37 views

CVE-2024-50560