Scalance Xc206-2g Poe Eec Firmware@- Security Vulnerabilities and Issues — Scalance Xc206-2g Poe Eec Firmware@- CVE List

Lucene search

SiemensScalance Xc206-2g Poe Eec Firmware-

3 matches found

CVE•added 2022/12/13 4:15 p.m.•79 views

CVE-2022-46142

Affected devices store the CLI user passwords encrypted in flash memory. Attackers with physical access to the device could retrieve the file and decrypt the CLI user passwords.

5.7CVSS5.3AI score0.0006EPSS

CVE•added 2022/12/13 4:15 p.m.•77 views

CVE-2022-46140

Affected devices use a weak encryption scheme to encrypt the debug zip file. This could allow an authenticated attacker to decrypt the contents of the file and retrieve debug information about the system.

7.1CVSS6.2AI score0.00087EPSS

CVE•added 2022/12/13 4:15 p.m.•70 views

CVE-2022-46143

Affected devices do not check the TFTP blocksize correctly. This could allow an authenticated attacker to read from an uninitialized buffer that potentially contains previously allocated data.

5.1CVSS3.7AI score0.00216EPSS