Scalance Xm-400 Firmware Security Vulnerabilities and Issues — Scalance Xm-400 Firmware CVE List

Lucene search

SiemensScalance Xm-400 Firmware

4 matches found

CVE•added 2021/03/25 3:15 p.m.•749 views

CVE-2021-3449

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a...

5.9CVSS6.7AI score0.15517EPSS

CVE•added 2020/02/11 4:15 p.m.•115 views

CVE-2019-13946

Profinet-IO (PNIO) stack versions prior V06.00 do not properly limitinternal resource allocation when multiple legitimate diagnostic packagerequests are sent to the DCE-RPC interface.This could lead to a denial of service condition due to lack of memoryfor devices that include a vulnerable version ...

7.8CVSS7.4AI score0.00552EPSS

CVE•added 2017/12/26 4:29 a.m.•47 views

CVE-2017-12736

A vulnerability has been identified in RUGGEDCOM ROS for RSL910 devices (All versions < ROS V5.0.1), RUGGEDCOM ROS for all other devices (All versions

8.8CVSS8.4AI score0.00281EPSS

CVE•added 2021/05/12 2:15 p.m.•41 views

CVE-2020-28393

An unauthenticated remote attacker could create a permanent denial-of-service condition by sending specially crafted OSPF packets. Successful exploitation requires OSPF to be enabled on an affected device on the SCALANCE XM-400, XR-500 (All versions prior to v6.4).

7.5CVSS7.4AI score0.00528EPSS