Siemens SCALANCE X Switches (Update B)

CVSS 9.1 CRITICAL

CVEs (2)

CVE-2020-28391 CVE-2020-28395

Update the default selfsigned device X.509 certificates with own trusted certificates
Update the default hardcoded X.509 certificates from the firmware image (fingerprints SHA-1: F2:C8:3B:8F:86:27:74:AA:60:EC:D4:A0:CF:0D:BE:A6:D1:FE:22:12 and SHA-256: 25:60:DB:B3: F9:07:9D:69:0E:DD:A9:EB:4E:1C:D5:8E:AF:79:16:C3:C8:13:A6:F6:59:AD:05:E4:6F:77:F7:72 - fingerprints for X-200RNA switch devices SHA-1: 04:64:EF:98:A4:42:D2:BB:57:4A:47:12:20:EC:E6:85:15:4F:03:61 and SHA-256: 9C:15:FA:56:ED:FF:CA:8D:17:16:E9:2C:57:CB:90:3C:4E:81:5B:3D:60:E9:CF:26:07:B3:73:F6:C7:02:75:88)
Update to V5.2.5 or later version
Update to V5.5.0 or later version
Update to V3.2.7 or later version
Update to V4.1.0 or later version (for supported devices)

Siemens

Siemens · SCALANCE X-200 switch family (incl. SIPLUS NET variants) <V5.2.5

Siemens · SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) <V5.5.0

Siemens · SCALANCE X-200RNA switch family <V3.2.7

Siemens · SCALANCE X-300 switch family (incl. X408 and SIPLUS NET variants) <V4.1.0

Multiple

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.