← Back to home
SIEMENS-SSA-443566  ·  Published 2022-12-13  ·  View on Siemens ProductCERT ↗

SSA-443566 V1.3 (Last Update: 2022-12-13): Authentication Bypass in SCALANCE X Switches Families

CVSS N/A MEDIUM

Risk Summary

<p>Several SCALANCE X switches are affected by an Authentication Bypass vulnerability. The vulnerability allows an unauthenticated attacker to violate access-control rules. The vulnerability can be exploited by sending a GET request to a specific uniform resource locator on the web configuration interface of the device.</p> <p>The security vulnerability could be exploited by an attacker with network access to the affected systems. An attacker could use the vulnerability to obtain sensitive information or change the device configuration.</p> <p>Siemens has released updates for the affected products and recommends to update to the latest versions.</p>

Remediations

  • Refer to Siemens ProductCERT advisory for patch and remediation guidance.

Affected Vendors

Siemens

Affected Products (1)

Siemens · SSA-443566 V1.3 (Last Update: 2022-12-13): Authentication Bypass in SCALANCE X Switches Families See advisory

Get alerted to advisories like this

OTWarden monitors CISA, BSI, Siemens, Rockwell and more — and emails you within 2 hours when your vendors are affected.

Start free trial Learn more