CVE-2020-15800
N/A
N/A
Summary
A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.5), SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) (All versions < V5.5.0), SCALANCE X-300 switch family (incl. X408 and SIPLUS NET variants) (All versions < V4.1.0). The webserver of the affected devices contains a vulnerability that may lead to a heap overflow condition. An attacker could cause this condition on the webserver by sending specially crafted requests. This could stop the webserver temporarily.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Siemens | SCALANCE X-200 switch family (incl. SIPLUS NET variants) | All versions < V5.2.5 | affected |
| Siemens | SCALANCE X-200IRT switch family (incl. SIPLUS NET variants) | All versions < V5.5.0 | affected |
| Siemens | SCALANCE X-300 switch family (incl. X408 and SIPLUS NET variants) | All versions < V4.1.0 | affected |
Weaknesses
- CWE-122: CWE-122: Heap-based Buffer Overflow
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.