NotCVE - vendor:"Siemens" product:"Scalance S627-2m Firmware" version:" >= 4.1"

3 results (0.003 seconds)

CVSS: 6.1EPSS: 0%CPEs: 8EXPL: 0

CVE-2019-6585

https://notcve.org/view.php?id=CVE-2019-6585

10 Mar 2020 — A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627-2M (All versions >= V3.0 and < V4.1). The integrated configuration web server of the affected devices could allow Cross-Site Scripting (XSS) attacks if unsuspecting users are tricked into accessing a malicious link. User interaction is required for a successful exploitation. The user must be logged into the web... • https://cert-portal.siemens.com/productcert/pdf/ssa-591405.pdf • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') CWE-80: Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) •

CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0

CVE-2019-13925

https://notcve.org/view.php?id=CVE-2019-13925

11 Feb 2020 — A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627-2M (All versions >= V3.0 and < V4.1). Specially crafted packets sent to port 443/tcp of affected devices could cause a Denial-of-Service condition of the web server. Se ha identificado una vulnerabilidad en SCALANCE S602 (Todas las versiones posteriores o iguales a V3.0 y anteriores a V4.1), SCALANCE S612 (Toda... • https://cert-portal.siemens.com/productcert/pdf/ssa-591405.pdf • CWE-400: Uncontrolled Resource Consumption •

CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 0

CVE-2019-13926

https://notcve.org/view.php?id=CVE-2019-13926

11 Feb 2020 — A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627-2M (All versions >= V3.0 and < V4.1). Specially crafted packets sent to port 443/tcp of affected devices could cause a Denial-of-Service condition of the web server. A cold reboot is required to restore the functionality of the device. Se ha identificado una vulnerabilidad en SCALANCE S602 (Todas las versiones ... • https://cert-portal.siemens.com/productcert/pdf/ssa-591405.pdf • CWE-400: Uncontrolled Resource Consumption •