← Back

Scalance M 800 Firmware

scalance_m-800_firmware

Vendor: Siemens • 13 CVEs

CVEs (13)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-36325
1Siemens
90Scalance M 800 Firmware
Scalance S615 FirmwareScalance Sc 600 Firmware+87 more
Apr 14, 2026
Aug 10, 2022
N/A· v4
4.8 MEDIUM· v3
N/A· v2
Affected devices do not properly sanitize data introduced by an user when rendering the web interface. This could allow an authenticated remote attacker with administrative privileges to inject code and lead to a DOM-bas...Show more
Affected devices do not properly sanitize data introduced by an user when rendering the web interface. This could allow an authenticated remote attacker with administrative privileges to inject code and lead to a DOM-based XSS.Show less
CVE-2022-36324
1Siemens
84Scalance M 800 Firmware
Scalance S615 FirmwareScalance W700 Ieee 802.11ac Firmware+81 more
Apr 14, 2026
Aug 10, 2022
N/A· v4
7.5 HIGH· v3
N/A· v2
Affected devices do not properly handle the renegotiation of SSL/TLS parameters. This could allow an unauthenticated remote attacker to bypass the TCP brute force prevention and lead to a denial of service condition for...Show more
Affected devices do not properly handle the renegotiation of SSL/TLS parameters. This could allow an unauthenticated remote attacker to bypass the TCP brute force prevention and lead to a denial of service condition for the duration of the attack.Show less
CVE-2022-36323
1Siemens
90Scalance M 800 Firmware
Scalance S615 FirmwareScalance Sc 600 Firmware+87 more
Apr 14, 2026
Aug 10, 2022
N/A· v4
7.2 HIGH· v3
N/A· v2
Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker with administrative privileges to inject code or spawn a system root shell.
CVE-2020-28400
1Siemens
78Dk Standard Ethernet Controller Evaluation Kit Firmware
Ek Ertec 200 Evaulation Kit FirmwareEk Ertec 200p Evaluation Kit Firmware+75 more
Dec 10, 2024
Jul 13, 2021
8.7 HIGH· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a denial of service condition. The vulnerability can be triggered if a large amount of DCP reset packets are sent to the device.
CVE-2021-3449
12Checkpoint
DebianFedoraproject+9 more
106Active Iq Unified Manager
Capture ClientCloud Volumes Ontap Mediator+103 more
Nov 21, 2024
Mar 25, 2021
N/A· v4
5.9 MEDIUM· v3
4.3 MEDIUM· v2
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the...Show more
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).Show less
CVE-2021-25676
1Siemens
4Ruggedcom Rm1224 Firmware
Scalance M 800 FirmwareScalance S615 Firmware+1 more
Nov 21, 2024
Mar 15, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
A vulnerability has been identified in RUGGEDCOM RM1224 (V6.3), SCALANCE M-800 (V6.3), SCALANCE S615 (V6.3), SCALANCE SC-600 (All Versions >= V2.1 and < V2.1.3). Multiple failed SSH authentication attempts could trigger...Show more
A vulnerability has been identified in RUGGEDCOM RM1224 (V6.3), SCALANCE M-800 (V6.3), SCALANCE S615 (V6.3), SCALANCE SC-600 (All Versions >= V2.1 and < V2.1.3). Multiple failed SSH authentication attempts could trigger a temporary Denial-of-Service under certain conditions. When triggered, the device will reboot automatically.Show less
CVE-2021-25667
1Siemens
15Ruggedcom Rm1224 Firmware
Scalance M 800 FirmwareScalance S615 Firmware+12 more
Jun 2, 2026
Mar 15, 2021
N/A· v4
8.8 HIGH· v3
5.8 MEDIUM· v2
A vulnerability has been identified in RUGGEDCOM RM1224 (All versions >= V4.3 and < V6.4), SCALANCE M-800 (All versions >= V4.3 and < V6.4), SCALANCE S615 (All versions >= V4.3 and < V6.4), SCALANCE SC-600 Family (All ve...Show more
A vulnerability has been identified in RUGGEDCOM RM1224 (All versions >= V4.3 and < V6.4), SCALANCE M-800 (All versions >= V4.3 and < V6.4), SCALANCE S615 (All versions >= V4.3 and < V6.4), SCALANCE SC-600 Family (All versions >= V2.0 and < V2.1.3), SCALANCE XB-200 (All versions < V4.1), SCALANCE XC-200 (All versions < V4.1), SCALANCE XF-200BA (All versions < V4.1), SCALANCE XM400 (All versions < V6.2), SCALANCE XP-200 (All versions < V4.1), SCALANCE XR-300WG (All versions < V4.1), SCALANCE XR500 (All versions < V6.2). Affected devices contain a stack-based buffer overflow vulnerability in the handling of STP BPDU frames that could allow a remote attacker to trigger a denial-of-service condition or potentially remote code execution. Successful exploitation requires the passive listening feature of the device to be active.Show less
CVE-2019-13946
1Siemens
52Dk Standard Ethernet Controller
Ek Ertec 200 FirmwareEk Ertec 200p Firmware+49 more
Nov 21, 2024
Feb 11, 2020
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lead to a denial of ser...Show more
Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could lead to a denial of service condition due to lack of memory for devices that include a vulnerable version of the stack. The security vulnerability could be exploited by an attacker with network access to an affected device. Successful exploitation requires no system privileges and no user interaction. An attacker could use the vulnerability to compromise the availability of the device.Show less
CVE-2018-5391
7Canonical
DebianF5+4 more
51Big Ip Access Policy Manager
Big Ip Advanced Firewall ManagerBig Ip Analytics+48 more
Nov 21, 2024
Sep 6, 2018
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending...Show more
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packets targeting IP fragment re-assembly. An attacker may cause a denial of service condition by sending specially crafted IP fragments. Various vulnerabilities in IP fragmentation have been discovered and fixed over the years. The current vulnerability (CVE-2018-5391) became exploitable in the Linux kernel with the increase of the IP fragment reassembly queue size.Show less
CVE-2017-14491
12Arista
ArubanetworksCanonical+9 more
21Arubaos
Debian LinuxDiskstation Manager+18 more
May 13, 2026
Oct 4, 2017
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response.
CVE-2017-2681
1Siemens
79Dk Standard Ethernet Controller Firmware
Ek Ertec 200 Pn Io FirmwareEk Ertec 200p Pn Io Firmware+76 more
May 13, 2026
May 11, 2017
7.1 HIGH· v4
6.5 MEDIUM· v3
6.1 MEDIUM· v2
Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PRO...Show more
Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a denial of service condition of that product. Human interaction is required to recover the system. PROFIBUS interfaces are not affected.Show less
CVE-2017-2680
1Siemens
93Dk Standard Ethernet Controller Firmware
Ek Ertec 200 Pn Io FirmwareEk Ertec 200p Pn Io Firmware+90 more
May 13, 2026
May 11, 2017
7.1 HIGH· v4
6.5 MEDIUM· v3
6.1 MEDIUM· v2
Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment (Layer 2). Human interaction is required to recover the systems. PROFIBUS interf...Show more
Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a local Ethernet segment (Layer 2). Human interaction is required to recover the systems. PROFIBUS interfaces are not affected.Show less
CVE-2016-7090
1Siemens
2Scalance M 800 Firmware
Scalance S615 Firmware
May 6, 2026
Sep 29, 2016
N/A· v4
4.0 MEDIUM· v3
4.3 MEDIUM· v2
The integrated web server on Siemens SCALANCE M-800 and S615 modules with firmware before 4.02 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to captur...Show more
The integrated web server on Siemens SCALANCE M-800 and S615 modules with firmware before 4.02 does not set the secure flag for the session cookie in an https session, which makes it easier for remote attackers to capture this cookie by intercepting its transmission within an http session.Show less