← Back

Scalance W1700 Firmware

scalance_w1700_firmware

Vendor: Siemens • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-28400
1Siemens
78Dk Standard Ethernet Controller Evaluation Kit Firmware
Ek Ertec 200 Evaulation Kit FirmwareEk Ertec 200p Evaluation Kit Firmware+75 more
Dec 10, 2024
Jul 13, 2021
8.7 HIGH· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a denial of service condition. The vulnerability can be triggered if a large amount of DCP reset packets are sent to the device.
CVE-2021-3449
12Checkpoint
DebianFedoraproject+9 more
106Active Iq Unified Manager
Capture ClientCloud Volumes Ontap Mediator+103 more
Nov 21, 2024
Mar 25, 2021
N/A· v4
5.9 MEDIUM· v3
4.3 MEDIUM· v2
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the...Show more
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).Show less