Siemens Scalance X200 Series Switches Multiple Vulnerabillities Network Vulnerability

Summary

Siemens Scalance X200 series switches are prone to 1. a remote security bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and execute SNMP commands without proper credentials. 2. a remote privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges within the application and execute commands with escalated privileges.

Solution

Updates are available. Please see the references or vendor advisory for more information.

References

http://www.securityfocus.com/bid/60165
http://www.securityfocus.com/bid/60168
http://www.siemens.com/corporate-technology/pool/de/forschungsfelder/siemens_security_advisory_ssa-170686.pdf

Updated on 2017-03-28

Severity

Classification

CVE CVE-2013-3633, CVE-2013-3634

CVSS	Base Score: 8.0 AV:N/AC:L/Au:S/C:P/I:P/A:C

Related Vulnerabilities

Adobe ExtendedScript Toolkit (ESTK) Insecure Library Loading Vulnerability (Win)
Adobe Air Multiple Vulnerabilities -01 August 12 (Windows)
Adobe Air and Flash Player Multiple Vulnerabilities August-2011 (Windows)
Adobe AIR Code Execution and DoS Vulnerabilities Nov13 (Mac OS X)
Adobe Flash Player Buffer Overflow Vulnerability - Apr14 (Linux)

Take action and discover your vulnerabilities