Siemens Scalance Xf204 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Siemens Scalance Xf204 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (16)
CVE-2021-25668 — CVSS 9.8 (critical): A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT (All versions < 5.5.1), SCALANCE…
CVE-2020-15800 — CVSS 9.8 (critical): A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.5), SCALANCE X-200IRT…
CVE-2020-25226 — CVSS 9.8 (critical): A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.5), SCALANCE X-200IRT…
CVE-2021-29998 — CVSS 9.8 (critical): An issue was discovered in Wind River VxWorks before 6.5. There is a possible heap overflow in dhcp client.
CVE-2021-25669 — CVSS 9.8 (critical): A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < 5.5.1), SCALANCE X201-3P IRT (All versions < 5.5.1), SCALANCE…
CVE-2022-26649 — CVSS 9.6 (critical): A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < V5.5.2), SCALANCE X201-3P IRT (All versions < V5.5.2), SCALANCE…
CVE-2022-26647 — CVSS 8.8 (high): A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < V5.5.2), SCALANCE X201-3P IRT (All versions < V5.5.2), SCALANCE…
CVE-2022-26648 — CVSS 8.2 (high): A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < V5.5.2), SCALANCE X201-3P IRT (All versions < V5.5.2), SCALANCE…
CVE-2020-28400 — CVSS 7.5 (high): Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a denial of service condition. The…
CVE-2023-44317 — CVSS 7.2 (high): A vulnerability has been identified in RUGGEDCOM RM1224 LTE(4G) EU (6GK6108-4AM00-2BA2) (All versions < V7.2.2), RUGGEDCOM RM1224 LTE(4G)…
CVE-2022-46140 — CVSS 6.5 (medium): Affected devices use a weak encryption scheme to encrypt the debug zip file. This could allow an authenticated attacker to decrypt the…
CVE-2020-15799 — CVSS 6.5 (medium): A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.5), SCALANCE X-200IRT…
CVE-2022-40631 — CVSS 6.1 (medium): A vulnerability has been identified in SCALANCE X200-4P IRT (All versions < V5.5.0), SCALANCE X201-3P IRT (All versions < V5.5.0), SCALANCE…
CVE-2020-28391 — CVSS 5.9 (medium): A vulnerability has been identified in SCALANCE X-200 switch family (incl. SIPLUS NET variants) (All versions < V5.2.5), SCALANCE X-200IRT…
CVE-2022-46142 — CVSS 5.7 (medium): Affected devices store the CLI user passwords encrypted in flash memory. Attackers with physical access to the device could retrieve the…
CVE-2022-46143 — CVSS 2.7 (low): Affected devices do not check the TFTP blocksize correctly. This could allow an authenticated attacker to read from an uninitialized buffer…