Siemens Scalance Xm-400 Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Siemens Scalance Xm-400 Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2017-12736 — CVSS 8.8 (high): After initial configuration, the Ruggedcom Discovery Protocol (RCDP) is still able to write to the device under certain conditions. This…
CVE-2019-13946 — CVSS 7.5 (high): Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic…
CVE-2020-28393 — CVSS 7.5 (high): An unauthenticated remote attacker could create a permanent denial-of-service condition by sending specially crafted OSPF packets…
CVE-2021-3449 — CVSS 5.9 (medium): An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation…