Siemens Scalance Xr324-4m Eec Firmware — known CVE vulnerabilities
Every CVE whose affected-product data names Siemens Scalance Xr324-4m Eec Firmware, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2022-25752 — CVSS 9.8 (critical): A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE…
CVE-2022-36323 — CVSS 9.1 (critical): Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker with administrative privileges…
CVE-2022-25753 — CVSS 8.8 (high): A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE…
CVE-2022-25754 — CVSS 8.8 (high): A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE…
CVE-2022-26334 — CVSS 7.5 (high): A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE…
CVE-2022-26335 — CVSS 7.5 (high): A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE…
CVE-2022-26380 — CVSS 7.5 (high): A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE…
CVE-2022-25755 — CVSS 7.5 (high): A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE…
CVE-2020-28400 — CVSS 7.5 (high): Affected devices contain a vulnerability that allows an unauthenticated attacker to trigger a denial of service condition. The…
CVE-2022-25751 — CVSS 7.5 (high): A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE…
CVE-2022-36324 — CVSS 7.5 (high): Affected devices do not properly handle the renegotiation of SSL/TLS parameters. This could allow an unauthenticated remote attacker to…
CVE-2022-36325 — CVSS 6.8 (medium): Affected devices do not properly sanitize data introduced by an user when rendering the web interface. This could allow an authenticated…
CVE-2022-25756 — CVSS 6.1 (medium): A vulnerability has been identified in SCALANCE X302-7 EEC (230V), SCALANCE X302-7 EEC (230V, coated), SCALANCE X302-7 EEC (24V), SCALANCE…
CVE-2020-28395 — CVSS 5.9 (medium): A vulnerability has been identified in SCALANCE X-200RNA switch family (All versions < V3.2.7), SCALANCE X-300 switch family (incl. X408…