Scalance M 800 Firmware
CVE-2022-36323
CRITICAL
Severity by source
AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Lifecycle Timeline
1DescriptionCVE.org
Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker with administrative privileges to inject code or spawn a system root shell.
AnalysisAI
Affected devices do not properly sanitize an input field. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, low attack complexity.
Technical ContextAI
This vulnerability is classified under CWE-74. Affected devices do not properly sanitize an input field. This could allow an authenticated remote attacker with administrative privileges to inject code or spawn a system root shell. Affected products include: Siemens Scalance M-800 Firmware, Siemens Scalance S615 Firmware, Siemens Scalance Sc-600 Firmware, Siemens Scalance Sc622-2C Firmware, Siemens Scalance Sc632-2C Firmware.
RemediationAI
A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Scalance M 800 Firmware
View allHeap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service (crash) or execut
Affected devices do not properly handle the renegotiation of SSL/TLS parameters. Rated high severity (CVSS 7.5), this vu
A vulnerability has been identified in RUGGEDCOM RM1224 (All versions >= V4.3 and < V6.4), SCALANCE M-800 (All versions
Affected devices do not properly sanitize data introduced by an user when rendering the web interface. Rated medium seve
Specially crafted PROFINET DCP broadcast packets could cause a denial of service condition of affected products on a loc
A vulnerability has been identified in RUGGEDCOM RM1224 (V6.3), SCALANCE M-800 (V6.3), SCALANCE S615 (V6.3), SCALANCE SC
The Linux kernel, versions 3.9+, is vulnerable to a denial of service attack with low rates of specially modified packet
Specially crafted PROFINET DCP packets sent on a local Ethernet segment (Layer 2) to an affected product could cause a d
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. Rated med
The integrated web server on Siemens SCALANCE M-800 and S615 modules with firmware before 4.02 does not set the secure f
Same technique Code Injection
View allShare
External POC / Exploit Code
Leaving vuln.today