Unrated severityNVD Advisory· Published Oct 3, 2013· Updated Apr 29, 2026

CVE-2013-5944

Description

The integrated web server on Siemens SCALANCE X-200 switches with firmware before 4.5.0 and X-200IRT switches with firmware before 5.1.0 does not properly enforce authentication requirements, which allows remote attackers to perform administrative actions via requests to the management interface.

Affected products

Siemens Foundation/Scalance X 200
cpe:2.3:h:siemens:scalance_x-200:-:*:*:*:*:*:*:*
Siemens Foundation/Scalance X 200irt
cpe:2.3:h:siemens:scalance_x-200irt:-:*:*:*:*:*:*:*
Siemens Foundation/Scalance X 200 Series Firmware2 versions
cpe:2.3:o:siemens:scalance_x-200_series_firmware:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:siemens:scalance_x-200_series_firmware:*:*:*:*:*:*:*:*range: <=4.4
- cpe:2.3:o:siemens:scalance_x-200_series_firmware:4.3:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000